24 files changed, 5585 insertions, 0 deletions
diff --git a/tinyIPSec/Doxyfile b/tinyIPSec/Doxyfile
new file mode 100644
index 0000000..60705ff
--- /dev/null
+++ b/tinyIPSec/Doxyfile
@@ -0,0 +1,1557 @@
+# Doxyfile 1.6.1
+
+# This file describes the settings to be used by the documentation system
+# doxygen (www.doxygen.org) for a project
+#
+# All text after a hash (#) is considered a comment and will be ignored
+# The format is:
+#       TAG = value [value, ...]
+# For lists items can also be appended using:
+#       TAG += value [value, ...]
+# Values that contain spaces should be placed between quotes (" ")
+
+#---------------------------------------------------------------------------
+# Project related configuration options
+#---------------------------------------------------------------------------
+
+# This tag specifies the encoding used for all characters in the config file 
+# that follow. The default is UTF-8 which is also the encoding used for all 
+# text before the first occurrence of this tag. Doxygen uses libiconv (or the 
+# iconv built into libc) for the transcoding. See 
+# http://www.gnu.org/software/libiconv for the list of possible encodings.
+
+DOXYFILE_ENCODING      = UTF-8
+
+# The PROJECT_NAME tag is a single word (or a sequence of words surrounded 
+# by quotes) that should identify the project.
+
+PROJECT_NAME           = tinyIPSec
+
+# The PROJECT_NUMBER tag can be used to enter a project or revision number. 
+# This could be handy for archiving the generated documentation or 
+# if some version control system is used.
+
+PROJECT_NUMBER         = 1.0
+
+# The OUTPUT_DIRECTORY tag is used to specify the (relative or absolute) 
+# base path where the generated documentation will be put. 
+# If a relative path is entered, it will be relative to the location 
+# where doxygen was started. If left blank the current directory will be used.
+
+OUTPUT_DIRECTORY       = docs
+
+# If the CREATE_SUBDIRS tag is set to YES, then doxygen will create 
+# 4096 sub-directories (in 2 levels) under the output directory of each output 
+# format and will distribute the generated files over these directories. 
+# Enabling this option can be useful when feeding doxygen a huge amount of 
+# source files, where putting all generated files in the same directory would 
+# otherwise cause performance problems for the file system.
+
+CREATE_SUBDIRS         = NO
+
+# The OUTPUT_LANGUAGE tag is used to specify the language in which all 
+# documentation generated by doxygen is written. Doxygen will use this 
+# information to generate all constant output in the proper language. 
+# The default language is English, other supported languages are: 
+# Afrikaans, Arabic, Brazilian, Catalan, Chinese, Chinese-Traditional, 
+# Croatian, Czech, Danish, Dutch, Esperanto, Farsi, Finnish, French, German, 
+# Greek, Hungarian, Italian, Japanese, Japanese-en (Japanese with English 
+# messages), Korean, Korean-en, Lithuanian, Norwegian, Macedonian, Persian, 
+# Polish, Portuguese, Romanian, Russian, Serbian, Serbian-Cyrilic, Slovak, 
+# Slovene, Spanish, Swedish, Ukrainian, and Vietnamese.
+
+OUTPUT_LANGUAGE        = English
+
+# If the BRIEF_MEMBER_DESC tag is set to YES (the default) Doxygen will 
+# include brief member descriptions after the members that are listed in 
+# the file and class documentation (similar to JavaDoc). 
+# Set to NO to disable this.
+
+BRIEF_MEMBER_DESC      = YES
+
+# If the REPEAT_BRIEF tag is set to YES (the default) Doxygen will prepend 
+# the brief description of a member or function before the detailed description. 
+# Note: if both HIDE_UNDOC_MEMBERS and BRIEF_MEMBER_DESC are set to NO, the 
+# brief descriptions will be completely suppressed.
+
+REPEAT_BRIEF           = YES
+
+# This tag implements a quasi-intelligent brief description abbreviator 
+# that is used to form the text in various listings. Each string 
+# in this list, if found as the leading text of the brief description, will be 
+# stripped from the text and the result after processing the whole list, is 
+# used as the annotated text. Otherwise, the brief description is used as-is. 
+# If left blank, the following values are used ("$name" is automatically 
+# replaced with the name of the entity): "The $name class" "The $name widget" 
+# "The $name file" "is" "provides" "specifies" "contains" 
+# "represents" "a" "an" "the"
+
+ABBREVIATE_BRIEF       = "The $name class" \
+                         "The $name widget" \
+                         "The $name file" \
+                         is \
+                         provides \
+                         specifies \
+                         contains \
+                         represents \
+                         a \
+                         an \
+                         the
+
+# If the ALWAYS_DETAILED_SEC and REPEAT_BRIEF tags are both set to YES then 
+# Doxygen will generate a detailed section even if there is only a brief 
+# description.
+
+ALWAYS_DETAILED_SEC    = NO
+
+# If the INLINE_INHERITED_MEMB tag is set to YES, doxygen will show all 
+# inherited members of a class in the documentation of that class as if those 
+# members were ordinary class members. Constructors, destructors and assignment 
+# operators of the base classes will not be shown.
+
+INLINE_INHERITED_MEMB  = NO
+
+# If the FULL_PATH_NAMES tag is set to YES then Doxygen will prepend the full 
+# path before files name in the file list and in the header files. If set 
+# to NO the shortest path that makes the file name unique will be used.
+
+FULL_PATH_NAMES        = YES
+
+# If the FULL_PATH_NAMES tag is set to YES then the STRIP_FROM_PATH tag 
+# can be used to strip a user-defined part of the path. Stripping is 
+# only done if one of the specified strings matches the left-hand part of 
+# the path. The tag can be used to show relative paths in the file list. 
+# If left blank the directory from which doxygen is run is used as the 
+# path to strip.
+
+STRIP_FROM_PATH        = /Users/dimitri/doxygen/mail/1.5.7/doxywizard/
+
+# The STRIP_FROM_INC_PATH tag can be used to strip a user-defined part of 
+# the path mentioned in the documentation of a class, which tells 
+# the reader which header file to include in order to use a class. 
+# If left blank only the name of the header file containing the class 
+# definition is used. Otherwise one should specify the include paths that 
+# are normally passed to the compiler using the -I flag.
+
+STRIP_FROM_INC_PATH    = 
+
+# If the SHORT_NAMES tag is set to YES, doxygen will generate much shorter 
+# (but less readable) file names. This can be useful is your file systems 
+# doesn't support long names like on DOS, Mac, or CD-ROM.
+
+SHORT_NAMES            = NO
+
+# If the JAVADOC_AUTOBRIEF tag is set to YES then Doxygen 
+# will interpret the first line (until the first dot) of a JavaDoc-style 
+# comment as the brief description. If set to NO, the JavaDoc 
+# comments will behave just like regular Qt-style comments 
+# (thus requiring an explicit @brief command for a brief description.)
+
+JAVADOC_AUTOBRIEF      = NO
+
+# If the QT_AUTOBRIEF tag is set to YES then Doxygen will 
+# interpret the first line (until the first dot) of a Qt-style 
+# comment as the brief description. If set to NO, the comments 
+# will behave just like regular Qt-style comments (thus requiring 
+# an explicit \brief command for a brief description.)
+
+QT_AUTOBRIEF           = NO
+
+# The MULTILINE_CPP_IS_BRIEF tag can be set to YES to make Doxygen 
+# treat a multi-line C++ special comment block (i.e. a block of //! or /// 
+# comments) as a brief description. This used to be the default behaviour. 
+# The new default is to treat a multi-line C++ comment block as a detailed 
+# description. Set this tag to YES if you prefer the old behaviour instead.
+
+MULTILINE_CPP_IS_BRIEF = NO
+
+# If the INHERIT_DOCS tag is set to YES (the default) then an undocumented 
+# member inherits the documentation from any documented member that it 
+# re-implements.
+
+INHERIT_DOCS           = YES
+
+# If the SEPARATE_MEMBER_PAGES tag is set to YES, then doxygen will produce 
+# a new page for each member. If set to NO, the documentation of a member will 
+# be part of the file/class/namespace that contains it.
+
+SEPARATE_MEMBER_PAGES  = NO
+
+# The TAB_SIZE tag can be used to set the number of spaces in a tab. 
+# Doxygen uses this value to replace tabs by spaces in code fragments.
+
+TAB_SIZE               = 8
+
+# This tag can be used to specify a number of aliases that acts 
+# as commands in the documentation. An alias has the form "name=value". 
+# For example adding "sideeffect=\par Side Effects:\n" will allow you to 
+# put the command \sideeffect (or @sideeffect) in the documentation, which 
+# will result in a user-defined paragraph with heading "Side Effects:". 
+# You can put \n's in the value part of an alias to insert newlines.
+
+ALIASES                = 
+
+# Set the OPTIMIZE_OUTPUT_FOR_C tag to YES if your project consists of C 
+# sources only. Doxygen will then generate output that is more tailored for C. 
+# For instance, some of the names that are used will be different. The list 
+# of all members will be omitted, etc.
+
+OPTIMIZE_OUTPUT_FOR_C  = YES
+
+# Set the OPTIMIZE_OUTPUT_JAVA tag to YES if your project consists of Java 
+# sources only. Doxygen will then generate output that is more tailored for 
+# Java. For instance, namespaces will be presented as packages, qualified 
+# scopes will look different, etc.
+
+OPTIMIZE_OUTPUT_JAVA   = NO
+
+# Set the OPTIMIZE_FOR_FORTRAN tag to YES if your project consists of Fortran 
+# sources only. Doxygen will then generate output that is more tailored for 
+# Fortran.
+
+OPTIMIZE_FOR_FORTRAN   = NO
+
+# Set the OPTIMIZE_OUTPUT_VHDL tag to YES if your project consists of VHDL 
+# sources. Doxygen will then generate output that is tailored for 
+# VHDL.
+
+OPTIMIZE_OUTPUT_VHDL   = NO
+
+# Doxygen selects the parser to use depending on the extension of the files it parses. 
+# With this tag you can assign which parser to use for a given extension. 
+# Doxygen has a built-in mapping, but you can override or extend it using this tag. 
+# The format is ext=language, where ext is a file extension, and language is one of 
+# the parsers supported by doxygen: IDL, Java, Javascript, C#, C, C++, D, PHP, 
+# Objective-C, Python, Fortran, VHDL, C, C++. For instance to make doxygen treat 
+# .inc files as Fortran files (default is PHP), and .f files as C (default is Fortran), 
+# use: inc=Fortran f=C. Note that for custom extensions you also need to set
+# FILE_PATTERNS otherwise the files are not read by doxygen.
+
+EXTENSION_MAPPING      = 
+
+# If you use STL classes (i.e. std::string, std::vector, etc.) but do not want 
+# to include (a tag file for) the STL sources as input, then you should 
+# set this tag to YES in order to let doxygen match functions declarations and 
+# definitions whose arguments contain STL classes (e.g. func(std::string); v.s. 
+# func(std::string) {}). This also make the inheritance and collaboration 
+# diagrams that involve STL classes more complete and accurate.
+
+BUILTIN_STL_SUPPORT    = NO
+
+# If you use Microsoft's C++/CLI language, you should set this option to YES to 
+# enable parsing support.
+
+CPP_CLI_SUPPORT        = NO
+
+# Set the SIP_SUPPORT tag to YES if your project consists of sip sources only. 
+# Doxygen will parse them like normal C++ but will assume all classes use public 
+# instead of private inheritance when no explicit protection keyword is present.
+
+SIP_SUPPORT            = NO
+
+# For Microsoft's IDL there are propget and propput attributes to indicate getter 
+# and setter methods for a property. Setting this option to YES (the default) 
+# will make doxygen to replace the get and set methods by a property in the 
+# documentation. This will only work if the methods are indeed getting or 
+# setting a simple type. If this is not the case, or you want to show the 
+# methods anyway, you should set this option to NO.
+
+IDL_PROPERTY_SUPPORT   = YES
+
+# If member grouping is used in the documentation and the DISTRIBUTE_GROUP_DOC 
+# tag is set to YES, then doxygen will reuse the documentation of the first 
+# member in the group (if any) for the other members of the group. By default 
+# all members of a group must be documented explicitly.
+
+DISTRIBUTE_GROUP_DOC   = NO
+
+# Set the SUBGROUPING tag to YES (the default) to allow class member groups of 
+# the same type (for instance a group of public functions) to be put as a 
+# subgroup of that type (e.g. under the Public Functions section). Set it to 
+# NO to prevent subgrouping. Alternatively, this can be done per class using 
+# the \nosubgrouping command.
+
+SUBGROUPING            = YES
+
+# When TYPEDEF_HIDES_STRUCT is enabled, a typedef of a struct, union, or enum 
+# is documented as struct, union, or enum with the name of the typedef. So 
+# typedef struct TypeS {} TypeT, will appear in the documentation as a struct 
+# with name TypeT. When disabled the typedef will appear as a member of a file, 
+# namespace, or class. And the struct will be named TypeS. This can typically 
+# be useful for C code in case the coding convention dictates that all compound 
+# types are typedef'ed and only the typedef is referenced, never the tag name.
+
+TYPEDEF_HIDES_STRUCT   = NO
+
+# The SYMBOL_CACHE_SIZE determines the size of the internal cache use to 
+# determine which symbols to keep in memory and which to flush to disk. 
+# When the cache is full, less often used symbols will be written to disk. 
+# For small to medium size projects (<1000 input files) the default value is 
+# probably good enough. For larger projects a too small cache size can cause 
+# doxygen to be busy swapping symbols to and from disk most of the time 
+# causing a significant performance penality. 
+# If the system has enough physical memory increasing the cache will improve the 
+# performance by keeping more symbols in memory. Note that the value works on 
+# a logarithmic scale so increasing the size by one will rougly double the 
+# memory usage. The cache size is given by this formula: 
+# 2^(16+SYMBOL_CACHE_SIZE). The valid range is 0..9, the default is 0, 
+# corresponding to a cache size of 2^16 = 65536 symbols
+
+SYMBOL_CACHE_SIZE      = 0
+
+#---------------------------------------------------------------------------
+# Build related configuration options
+#---------------------------------------------------------------------------
+
+# If the EXTRACT_ALL tag is set to YES doxygen will assume all entities in 
+# documentation are documented, even if no documentation was available. 
+# Private class members and static file members will be hidden unless 
+# the EXTRACT_PRIVATE and EXTRACT_STATIC tags are set to YES
+
+EXTRACT_ALL            = YES
+
+# If the EXTRACT_PRIVATE tag is set to YES all private members of a class 
+# will be included in the documentation.
+
+EXTRACT_PRIVATE        = NO
+
+# If the EXTRACT_STATIC tag is set to YES all static members of a file 
+# will be included in the documentation.
+
+EXTRACT_STATIC         = NO
+
+# If the EXTRACT_LOCAL_CLASSES tag is set to YES classes (and structs) 
+# defined locally in source files will be included in the documentation. 
+# If set to NO only classes defined in header files are included.
+
+EXTRACT_LOCAL_CLASSES  = YES
+
+# This flag is only useful for Objective-C code. When set to YES local 
+# methods, which are defined in the implementation section but not in 
+# the interface are included in the documentation. 
+# If set to NO (the default) only methods in the interface are included.
+
+EXTRACT_LOCAL_METHODS  = NO
+
+# If this flag is set to YES, the members of anonymous namespaces will be 
+# extracted and appear in the documentation as a namespace called 
+# 'anonymous_namespace{file}', where file will be replaced with the base 
+# name of the file that contains the anonymous namespace. By default 
+# anonymous namespace are hidden.
+
+EXTRACT_ANON_NSPACES   = NO
+
+# If the HIDE_UNDOC_MEMBERS tag is set to YES, Doxygen will hide all 
+# undocumented members of documented classes, files or namespaces. 
+# If set to NO (the default) these members will be included in the 
+# various overviews, but no documentation section is generated. 
+# This option has no effect if EXTRACT_ALL is enabled.
+
+HIDE_UNDOC_MEMBERS     = NO
+
+# If the HIDE_UNDOC_CLASSES tag is set to YES, Doxygen will hide all 
+# undocumented classes that are normally visible in the class hierarchy. 
+# If set to NO (the default) these classes will be included in the various 
+# overviews. This option has no effect if EXTRACT_ALL is enabled.
+
+HIDE_UNDOC_CLASSES     = NO
+
+# If the HIDE_FRIEND_COMPOUNDS tag is set to YES, Doxygen will hide all 
+# friend (class|struct|union) declarations. 
+# If set to NO (the default) these declarations will be included in the 
+# documentation.
+
+HIDE_FRIEND_COMPOUNDS  = NO
+
+# If the HIDE_IN_BODY_DOCS tag is set to YES, Doxygen will hide any 
+# documentation blocks found inside the body of a function. 
+# If set to NO (the default) these blocks will be appended to the 
+# function's detailed documentation block.
+
+HIDE_IN_BODY_DOCS      = NO
+
+# The INTERNAL_DOCS tag determines if documentation 
+# that is typed after a \internal command is included. If the tag is set 
+# to NO (the default) then the documentation will be excluded. 
+# Set it to YES to include the internal documentation.
+
+INTERNAL_DOCS          = NO
+
+# If the CASE_SENSE_NAMES tag is set to NO then Doxygen will only generate 
+# file names in lower-case letters. If set to YES upper-case letters are also 
+# allowed. This is useful if you have classes or files whose names only differ 
+# in case and if your file system supports case sensitive file names. Windows 
+# and Mac users are advised to set this option to NO.
+
+CASE_SENSE_NAMES       = NO
+
+# If the HIDE_SCOPE_NAMES tag is set to NO (the default) then Doxygen 
+# will show members with their full class and namespace scopes in the 
+# documentation. If set to YES the scope will be hidden.
+
+HIDE_SCOPE_NAMES       = YES
+
+# If the SHOW_INCLUDE_FILES tag is set to YES (the default) then Doxygen 
+# will put a list of the files that are included by a file in the documentation 
+# of that file.
+
+SHOW_INCLUDE_FILES     = YES
+
+# If the INLINE_INFO tag is set to YES (the default) then a tag [inline] 
+# is inserted in the documentation for inline members.
+
+INLINE_INFO            = YES
+
+# If the SORT_MEMBER_DOCS tag is set to YES (the default) then doxygen 
+# will sort the (detailed) documentation of file and class members 
+# alphabetically by member name. If set to NO the members will appear in 
+# declaration order.
+
+SORT_MEMBER_DOCS       = YES
+
+# If the SORT_BRIEF_DOCS tag is set to YES then doxygen will sort the 
+# brief documentation of file, namespace and class members alphabetically 
+# by member name. If set to NO (the default) the members will appear in 
+# declaration order.
+
+SORT_BRIEF_DOCS        = NO
+
+# If the SORT_MEMBERS_CTORS_1ST tag is set to YES then doxygen
+# will sort the (brief and detailed) documentation of class members so that
+# constructors and destructors are listed first. If set to NO (the default)
+# the constructors will appear in the respective orders defined by
+# SORT_MEMBER_DOCS and SORT_BRIEF_DOCS.
+# This tag will be ignored for brief docs if SORT_BRIEF_DOCS is set to NO
+# and ignored for detailed docs if SORT_MEMBER_DOCS is set to NO.
+
+SORT_MEMBERS_CTORS_1ST = NO
+
+# If the SORT_GROUP_NAMES tag is set to YES then doxygen will sort the 
+# hierarchy of group names into alphabetical order. If set to NO (the default) 
+# the group names will appear in their defined order.
+
+SORT_GROUP_NAMES       = NO
+
+# If the SORT_BY_SCOPE_NAME tag is set to YES, the class list will be 
+# sorted by fully-qualified names, including namespaces. If set to 
+# NO (the default), the class list will be sorted only by class name, 
+# not including the namespace part. 
+# Note: This option is not very useful if HIDE_SCOPE_NAMES is set to YES. 
+# Note: This option applies only to the class list, not to the 
+# alphabetical list.
+
+SORT_BY_SCOPE_NAME     = NO
+
+# The GENERATE_TODOLIST tag can be used to enable (YES) or 
+# disable (NO) the todo list. This list is created by putting \todo 
+# commands in the documentation.
+
+GENERATE_TODOLIST      = YES
+
+# The GENERATE_TESTLIST tag can be used to enable (YES) or 
+# disable (NO) the test list. This list is created by putting \test 
+# commands in the documentation.
+
+GENERATE_TESTLIST      = YES
+
+# The GENERATE_BUGLIST tag can be used to enable (YES) or 
+# disable (NO) the bug list. This list is created by putting \bug 
+# commands in the documentation.
+
+GENERATE_BUGLIST       = YES
+
+# The GENERATE_DEPRECATEDLIST tag can be used to enable (YES) or 
+# disable (NO) the deprecated list. This list is created by putting 
+# \deprecated commands in the documentation.
+
+GENERATE_DEPRECATEDLIST= YES
+
+# The ENABLED_SECTIONS tag can be used to enable conditional 
+# documentation sections, marked by \if sectionname ... \endif.
+
+ENABLED_SECTIONS       = 
+
+# The MAX_INITIALIZER_LINES tag determines the maximum number of lines 
+# the initial value of a variable or define consists of for it to appear in 
+# the documentation. If the initializer consists of more lines than specified 
+# here it will be hidden. Use a value of 0 to hide initializers completely. 
+# The appearance of the initializer of individual variables and defines in the 
+# documentation can be controlled using \showinitializer or \hideinitializer 
+# command in the documentation regardless of this setting.
+
+MAX_INITIALIZER_LINES  = 62
+
+# Set the SHOW_USED_FILES tag to NO to disable the list of files generated 
+# at the bottom of the documentation of classes and structs. If set to YES the 
+# list will mention the files that were used to generate the documentation.
+
+SHOW_USED_FILES        = YES
+
+# If the sources in your project are distributed over multiple directories 
+# then setting the SHOW_DIRECTORIES tag to YES will show the directory hierarchy 
+# in the documentation. The default is NO.
+
+SHOW_DIRECTORIES       = NO
+
+# Set the SHOW_FILES tag to NO to disable the generation of the Files page. 
+# This will remove the Files entry from the Quick Index and from the 
+# Folder Tree View (if specified). The default is YES.
+
+SHOW_FILES             = YES
+
+# Set the SHOW_NAMESPACES tag to NO to disable the generation of the 
+# Namespaces page.  This will remove the Namespaces entry from the Quick Index 
+# and from the Folder Tree View (if specified). The default is YES.
+
+SHOW_NAMESPACES        = YES
+
+# The FILE_VERSION_FILTER tag can be used to specify a program or script that 
+# doxygen should invoke to get the current version for each file (typically from 
+# the version control system). Doxygen will invoke the program by executing (via 
+# popen()) the command <command> <input-file>, where <command> is the value of 
+# the FILE_VERSION_FILTER tag, and <input-file> is the name of an input file 
+# provided by doxygen. Whatever the program writes to standard output 
+# is used as the file version. See the manual for examples.
+
+FILE_VERSION_FILTER    = 
+
+# The LAYOUT_FILE tag can be used to specify a layout file which will be parsed by 
+# doxygen. The layout file controls the global structure of the generated output files 
+# in an output format independent way. The create the layout file that represents 
+# doxygen's defaults, run doxygen with the -l option. You can optionally specify a 
+# file name after the option, if omitted DoxygenLayout.xml will be used as the name 
+# of the layout file.
+
+LAYOUT_FILE            = 
+
+#---------------------------------------------------------------------------
+# configuration options related to warning and progress messages
+#---------------------------------------------------------------------------
+
+# The QUIET tag can be used to turn on/off the messages that are generated 
+# by doxygen. Possible values are YES and NO. If left blank NO is used.
+
+QUIET                  = NO
+
+# The WARNINGS tag can be used to turn on/off the warning messages that are 
+# generated by doxygen. Possible values are YES and NO. If left blank 
+# NO is used.
+
+WARNINGS               = YES
+
+# If WARN_IF_UNDOCUMENTED is set to YES, then doxygen will generate warnings 
+# for undocumented members. If EXTRACT_ALL is set to YES then this flag will 
+# automatically be disabled.
+
+WARN_IF_UNDOCUMENTED   = NO
+
+# If WARN_IF_DOC_ERROR is set to YES, doxygen will generate warnings for 
+# potential errors in the documentation, such as not documenting some 
+# parameters in a documented function, or documenting parameters that 
+# don't exist or using markup commands wrongly.
+
+WARN_IF_DOC_ERROR      = YES
+
+# This WARN_NO_PARAMDOC option can be abled to get warnings for 
+# functions that are documented, but have no documentation for their parameters 
+# or return value. If set to NO (the default) doxygen will only warn about 
+# wrong or incomplete parameter documentation, but not about the absence of 
+# documentation.
+
+WARN_NO_PARAMDOC       = NO
+
+# The WARN_FORMAT tag determines the format of the warning messages that 
+# doxygen can produce. The string should contain the $file, $line, and $text 
+# tags, which will be replaced by the file and line number from which the 
+# warning originated and the warning text. Optionally the format may contain 
+# $version, which will be replaced by the version of the file (if it could 
+# be obtained via FILE_VERSION_FILTER)
+
+WARN_FORMAT            = "$file:$line: $text"
+
+# The WARN_LOGFILE tag can be used to specify a file to which warning 
+# and error messages should be written. If left blank the output is written 
+# to stderr.
+
+WARN_LOGFILE           = 
+
+#---------------------------------------------------------------------------
+# configuration options related to the input files
+#---------------------------------------------------------------------------
+
+# The INPUT tag can be used to specify the files and/or directories that contain 
+# documented source files. You may enter file names like "myfile.cpp" or 
+# directories like "/usr/src/myproject". Separate the files or directories 
+# with spaces.
+
+INPUT                  = src
+
+# This tag can be used to specify the character encoding of the source files 
+# that doxygen parses. Internally doxygen uses the UTF-8 encoding, which is 
+# also the default input encoding. Doxygen uses libiconv (or the iconv built 
+# into libc) for the transcoding. See http://www.gnu.org/software/libiconv for 
+# the list of possible encodings.
+
+INPUT_ENCODING         = UTF-8
+
+# If the value of the INPUT tag contains directories, you can use the 
+# FILE_PATTERNS tag to specify one or more wildcard pattern (like *.cpp 
+# and *.h) to filter out the source-files in the directories. If left 
+# blank the following patterns are tested: 
+# *.c *.cc *.cxx *.cpp *.c++ *.java *.ii *.ixx *.ipp *.i++ *.inl *.h *.hh *.hxx 
+# *.hpp *.h++ *.idl *.odl *.cs *.php *.php3 *.inc *.m *.mm *.py *.f90
+
+FILE_PATTERNS          = *.c \
+                         *.cc \
+                         *.cxx \
+                         *.cpp \
+                         *.c++ \
+                         *.java \
+                         *.ii \
+                         *.ixx \
+                         *.ipp \
+                         *.i++ \
+                         *.inl \
+                         *.h \
+                         *.hh \
+                         *.hxx \
+                         *.hpp \
+                         *.h++ \
+                         *.idl \
+                         *.odl \
+                         *.cs \
+                         *.php \
+                         *.php3 \
+                         *.inc \
+                         *.m \
+                         *.mm \
+                         *.dox \
+                         *.py \
+                         *.f90 \
+                         *.f \
+                         *.vhd \
+                         *.vhdl \
+                         *.asm
+
+# The RECURSIVE tag can be used to turn specify whether or not subdirectories 
+# should be searched for input files as well. Possible values are YES and NO. 
+# If left blank NO is used.
+
+RECURSIVE              = YES
+
+# The EXCLUDE tag can be used to specify files and/or directories that should 
+# excluded from the INPUT source files. This way you can easily exclude a 
+# subdirectory from a directory tree whose root is specified with the INPUT tag.
+
+EXCLUDE                = 
+
+# The EXCLUDE_SYMLINKS tag can be used select whether or not files or 
+# directories that are symbolic links (a Unix filesystem feature) are excluded 
+# from the input.
+
+EXCLUDE_SYMLINKS       = NO
+
+# If the value of the INPUT tag contains directories, you can use the 
+# EXCLUDE_PATTERNS tag to specify one or more wildcard patterns to exclude 
+# certain files from those directories. Note that the wildcards are matched 
+# against the file with absolute path, so to exclude all test directories 
+# for example use the pattern */test/*
+
+EXCLUDE_PATTERNS       = 
+
+# The EXCLUDE_SYMBOLS tag can be used to specify one or more symbol names 
+# (namespaces, classes, functions, etc.) that should be excluded from the 
+# output. The symbol name can be a fully qualified name, a word, or if the 
+# wildcard * is used, a substring. Examples: ANamespace, AClass, 
+# AClass::ANamespace, ANamespace::*Test
+
+EXCLUDE_SYMBOLS        = 
+
+# The EXAMPLE_PATH tag can be used to specify one or more files or 
+# directories that contain example code fragments that are included (see 
+# the \include command).
+
+EXAMPLE_PATH           = 
+
+# If the value of the EXAMPLE_PATH tag contains directories, you can use the 
+# EXAMPLE_PATTERNS tag to specify one or more wildcard pattern (like *.cpp 
+# and *.h) to filter out the source-files in the directories. If left 
+# blank all files are included.
+
+EXAMPLE_PATTERNS       = *
+
+# If the EXAMPLE_RECURSIVE tag is set to YES then subdirectories will be 
+# searched for input files to be used with the \include or \dontinclude 
+# commands irrespective of the value of the RECURSIVE tag. 
+# Possible values are YES and NO. If left blank NO is used.
+
+EXAMPLE_RECURSIVE      = NO
+
+# The IMAGE_PATH tag can be used to specify one or more files or 
+# directories that contain image that are included in the documentation (see 
+# the \image command).
+
+IMAGE_PATH             = images
+
+# The INPUT_FILTER tag can be used to specify a program that doxygen should 
+# invoke to filter for each input file. Doxygen will invoke the filter program 
+# by executing (via popen()) the command <filter> <input-file>, where <filter> 
+# is the value of the INPUT_FILTER tag, and <input-file> is the name of an 
+# input file. Doxygen will then use the output that the filter program writes 
+# to standard output.  If FILTER_PATTERNS is specified, this tag will be 
+# ignored.
+
+INPUT_FILTER           = 
+
+# The FILTER_PATTERNS tag can be used to specify filters on a per file pattern 
+# basis.  Doxygen will compare the file name with each pattern and apply the 
+# filter if there is a match.  The filters are a list of the form: 
+# pattern=filter (like *.cpp=my_cpp_filter). See INPUT_FILTER for further 
+# info on how filters are used. If FILTER_PATTERNS is empty, INPUT_FILTER 
+# is applied to all files.
+
+FILTER_PATTERNS        = 
+
+# If the FILTER_SOURCE_FILES tag is set to YES, the input filter (if set using 
+# INPUT_FILTER) will be used to filter the input files when producing source 
+# files to browse (i.e. when SOURCE_BROWSER is set to YES).
+
+FILTER_SOURCE_FILES    = NO
+
+#---------------------------------------------------------------------------
+# configuration options related to source browsing
+#---------------------------------------------------------------------------
+
+# If the SOURCE_BROWSER tag is set to YES then a list of source files will 
+# be generated. Documented entities will be cross-referenced with these sources. 
+# Note: To get rid of all source code in the generated output, make sure also 
+# VERBATIM_HEADERS is set to NO.
+
+SOURCE_BROWSER         = YES
+
+# Setting the INLINE_SOURCES tag to YES will include the body 
+# of functions and classes directly in the documentation.
+
+INLINE_SOURCES         = NO
+
+# Setting the STRIP_CODE_COMMENTS tag to YES (the default) will instruct 
+# doxygen to hide any special comment blocks from generated source code 
+# fragments. Normal C and C++ comments will always remain visible.
+
+STRIP_CODE_COMMENTS    = YES
+
+# If the REFERENCED_BY_RELATION tag is set to YES 
+# then for each documented function all documented 
+# functions referencing it will be listed.
+
+REFERENCED_BY_RELATION = NO
+
+# If the REFERENCES_RELATION tag is set to YES 
+# then for each documented function all documented entities 
+# called/used by that function will be listed.
+
+REFERENCES_RELATION    = NO
+
+# If the REFERENCES_LINK_SOURCE tag is set to YES (the default) 
+# and SOURCE_BROWSER tag is set to YES, then the hyperlinks from 
+# functions in REFERENCES_RELATION and REFERENCED_BY_RELATION lists will 
+# link to the source code.  Otherwise they will link to the documentation.
+
+REFERENCES_LINK_SOURCE = YES
+
+# If the USE_HTAGS tag is set to YES then the references to source code 
+# will point to the HTML generated by the htags(1) tool instead of doxygen 
+# built-in source browser. The htags tool is part of GNU's global source 
+# tagging system (see http://www.gnu.org/software/global/global.html). You 
+# will need version 4.8.6 or higher.
+
+USE_HTAGS              = NO
+
+# If the VERBATIM_HEADERS tag is set to YES (the default) then Doxygen 
+# will generate a verbatim copy of the header file for each class for 
+# which an include is specified. Set to NO to disable this.
+
+VERBATIM_HEADERS       = YES
+
+#---------------------------------------------------------------------------
+# configuration options related to the alphabetical class index
+#---------------------------------------------------------------------------
+
+# If the ALPHABETICAL_INDEX tag is set to YES, an alphabetical index 
+# of all compounds will be generated. Enable this if the project 
+# contains a lot of classes, structs, unions or interfaces.
+
+ALPHABETICAL_INDEX     = NO
+
+# If the alphabetical index is enabled (see ALPHABETICAL_INDEX) then 
+# the COLS_IN_ALPHA_INDEX tag can be used to specify the number of columns 
+# in which this list will be split (can be a number in the range [1..20])
+
+COLS_IN_ALPHA_INDEX    = 5
+
+# In case all classes in a project start with a common prefix, all 
+# classes will be put under the same header in the alphabetical index. 
+# The IGNORE_PREFIX tag can be used to specify one or more prefixes that 
+# should be ignored while generating the index headers.
+
+IGNORE_PREFIX          = 
+
+#---------------------------------------------------------------------------
+# configuration options related to the HTML output
+#---------------------------------------------------------------------------
+
+# If the GENERATE_HTML tag is set to YES (the default) Doxygen will 
+# generate HTML output.
+
+GENERATE_HTML          = YES
+
+# The HTML_OUTPUT tag is used to specify where the HTML docs will be put. 
+# If a relative path is entered the value of OUTPUT_DIRECTORY will be 
+# put in front of it. If left blank `html' will be used as the default path.
+
+HTML_OUTPUT            = html
+
+# The HTML_FILE_EXTENSION tag can be used to specify the file extension for 
+# each generated HTML page (for example: .htm,.php,.asp). If it is left blank 
+# doxygen will generate files with .html extension.
+
+HTML_FILE_EXTENSION    = .html
+
+# The HTML_HEADER tag can be used to specify a personal HTML header for 
+# each generated HTML page. If it is left blank doxygen will generate a 
+# standard header.
+
+HTML_HEADER            = header.html
+
+# The HTML_FOOTER tag can be used to specify a personal HTML footer for 
+# each generated HTML page. If it is left blank doxygen will generate a 
+# standard footer.
+
+HTML_FOOTER            = footer.html
+
+# The HTML_STYLESHEET tag can be used to specify a user-defined cascading 
+# style sheet that is used by each HTML page. It can be used to 
+# fine-tune the look of the HTML output. If the tag is left blank doxygen 
+# will generate a default style sheet. Note that doxygen will try to copy 
+# the style sheet file to the HTML output directory, so don't put your own 
+# stylesheet in the HTML output directory as well, or it will be erased!
+
+HTML_STYLESHEET        = 
+
+# If the HTML_ALIGN_MEMBERS tag is set to YES, the members of classes, 
+# files or namespaces will be aligned in HTML using tables. If set to 
+# NO a bullet list will be used.
+
+HTML_ALIGN_MEMBERS     = YES
+
+# If the HTML_DYNAMIC_SECTIONS tag is set to YES then the generated HTML 
+# documentation will contain sections that can be hidden and shown after the 
+# page has loaded. For this to work a browser that supports 
+# JavaScript and DHTML is required (for instance Mozilla 1.0+, Firefox 
+# Netscape 6.0+, Internet explorer 5.0+, Konqueror, or Safari).
+
+HTML_DYNAMIC_SECTIONS  = NO
+
+# If the GENERATE_DOCSET tag is set to YES, additional index files 
+# will be generated that can be used as input for Apple's Xcode 3 
+# integrated development environment, introduced with OSX 10.5 (Leopard). 
+# To create a documentation set, doxygen will generate a Makefile in the 
+# HTML output directory. Running make will produce the docset in that 
+# directory and running "make install" will install the docset in 
+# ~/Library/Developer/Shared/Documentation/DocSets so that Xcode will find 
+# it at startup. 
+# See http://developer.apple.com/tools/creatingdocsetswithdoxygen.html for more information.
+
+GENERATE_DOCSET        = NO
+
+# When GENERATE_DOCSET tag is set to YES, this tag determines the name of the 
+# feed. A documentation feed provides an umbrella under which multiple 
+# documentation sets from a single provider (such as a company or product suite) 
+# can be grouped.
+
+DOCSET_FEEDNAME        = "Doxygen generated docs"
+
+# When GENERATE_DOCSET tag is set to YES, this tag specifies a string that 
+# should uniquely identify the documentation set bundle. This should be a 
+# reverse domain-name style string, e.g. com.mycompany.MyDocSet. Doxygen 
+# will append .docset to the name.
+
+DOCSET_BUNDLE_ID       = org.doxygen.Project
+
+# If the GENERATE_HTMLHELP tag is set to YES, additional index files 
+# will be generated that can be used as input for tools like the 
+# Microsoft HTML help workshop to generate a compiled HTML help file (.chm) 
+# of the generated HTML documentation.
+
+GENERATE_HTMLHELP      = NO
+
+# If the GENERATE_HTMLHELP tag is set to YES, the CHM_FILE tag can 
+# be used to specify the file name of the resulting .chm file. You 
+# can add a path in front of the file if the result should not be 
+# written to the html output directory.
+
+CHM_FILE               = 
+
+# If the GENERATE_HTMLHELP tag is set to YES, the HHC_LOCATION tag can 
+# be used to specify the location (absolute path including file name) of 
+# the HTML help compiler (hhc.exe). If non-empty doxygen will try to run 
+# the HTML help compiler on the generated index.hhp.
+
+HHC_LOCATION           = 
+
+# If the GENERATE_HTMLHELP tag is set to YES, the GENERATE_CHI flag 
+# controls if a separate .chi index file is generated (YES) or that 
+# it should be included in the master .chm file (NO).
+
+GENERATE_CHI           = NO
+
+# If the GENERATE_HTMLHELP tag is set to YES, the CHM_INDEX_ENCODING 
+# is used to encode HtmlHelp index (hhk), content (hhc) and project file 
+# content.
+
+CHM_INDEX_ENCODING     = 
+
+# If the GENERATE_HTMLHELP tag is set to YES, the BINARY_TOC flag 
+# controls whether a binary table of contents is generated (YES) or a 
+# normal table of contents (NO) in the .chm file.
+
+BINARY_TOC             = NO
+
+# The TOC_EXPAND flag can be set to YES to add extra items for group members 
+# to the contents of the HTML help documentation and to the tree view.
+
+TOC_EXPAND             = NO
+
+# If the GENERATE_QHP tag is set to YES and both QHP_NAMESPACE and QHP_VIRTUAL_FOLDER 
+# are set, an additional index file will be generated that can be used as input for 
+# Qt's qhelpgenerator to generate a Qt Compressed Help (.qch) of the generated 
+# HTML documentation.
+
+GENERATE_QHP           = NO
+
+# If the QHG_LOCATION tag is specified, the QCH_FILE tag can 
+# be used to specify the file name of the resulting .qch file. 
+# The path specified is relative to the HTML output folder.
+
+QCH_FILE               = 
+
+# The QHP_NAMESPACE tag specifies the namespace to use when generating 
+# Qt Help Project output. For more information please see 
+# http://doc.trolltech.com/qthelpproject.html#namespace
+
+QHP_NAMESPACE          = org.doxygen.Project
+
+# The QHP_VIRTUAL_FOLDER tag specifies the namespace to use when generating 
+# Qt Help Project output. For more information please see 
+# http://doc.trolltech.com/qthelpproject.html#virtual-folders
+
+QHP_VIRTUAL_FOLDER     = doc
+
+# If QHP_CUST_FILTER_NAME is set, it specifies the name of a custom filter to add. 
+# For more information please see 
+# http://doc.trolltech.com/qthelpproject.html#custom-filters
+
+QHP_CUST_FILTER_NAME   = 
+
+# The QHP_CUST_FILT_ATTRS tag specifies the list of the attributes of the custom filter to add.For more information please see 
+# <a href="http://doc.trolltech.com/qthelpproject.html#custom-filters">Qt Help Project / Custom Filters</a>.
+
+QHP_CUST_FILTER_ATTRS  = 
+
+# The QHP_SECT_FILTER_ATTRS tag specifies the list of the attributes this project's 
+# filter section matches. 
+# <a href="http://doc.trolltech.com/qthelpproject.html#filter-attributes">Qt Help Project / Filter Attributes</a>.
+
+QHP_SECT_FILTER_ATTRS  = 
+
+# If the GENERATE_QHP tag is set to YES, the QHG_LOCATION tag can 
+# be used to specify the location of Qt's qhelpgenerator. 
+# If non-empty doxygen will try to run qhelpgenerator on the generated 
+# .qhp file.
+
+QHG_LOCATION           = 
+
+# The DISABLE_INDEX tag can be used to turn on/off the condensed index at 
+# top of each HTML page. The value NO (the default) enables the index and 
+# the value YES disables it.
+
+DISABLE_INDEX          = NO
+
+# This tag can be used to set the number of enum values (range [1..20]) 
+# that doxygen will group on one line in the generated HTML documentation.
+
+ENUM_VALUES_PER_LINE   = 4
+
+# The GENERATE_TREEVIEW tag is used to specify whether a tree-like index 
+# structure should be generated to display hierarchical information. 
+# If the tag value is set to YES, a side panel will be generated 
+# containing a tree-like index structure (just like the one that 
+# is generated for HTML Help). For this to work a browser that supports 
+# JavaScript, DHTML, CSS and frames is required (i.e. any modern browser). 
+# Windows users are probably better off using the HTML help feature.
+
+GENERATE_TREEVIEW      = NO
+
+# By enabling USE_INLINE_TREES, doxygen will generate the Groups, Directories, 
+# and Class Hierarchy pages using a tree view instead of an ordered list.
+
+USE_INLINE_TREES       = NO
+
+# If the treeview is enabled (see GENERATE_TREEVIEW) then this tag can be 
+# used to set the initial width (in pixels) of the frame in which the tree 
+# is shown.
+
+TREEVIEW_WIDTH         = 250
+
+# Use this tag to change the font size of Latex formulas included 
+# as images in the HTML documentation. The default is 10. Note that 
+# when you change the font size after a successful doxygen run you need 
+# to manually remove any form_*.png images from the HTML output directory 
+# to force them to be regenerated.
+
+FORMULA_FONTSIZE       = 10
+
+# When the SEARCHENGINE tag is enable doxygen will generate a search box
+# for the HTML output. The underlying search engine uses javascript 
+# and DHTML and should work on any modern browser. Note that when using
+# HTML help (GENERATE_HTMLHELP) or Qt help (GENERATE_QHP) 
+# there is already a search function so this one should typically 
+# be disabled.
+
+SEARCHENGINE           = NO
+
+#---------------------------------------------------------------------------
+# configuration options related to the LaTeX output
+#---------------------------------------------------------------------------
+
+# If the GENERATE_LATEX tag is set to YES (the default) Doxygen will 
+# generate Latex output.
+
+GENERATE_LATEX         = NO
+
+# The LATEX_OUTPUT tag is used to specify where the LaTeX docs will be put. 
+# If a relative path is entered the value of OUTPUT_DIRECTORY will be 
+# put in front of it. If left blank `latex' will be used as the default path.
+
+LATEX_OUTPUT           = latex
+
+# The LATEX_CMD_NAME tag can be used to specify the LaTeX command name to be 
+# invoked. If left blank `latex' will be used as the default command name.
+
+LATEX_CMD_NAME         = latex
+
+# The MAKEINDEX_CMD_NAME tag can be used to specify the command name to 
+# generate index for LaTeX. If left blank `makeindex' will be used as the 
+# default command name.
+
+MAKEINDEX_CMD_NAME     = makeindex
+
+# If the COMPACT_LATEX tag is set to YES Doxygen generates more compact 
+# LaTeX documents. This may be useful for small projects and may help to 
+# save some trees in general.
+
+COMPACT_LATEX          = NO
+
+# The PAPER_TYPE tag can be used to set the paper type that is used 
+# by the printer. Possible values are: a4, a4wide, letter, legal and 
+# executive. If left blank a4wide will be used.
+
+PAPER_TYPE             = a4wide
+
+# The EXTRA_PACKAGES tag can be to specify one or more names of LaTeX 
+# packages that should be included in the LaTeX output.
+
+EXTRA_PACKAGES         = 
+
+# The LATEX_HEADER tag can be used to specify a personal LaTeX header for 
+# the generated latex document. The header should contain everything until 
+# the first chapter. If it is left blank doxygen will generate a 
+# standard header. Notice: only use this tag if you know what you are doing!
+
+LATEX_HEADER           = 
+
+# If the PDF_HYPERLINKS tag is set to YES, the LaTeX that is generated 
+# is prepared for conversion to pdf (using ps2pdf). The pdf file will 
+# contain links (just like the HTML output) instead of page references 
+# This makes the output suitable for online browsing using a pdf viewer.
+
+PDF_HYPERLINKS         = YES
+
+# If the USE_PDFLATEX tag is set to YES, pdflatex will be used instead of 
+# plain latex in the generated Makefile. Set this option to YES to get a 
+# higher quality PDF documentation.
+
+USE_PDFLATEX           = YES
+
+# If the LATEX_BATCHMODE tag is set to YES, doxygen will add the \\batchmode. 
+# command to the generated LaTeX files. This will instruct LaTeX to keep 
+# running if errors occur, instead of asking the user for help. 
+# This option is also used when generating formulas in HTML.
+
+LATEX_BATCHMODE        = NO
+
+# If LATEX_HIDE_INDICES is set to YES then doxygen will not 
+# include the index chapters (such as File Index, Compound Index, etc.) 
+# in the output.
+
+LATEX_HIDE_INDICES     = NO
+
+# If LATEX_SOURCE_CODE is set to YES then doxygen will include
+# source code with syntax highlighting in the LaTeX output.
+# Note that which sources are shown also depends on other settings
+# such as SOURCE_BROWSER.
+
+LATEX_SOURCE_CODE      = NO
+
+#---------------------------------------------------------------------------
+# configuration options related to the RTF output
+#---------------------------------------------------------------------------
+
+# If the GENERATE_RTF tag is set to YES Doxygen will generate RTF output 
+# The RTF output is optimized for Word 97 and may not look very pretty with 
+# other RTF readers or editors.
+
+GENERATE_RTF           = NO
+
+# The RTF_OUTPUT tag is used to specify where the RTF docs will be put. 
+# If a relative path is entered the value of OUTPUT_DIRECTORY will be 
+# put in front of it. If left blank `rtf' will be used as the default path.
+
+RTF_OUTPUT             = rtf
+
+# If the COMPACT_RTF tag is set to YES Doxygen generates more compact 
+# RTF documents. This may be useful for small projects and may help to 
+# save some trees in general.
+
+COMPACT_RTF            = NO
+
+# If the RTF_HYPERLINKS tag is set to YES, the RTF that is generated 
+# will contain hyperlink fields. The RTF file will 
+# contain links (just like the HTML output) instead of page references. 
+# This makes the output suitable for online browsing using WORD or other 
+# programs which support those fields. 
+# Note: wordpad (write) and others do not support links.
+
+RTF_HYPERLINKS         = NO
+
+# Load stylesheet definitions from file. Syntax is similar to doxygen's 
+# config file, i.e. a series of assignments. You only have to provide 
+# replacements, missing definitions are set to their default value.
+
+RTF_STYLESHEET_FILE    = 
+
+# Set optional variables used in the generation of an rtf document. 
+# Syntax is similar to doxygen's config file.
+
+RTF_EXTENSIONS_FILE    = 
+
+#---------------------------------------------------------------------------
+# configuration options related to the man page output
+#---------------------------------------------------------------------------
+
+# If the GENERATE_MAN tag is set to YES (the default) Doxygen will 
+# generate man pages
+
+GENERATE_MAN           = NO
+
+# The MAN_OUTPUT tag is used to specify where the man pages will be put. 
+# If a relative path is entered the value of OUTPUT_DIRECTORY will be 
+# put in front of it. If left blank `man' will be used as the default path.
+
+MAN_OUTPUT             = man
+
+# The MAN_EXTENSION tag determines the extension that is added to 
+# the generated man pages (default is the subroutine's section .3)
+
+MAN_EXTENSION          = .3
+
+# If the MAN_LINKS tag is set to YES and Doxygen generates man output, 
+# then it will generate one additional man file for each entity 
+# documented in the real man page(s). These additional files 
+# only source the real man page, but without them the man command 
+# would be unable to find the correct page. The default is NO.
+
+MAN_LINKS              = NO
+
+#---------------------------------------------------------------------------
+# configuration options related to the XML output
+#---------------------------------------------------------------------------
+
+# If the GENERATE_XML tag is set to YES Doxygen will 
+# generate an XML file that captures the structure of 
+# the code including all documentation.
+
+GENERATE_XML           = NO
+
+# The XML_OUTPUT tag is used to specify where the XML pages will be put. 
+# If a relative path is entered the value of OUTPUT_DIRECTORY will be 
+# put in front of it. If left blank `xml' will be used as the default path.
+
+XML_OUTPUT             = xml
+
+# The XML_SCHEMA tag can be used to specify an XML schema, 
+# which can be used by a validating XML parser to check the 
+# syntax of the XML files.
+
+XML_SCHEMA             = 
+
+# The XML_DTD tag can be used to specify an XML DTD, 
+# which can be used by a validating XML parser to check the 
+# syntax of the XML files.
+
+XML_DTD                = 
+
+# If the XML_PROGRAMLISTING tag is set to YES Doxygen will 
+# dump the program listings (including syntax highlighting 
+# and cross-referencing information) to the XML output. Note that 
+# enabling this will significantly increase the size of the XML output.
+
+XML_PROGRAMLISTING     = YES
+
+#---------------------------------------------------------------------------
+# configuration options for the AutoGen Definitions output
+#---------------------------------------------------------------------------
+
+# If the GENERATE_AUTOGEN_DEF tag is set to YES Doxygen will 
+# generate an AutoGen Definitions (see autogen.sf.net) file 
+# that captures the structure of the code including all 
+# documentation. Note that this feature is still experimental 
+# and incomplete at the moment.
+
+GENERATE_AUTOGEN_DEF   = NO
+
+#---------------------------------------------------------------------------
+# configuration options related to the Perl module output
+#---------------------------------------------------------------------------
+
+# If the GENERATE_PERLMOD tag is set to YES Doxygen will 
+# generate a Perl module file that captures the structure of 
+# the code including all documentation. Note that this 
+# feature is still experimental and incomplete at the 
+# moment.
+
+GENERATE_PERLMOD       = NO
+
+# If the PERLMOD_LATEX tag is set to YES Doxygen will generate 
+# the necessary Makefile rules, Perl scripts and LaTeX code to be able 
+# to generate PDF and DVI output from the Perl module output.
+
+PERLMOD_LATEX          = NO
+
+# If the PERLMOD_PRETTY tag is set to YES the Perl module output will be 
+# nicely formatted so it can be parsed by a human reader.  This is useful 
+# if you want to understand what is going on.  On the other hand, if this 
+# tag is set to NO the size of the Perl module output will be much smaller 
+# and Perl will parse it just the same.
+
+PERLMOD_PRETTY         = YES
+
+# The names of the make variables in the generated doxyrules.make file 
+# are prefixed with the string contained in PERLMOD_MAKEVAR_PREFIX. 
+# This is useful so different doxyrules.make files included by the same 
+# Makefile don't overwrite each other's variables.
+
+PERLMOD_MAKEVAR_PREFIX = 
+
+#---------------------------------------------------------------------------
+# Configuration options related to the preprocessor
+#---------------------------------------------------------------------------
+
+# If the ENABLE_PREPROCESSING tag is set to YES (the default) Doxygen will 
+# evaluate all C-preprocessor directives found in the sources and include 
+# files.
+
+ENABLE_PREPROCESSING   = YES
+
+# If the MACRO_EXPANSION tag is set to YES Doxygen will expand all macro 
+# names in the source code. If set to NO (the default) only conditional 
+# compilation will be performed. Macro expansion can be done in a controlled 
+# way by setting EXPAND_ONLY_PREDEF to YES.
+
+MACRO_EXPANSION        = NO
+
+# If the EXPAND_ONLY_PREDEF and MACRO_EXPANSION tags are both set to YES 
+# then the macro expansion is limited to the macros specified with the 
+# PREDEFINED and EXPAND_AS_DEFINED tags.
+
+EXPAND_ONLY_PREDEF     = NO
+
+# If the SEARCH_INCLUDES tag is set to YES (the default) the includes files 
+# in the INCLUDE_PATH (see below) will be search if a #include is found.
+
+SEARCH_INCLUDES        = YES
+
+# The INCLUDE_PATH tag can be used to specify one or more directories that 
+# contain include files that are not input files but should be processed by 
+# the preprocessor.
+
+INCLUDE_PATH           = 
+
+# You can use the INCLUDE_FILE_PATTERNS tag to specify one or more wildcard 
+# patterns (like *.h and *.hpp) to filter out the header-files in the 
+# directories. If left blank, the patterns specified with FILE_PATTERNS will 
+# be used.
+
+INCLUDE_FILE_PATTERNS  = 
+
+# The PREDEFINED tag can be used to specify one or more macro names that 
+# are defined before the preprocessor is started (similar to the -D option of 
+# gcc). The argument of the tag is a list of macros of the form: name 
+# or name=definition (no spaces). If the definition and the = are 
+# omitted =1 is assumed. To prevent a macro definition from being 
+# undefined via #undef or recursively expanded use the := operator 
+# instead of the = operator.
+
+PREDEFINED             = 
+
+# If the MACRO_EXPANSION and EXPAND_ONLY_PREDEF tags are set to YES then 
+# this tag can be used to specify a list of macro names that should be expanded. 
+# The macro definition that is found in the sources will be used. 
+# Use the PREDEFINED tag if you want to use a different macro definition.
+
+EXPAND_AS_DEFINED      = 
+
+# If the SKIP_FUNCTION_MACROS tag is set to YES (the default) then 
+# doxygen's preprocessor will remove all function-like macros that are alone 
+# on a line, have an all uppercase name, and do not end with a semicolon. Such 
+# function macros are typically used for boiler-plate code, and will confuse 
+# the parser if not removed.
+
+SKIP_FUNCTION_MACROS   = YES
+
+#---------------------------------------------------------------------------
+# Configuration::additions related to external references
+#---------------------------------------------------------------------------
+
+# The TAGFILES option can be used to specify one or more tagfiles. 
+# Optionally an initial location of the external documentation 
+# can be added for each tagfile. The format of a tag file without 
+# this location is as follows: 
+#   TAGFILES = file1 file2 ... 
+# Adding location for the tag files is done as follows: 
+#   TAGFILES = file1=loc1 "file2 = loc2" ... 
+# where "loc1" and "loc2" can be relative or absolute paths or 
+# URLs. If a location is present for each tag, the installdox tool 
+# does not have to be run to correct the links. 
+# Note that each tag file must have a unique name 
+# (where the name does NOT include the path) 
+# If a tag file is not located in the directory in which doxygen 
+# is run, you must also specify the path to the tagfile here.
+
+TAGFILES               = ../tinySAK/tinySAK.tag
+
+# When a file name is specified after GENERATE_TAGFILE, doxygen will create 
+# a tag file that is based on the input files it reads.
+
+GENERATE_TAGFILE       = tinyIPSec.tag
+
+# If the ALLEXTERNALS tag is set to YES all external classes will be listed 
+# in the class index. If set to NO only the inherited external classes 
+# will be listed.
+
+ALLEXTERNALS           = NO
+
+# If the EXTERNAL_GROUPS tag is set to YES all external groups will be listed 
+# in the modules index. If set to NO, only the current project's groups will 
+# be listed.
+
+EXTERNAL_GROUPS        = NO
+
+# The PERL_PATH should be the absolute path and name of the perl script 
+# interpreter (i.e. the result of `which perl').
+
+PERL_PATH              = /usr/bin/perl
+
+#---------------------------------------------------------------------------
+# Configuration options related to the dot tool
+#---------------------------------------------------------------------------
+
+# If the CLASS_DIAGRAMS tag is set to YES (the default) Doxygen will 
+# generate a inheritance diagram (in HTML, RTF and LaTeX) for classes with base 
+# or super classes. Setting the tag to NO turns the diagrams off. Note that 
+# this option is superseded by the HAVE_DOT option below. This is only a 
+# fallback. It is recommended to install and use dot, since it yields more 
+# powerful graphs.
+
+CLASS_DIAGRAMS         = NO
+
+# You can define message sequence charts within doxygen comments using the \msc 
+# command. Doxygen will then run the mscgen tool (see 
+# http://www.mcternan.me.uk/mscgen/) to produce the chart and insert it in the 
+# documentation. The MSCGEN_PATH tag allows you to specify the directory where 
+# the mscgen tool resides. If left empty the tool is assumed to be found in the 
+# default search path.
+
+MSCGEN_PATH            = 
+
+# If set to YES, the inheritance and collaboration graphs will hide 
+# inheritance and usage relations if the target is undocumented 
+# or is not a class.
+
+HIDE_UNDOC_RELATIONS   = YES
+
+# If you set the HAVE_DOT tag to YES then doxygen will assume the dot tool is 
+# available from the path. This tool is part of Graphviz, a graph visualization 
+# toolkit from AT&T and Lucent Bell Labs. The other options in this section 
+# have no effect if this option is set to NO (the default)
+
+HAVE_DOT               = NO
+
+# By default doxygen will write a font called FreeSans.ttf to the output 
+# directory and reference it in all dot files that doxygen generates. This 
+# font does not include all possible unicode characters however, so when you need 
+# these (or just want a differently looking font) you can specify the font name 
+# using DOT_FONTNAME. You need need to make sure dot is able to find the font, 
+# which can be done by putting it in a standard location or by setting the 
+# DOTFONTPATH environment variable or by setting DOT_FONTPATH to the directory 
+# containing the font.
+
+DOT_FONTNAME           = FreeSans
+
+# The DOT_FONTSIZE tag can be used to set the size of the font of dot graphs. 
+# The default size is 10pt.
+
+DOT_FONTSIZE           = 10
+
+# By default doxygen will tell dot to use the output directory to look for the 
+# FreeSans.ttf font (which doxygen will put there itself). If you specify a 
+# different font using DOT_FONTNAME you can set the path where dot 
+# can find it using this tag.
+
+DOT_FONTPATH           = 
+
+# If the CLASS_GRAPH and HAVE_DOT tags are set to YES then doxygen 
+# will generate a graph for each documented class showing the direct and 
+# indirect inheritance relations. Setting this tag to YES will force the 
+# the CLASS_DIAGRAMS tag to NO.
+
+CLASS_GRAPH            = YES
+
+# If the COLLABORATION_GRAPH and HAVE_DOT tags are set to YES then doxygen 
+# will generate a graph for each documented class showing the direct and 
+# indirect implementation dependencies (inheritance, containment, and 
+# class references variables) of the class with other documented classes.
+
+COLLABORATION_GRAPH    = YES
+
+# If the GROUP_GRAPHS and HAVE_DOT tags are set to YES then doxygen 
+# will generate a graph for groups, showing the direct groups dependencies
+
+GROUP_GRAPHS           = YES
+
+# If the UML_LOOK tag is set to YES doxygen will generate inheritance and 
+# collaboration diagrams in a style similar to the OMG's Unified Modeling 
+# Language.
+
+UML_LOOK               = NO
+
+# If set to YES, the inheritance and collaboration graphs will show the 
+# relations between templates and their instances.
+
+TEMPLATE_RELATIONS     = NO
+
+# If the ENABLE_PREPROCESSING, SEARCH_INCLUDES, INCLUDE_GRAPH, and HAVE_DOT 
+# tags are set to YES then doxygen will generate a graph for each documented 
+# file showing the direct and indirect include dependencies of the file with 
+# other documented files.
+
+INCLUDE_GRAPH          = YES
+
+# If the ENABLE_PREPROCESSING, SEARCH_INCLUDES, INCLUDED_BY_GRAPH, and 
+# HAVE_DOT tags are set to YES then doxygen will generate a graph for each 
+# documented header file showing the documented files that directly or 
+# indirectly include this file.
+
+INCLUDED_BY_GRAPH      = YES
+
+# If the CALL_GRAPH and HAVE_DOT options are set to YES then 
+# doxygen will generate a call dependency graph for every global function 
+# or class method. Note that enabling this option will significantly increase 
+# the time of a run. So in most cases it will be better to enable call graphs 
+# for selected functions only using the \callgraph command.
+
+CALL_GRAPH             = YES
+
+# If the CALLER_GRAPH and HAVE_DOT tags are set to YES then 
+# doxygen will generate a caller dependency graph for every global function 
+# or class method. Note that enabling this option will significantly increase 
+# the time of a run. So in most cases it will be better to enable caller 
+# graphs for selected functions only using the \callergraph command.
+
+CALLER_GRAPH           = YES
+
+# If the GRAPHICAL_HIERARCHY and HAVE_DOT tags are set to YES then doxygen 
+# will graphical hierarchy of all classes instead of a textual one.
+
+GRAPHICAL_HIERARCHY    = YES
+
+# If the DIRECTORY_GRAPH, SHOW_DIRECTORIES and HAVE_DOT tags are set to YES 
+# then doxygen will show the dependencies a directory has on other directories 
+# in a graphical way. The dependency relations are determined by the #include 
+# relations between the files in the directories.
+
+DIRECTORY_GRAPH        = YES
+
+# The DOT_IMAGE_FORMAT tag can be used to set the image format of the images 
+# generated by dot. Possible values are png, jpg, or gif 
+# If left blank png will be used.
+
+DOT_IMAGE_FORMAT       = png
+
+# The tag DOT_PATH can be used to specify the path where the dot tool can be 
+# found. If left blank, it is assumed the dot tool can be found in the path.
+
+DOT_PATH               = 
+
+# The DOTFILE_DIRS tag can be used to specify one or more directories that 
+# contain dot files that are included in the documentation (see the 
+# \dotfile command).
+
+DOTFILE_DIRS           = 
+
+# The DOT_GRAPH_MAX_NODES tag can be used to set the maximum number of 
+# nodes that will be shown in the graph. If the number of nodes in a graph 
+# becomes larger than this value, doxygen will truncate the graph, which is 
+# visualized by representing a node as a red box. Note that doxygen if the 
+# number of direct children of the root node in a graph is already larger than 
+# DOT_GRAPH_MAX_NODES then the graph will not be shown at all. Also note 
+# that the size of a graph can be further restricted by MAX_DOT_GRAPH_DEPTH.
+
+DOT_GRAPH_MAX_NODES    = 50
+
+# The MAX_DOT_GRAPH_DEPTH tag can be used to set the maximum depth of the 
+# graphs generated by dot. A depth value of 3 means that only nodes reachable 
+# from the root by following a path via at most 3 edges will be shown. Nodes 
+# that lay further from the root node will be omitted. Note that setting this 
+# option to 1 or 2 may greatly reduce the computation time needed for large 
+# code bases. Also note that the size of a graph can be further restricted by 
+# DOT_GRAPH_MAX_NODES. Using a depth of 0 means no depth restriction.
+
+MAX_DOT_GRAPH_DEPTH    = 0
+
+# Set the DOT_TRANSPARENT tag to YES to generate images with a transparent 
+# background. This is disabled by default, because dot on Windows does not 
+# seem to support this out of the box. Warning: Depending on the platform used, 
+# enabling this option may lead to badly anti-aliased labels on the edges of 
+# a graph (i.e. they become hard to read).
+
+DOT_TRANSPARENT        = NO
+
+# Set the DOT_MULTI_TARGETS tag to YES allow dot to generate multiple output 
+# files in one run (i.e. multiple -o and -T options on the command line). This 
+# makes dot run faster, but since only newer versions of dot (>1.8.10) 
+# support this, this feature is disabled by default.
+
+DOT_MULTI_TARGETS      = NO
+
+# If the GENERATE_LEGEND tag is set to YES (the default) Doxygen will 
+# generate a legend page explaining the meaning of the various boxes and 
+# arrows in the dot generated graphs.
+
+GENERATE_LEGEND        = YES
+
+# If the DOT_CLEANUP tag is set to YES (the default) Doxygen will 
+# remove the intermediate dot files that are used to generate 
+# the various graphs.
+
+DOT_CLEANUP            = YES
diff --git a/tinyIPSec/droid-makefile b/tinyIPSec/droid-makefile
new file mode 100644
index 0000000..2c320e0
--- /dev/null
+++ b/tinyIPSec/droid-makefile
@@ -0,0 +1,32 @@
+APP := lib$(PROJECT)_$(MARCH).$(EXT)
+
+CFLAGS := $(CFLAGS_LIB) -I../tinySAK/src -I./src
+LDFLAGS := -ltinySAK_$(MARCH) $(LDFLAGS_LIB)
+
+all: $(APP)
+
+OBJS = \
+	src/tipsec.o\
+	src/tipsec_common.o\
+	src/tipsec_racoon.o\
+	src/tipsec_vista.o\
+	src/tipsec_xp.o
+	
+
+$(APP): $(OBJS)
+ifeq ($(EXT), a)
+	$(AR) rcs $@ $^
+else
+	$(CC) $(LDFLAGS) -o $@ $^
+endif
+
+%.o: %.c
+	$(CC) -c $(INCLUDE) $(CFLAGS) $< -o $@
+	
+install: $(APP)
+	$(ANDROID_SDK_ROOT)/tools/adb remount
+	$(ANDROID_SDK_ROOT)/tools/adb push $(APP) $(LIB_DIR)/$(APP)
+	$(ANDROID_SDK_ROOT)/tools/adb shell chmod 777 $(LIB_DIR)/$(APP)
+	
+clean:
+	@rm -f $(OBJS) $(APP)
+\ No newline at end of file
diff --git a/tinyIPSec/footer.html b/tinyIPSec/footer.html
new file mode 100644
index 0000000..f8446bf
--- /dev/null
+++ b/tinyIPSec/footer.html
@@ -0,0 +1,7 @@
+<html>
+<head></head>
+<body>
+<hr> 
+<b>doubango project - tinyIPSec 1.0</b> - Copyright (C) 2009-2010 Mamadou DIOP. All rights reserved. Licensed under the terms of the GNU General Public License v3.
+</body>
+</html>
+\ No newline at end of file
diff --git a/tinyIPSec/header.html b/tinyIPSec/header.html
new file mode 100644
index 0000000..12e9029
--- /dev/null
+++ b/tinyIPSec/header.html
@@ -0,0 +1,38 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN"
+  "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
+
+<html xmlns="http://www.w3.org/1999/xhtml">
+<head>
+  <title>doubango - tinyIPSec</title>
+  <link rel="stylesheet" href="http://www.doubango.org/css.css" type="text/css" />
+  <link href="tabs.css" rel="stylesheet" type="text/css"/>
+  <link href="doxygen.css" rel="stylesheet" type="text/css"/>
+  <meta name="Keywords" content="doubango, 3GPP IMS/LTE framework, open source, SIP, RFC 3261, 3GPP TS 24.229, VoIP, MMTel, IPTV, 4G, LTE, XCAP, MSRP, IPSec, SigComp, One Voice " />
+  <meta name="Description" content="cross-platform and open source 3GPP IMS/LTE framework for embedded devices such as Android, Symbian, iPhone, Windows Mobile or uLinux." />
+  <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
+
+<style type="text/css">
+/*<![CDATA[*/
+ p.c1 {text-align: center;}
+/*]]>*/
+</style>
+</head>
+
+<body>
+    <div id="left">
+        <div id="border">
+            <div id="logo">
+                <p class="companyname">
+                    tinyIPSec</p>
+            </div>
+            <div id="menu">
+                <a href="/index.html" title="Homepage">Home</a> <a href="/gettingstarted.html" title="Getting Started">
+                    Getting Started</a> <a href="http://code.google.com/p/doubango/source/checkout" title="Source Code"
+                        target="_blank">Source Code</a> <a href="/apiref.html" title="API Reference">API Reference</a> <a href="contact.html" title="Contact">
+                                Contact</a>
+            </div>
+        </div>
+    </div>
+</body>
+</html>
+
diff --git a/tinyIPSec/installdox.sh b/tinyIPSec/installdox.sh
new file mode 100644
index 0000000..2517e03
--- /dev/null
+++ b/tinyIPSec/installdox.sh
@@ -0,0 +1 @@
+docs/html/installdox -l tinySAK.tag@http://doubango.org/API/tinySAK docs/html/*.html
+\ No newline at end of file
diff --git a/tinyIPSec/src/tinyipsec_config.h b/tinyIPSec/src/tinyipsec_config.h
new file mode 100644
index 0000000..4fa8880
--- /dev/null
+++ b/tinyIPSec/src/tinyipsec_config.h
@@ -0,0 +1,92 @@
+/*
+* Copyright (C) 2009-2010 Mamadou Diop.
+*
+* Contact: Mamadou Diop <diopmamadou(at)doubango.org>
+*	
+* This file is part of Open Source Doubango Framework.
+*
+* DOUBANGO is free software: you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation, either version 3 of the License, or
+* (at your option) any later version.
+*	
+* DOUBANGO is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+* GNU General Public License for more details.
+*	
+* You should have received a copy of the GNU General Public License
+* along with DOUBANGO.
+*
+*/
+
+#ifndef TINYIPSEC_CONFIG_H
+#define TINYIPSEC_CONFIG_H
+
+#ifdef __SYMBIAN32__
+#undef _WIN32 /* Because of WINSCW */
+#endif
+
+/* Windows (XP/Vista/7/CE and Windows Mobile) macro definition.
+*/
+#if defined(WIN32)|| defined(_WIN32) || defined(_WIN32_WCE)
+#	define TIPSEC_UNDER_WINDOWS	1
+#endif
+
+/* Used on Windows and Symbian systems to export/import public functions and global variables.
+*/
+#if !defined(__GNUC__) && defined(TINYIPSEC_EXPORTS)
+# 	define TINYIPSEC_API		__declspec(dllexport)
+#	define TINYIPSEC_GEXTERN	__declspec(dllexport)
+#elif !defined(__GNUC__) /*&& defined(TINYIPSEC_IMPORTS)*/
+# 	define TINYIPSEC_API		__declspec(dllimport)
+#	define TINYIPSEC_GEXTERN	__declspec(dllimport)
+#else
+#	define TINYIPSEC_API
+#	define TINYIPSEC_GEXTERN	extern
+#endif
+
+/* Guards against C++ name mangling 
+*/
+#ifdef __cplusplus
+#	define TIPSEC_BEGIN_DECLS extern "C" {
+#	define TIPSEC_END_DECLS }
+#else
+#	define TIPSEC_BEGIN_DECLS 
+#	define TIPSEC_END_DECLS
+#endif
+
+/* Disable some well-known warnings
+*/
+#ifdef _MSC_VER
+#	define _CRT_SECURE_NO_WARNINGS
+#	pragma warning( disable : 4996 )
+#endif
+
+#if TIPSEC_UNDER_WINDOWS && !defined(_WIN32_WCE)
+//#	include <windows.h>
+//#	include <ws2tcpip.h>
+#	include <winsock2.h>
+#endif
+
+
+//
+// IPSEC
+//
+#if HAVE_IPSEC
+#	if (_WIN32_WINNT >= 0x0600)
+#		define HAVE_IPSEC_VISTA		1
+#	elif (_WIN32_WINNT >= 0x0501)
+#		define HAVE_IPSEC_XP		0
+#	elif HAVE_IPSEC_TOOLS
+#		define HAVE_IPSEC_RACOON	1
+#	endif
+#endif
+
+
+#if HAVE_CONFIG_H
+	#include "../config.h"
+#endif
+
+#endif /* TINYIPSEC_CONFIG_H */
+
diff --git a/tinyIPSec/src/tipsec.c b/tinyIPSec/src/tipsec.c
new file mode 100644
index 0000000..463df6f
--- /dev/null
+++ b/tinyIPSec/src/tipsec.c
@@ -0,0 +1,47 @@
+/*
+* Copyright (C) 2009-2010 Mamadou Diop.
+*
+* Contact: Mamadou Diop <diopmamadou(at)doubango.org>
+*	
+* This file is part of Open Source Doubango Framework.
+*
+* DOUBANGO is free software: you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation, either version 3 of the License, or
+* (at your option) any later version.
+*	
+* DOUBANGO is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+* GNU General Public License for more details.
+*	
+* You should have received a copy of the GNU General Public License
+* along with DOUBANGO.
+*
+*/
+
+/**@file tipsec.c
+ * @brief IPSec manager.
+ *
+ * @author Mamadou Diop <diopmamadou(at)doubango.org>
+ *
+ * @date Created: Sat Nov 8 16:54:58 2009 mdiop
+ */
+#include "tipsec.h"
+
+/** @mainpage TinyIPSec API Overview
+*
+* This file is an overview of TinyIPSec API.
+*
+* <b>tinyIPSec</b> is responsible for IPSec SAs managment. It is used in conjunction with security agreement mechanism (RFC 3329)
+* to create, manage and terminate SAs. <br>
+*
+* @par Getting started
+*
+* - @ref tipsec_common_group
+*
+* - @ref tipsec_xp_group
+* - @ref tipsec_vista_group
+* - @ref tipsec_racoon_group
+*
+*/
diff --git a/tinyIPSec/src/tipsec.h b/tinyIPSec/src/tipsec.h
new file mode 100644
index 0000000..6495ef3
--- /dev/null
+++ b/tinyIPSec/src/tipsec.h
@@ -0,0 +1,41 @@
+/*
+* Copyright (C) 2009-2010 Mamadou Diop.
+*
+* Contact: Mamadou Diop <diopmamadou(at)doubango.org>
+*	
+* This file is part of Open Source Doubango Framework.
+*
+* DOUBANGO is free software: you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation, either version 3 of the License, or
+* (at your option) any later version.
+*	
+* DOUBANGO is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+* GNU General Public License for more details.
+*	
+* You should have received a copy of the GNU General Public License
+* along with DOUBANGO.
+*
+*/
+
+/**@file tipsec.h
+ * @brief IPSec manager.
+ *
+ * @author Mamadou Diop <diopmamadou(at)doubango.org>
+ *
+ * @date Created: Sat Nov 8 16:54:58 2009 mdiop
+ */
+#ifndef TINYIPSEC_IPSEC_H
+#define TINYIPSEC_IPSEC_H
+
+#include "tinyipsec_config.h"
+
+#include "tipsec_common.h"
+
+TIPSEC_BEGIN_DECLS
+
+TIPSEC_END_DECLS
+
+#endif /* TINYIPSEC_IPSEC_H */
diff --git a/tinyIPSec/src/tipsec_common.c b/tinyIPSec/src/tipsec_common.c
new file mode 100644
index 0000000..4ae44d7
--- /dev/null
+++ b/tinyIPSec/src/tipsec_common.c
@@ -0,0 +1,115 @@
+/*
+* Copyright (C) 2009-2010 Mamadou Diop.
+*
+* Contact: Mamadou Diop <diopmamadou(at)doubango.org>
+*	
+* This file is part of Open Source Doubango Framework.
+*
+* DOUBANGO is free software: you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation, either version 3 of the License, or
+* (at your option) any later version.
+*	
+* DOUBANGO is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+* GNU General Public License for more details.
+*	
+* You should have received a copy of the GNU General Public License
+* along with DOUBANGO.
+*
+*/
+
+/**@file tipsec_common.c
+ * @brief IPSec common functions.
+ *
+ * @author Mamadou Diop <diopmamadou(at)doubango.org>
+ *
+ * @date Created: Sat Nov 8 16:54:58 2009 mdiop
+ */
+#include "tipsec_common.h"
+
+#include "tsk_debug.h"
+
+/**@defgroup tipsec_common_group IPSec common.
+* Common to all OSes.
+*/
+
+tipsec_context_t* tipsec_context_create(tipsec_ipproto_t ipproto, tsk_bool_t use_ipv6, tipsec_mode_t mode, tipsec_ealgorithm_t ealg, tipsec_algorithm_t alg, tipsec_protocol_t protocol)
+{
+	return tsk_object_new(tipsec_context_def_t, ipproto, use_ipv6, (tipsec_mode_t)mode, ealg, alg, protocol);
+}
+
+#if !HAVE_IPSEC_VISTA && !HAVE_IPSEC_XP && !HAVE_IPSEC_RACOON
+
+int tipsec_start(tipsec_context_t* ctx)
+{
+	TSK_DEBUG_WARN("No IPSec implementation found.");
+	return 0;
+}
+
+int tipsec_set_local(tipsec_context_t* ctx, const char* addr_local, const char* addr_remote, tipsec_port_t port_uc, tipsec_port_t port_us)
+{
+	TSK_DEBUG_WARN("No IPSec implementation found.");
+
+	ctx->port_uc = port_uc;
+	ctx->port_us = port_us;
+	return -1;
+}
+
+int tipsec_set_keys(tipsec_context_t* ctx, const tipsec_key_t* ik, const tipsec_key_t* ck)
+{
+	TSK_DEBUG_WARN("No IPSec implementation found.");
+	return 0;
+}
+
+int tipsec_set_remote(tipsec_context_t* ctx, tipsec_spi_t spi_pc, tipsec_spi_t spi_ps, tipsec_port_t port_pc, tipsec_port_t port_ps, tipsec_lifetime_t lifetime)
+{
+	TSK_DEBUG_WARN("No IPSec implementation found.");
+	return 0;
+}
+
+int tipsec_stop(tipsec_context_t* ctx)
+{
+	TSK_DEBUG_WARN("No IPSec implementation found.");
+	return 0;
+}
+
+
+
+//=================================================================================================
+//	IPSec context object definition
+//
+static tsk_object_t* tipsec_context_ctor(tsk_object_t * self, va_list * app)
+{
+	tipsec_context_t *context = self;
+	if(context){
+	}
+	return self;
+}
+
+static tsk_object_t* tipsec_context_dtor(tsk_object_t * self)
+{ 
+	tipsec_context_t *context = self;
+	if(context){
+	}
+	
+	return self;
+}
+
+static int tipsec_context_cmp(const tsk_object_t *obj1, const tsk_object_t *obj2)
+{
+	return-1;
+}
+
+static const tsk_object_def_t tipsec_context_def_s = 
+{
+sizeof(tipsec_context_t),
+tipsec_context_ctor, 
+tipsec_context_dtor,
+tipsec_context_cmp, 
+};
+
+
+const void *tipsec_context_def_t = &tipsec_context_def_s;
+#endif
diff --git a/tinyIPSec/src/tipsec_common.h b/tinyIPSec/src/tipsec_common.h
new file mode 100644
index 0000000..49e03e1
--- /dev/null
+++ b/tinyIPSec/src/tipsec_common.h
@@ -0,0 +1,280 @@
+/*
+* Copyright (C) 2009-2010 Mamadou Diop.
+*
+* Contact: Mamadou Diop <diopmamadou(at)doubango.org>
+*	
+* This file is part of Open Source Doubango Framework.
+*
+* DOUBANGO is free software: you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation, either version 3 of the License, or
+* (at your option) any later version.
+*	
+* DOUBANGO is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+* GNU General Public License for more details.
+*	
+* You should have received a copy of the GNU General Public License
+* along with DOUBANGO.
+*
+*/
+
+/**@file tipsec_common.h
+ * @brief IPSec common functions.
+ *
+ * @author Mamadou Diop <diopmamadou(at)doubango.org>
+ *
+ * @date Created: Sat Nov 8 16:54:58 2009 mdiop
+ */
+#ifndef TINYIPSEC_IPSEC_COMMON_H
+#define TINYIPSEC_IPSEC_COMMON_H
+
+#include "tinyipsec_config.h"
+
+#include "tsk_string.h"
+
+TIPSEC_BEGIN_DECLS
+
+/**@ingroup tipsec_common_group
+* Converts any IPSec context (XP, Vista, racoon ...) to the common IPSec context.
+* @param ctx The context to convert. MUST be declared using @ref TINYIPSEC_DECLARE_CONTEXT.
+* @retval A pointer to @ref tipsec_context_t.
+*/
+#define TIPSEC_CONTEXT(ctx) ((tipsec_context_t*)(ctx))
+
+/**@ingroup tipsec_common_group
+* @def TIPSEC_IPPROTO_FROM_STR
+*/
+/**@ingroup tipsec_common_group
+* @def TIPSEC_IPPROTO_TO_STR
+*/
+#define TIPSEC_IPPROTO_FROM_STR(ipproto) (tsk_strequals(ipproto, "tcp") ? ipproto_tcp : (tsk_strequals(ipproto, "icmp") ? ipproto_icmp : ipproto_udp))
+#define TIPSEC_IPPROTO_TO_STR(ipproto)	(ipproto == ipproto_tcp ? "tcp" : (ipproto == ipproto_icmp ? "icmp" : "udp"))
+
+/**@ingroup tipsec_common_group
+* @def TIPSEC_MODE_FROM_STR
+*/
+/**@ingroup tipsec_common_group
+* @def TIPSEC_MODE_TO_STR
+*/
+#define TIPSEC_MODE_FROM_STR(mode) (tsk_strequals(mode, "tun") ? mode_tun : mode_trans)
+#define TIPSEC_MODE_TO_STR(mode)	(mode == mode_tun ? "tun" : "trans")
+
+/**@ingroup tipsec_common_group
+* @def TIPSEC_EALG_FROM_STR
+*/
+/**@ingroup tipsec_common_group
+* @def TIPSEC_EALG_TO_STR
+*/
+#define TIPSEC_EALG_FROM_STR(ealg) (tsk_strequals(ealg, "des-ede3-cbc") ? ealg_des_ede3_cbc : (tsk_strequals(ealg, "aes") ? ealg_aes : ealg_null))
+#define TIPSEC_EALG_TO_STR(ealg)	(ealg == ealg_des_ede3_cbc ? "des-ede3-cbc" : (ealg == ealg_aes ? "aes" : "null"))
+
+/**@ingroup tipsec_common_group
+* @def TIPSEC_ALG_FROM_STR
+*/
+/**@ingroup tipsec_common_group
+* @def TIPSEC_ALG_TO_STR
+*/
+#define TIPSEC_ALG_FROM_STR(alg) (tsk_strequals(alg, "hmac-sha-1-96") ? algo_hmac_sha_1_96 : algo_hmac_md5_96)
+#define TIPSEC_ALG_TO_STR(alg)	(alg == algo_hmac_sha_1_96 ? "hmac-sha-1-96" : "hmac-md5-96")
+
+/**@ingroup tipsec_common_group
+* @def TIPSEC_PROTOCOL_FROM_STR
+*/
+/**@ingroup tipsec_common_group
+* @def TIPSEC_PROTOCOL_TO_STR
+*/
+#define TIPSEC_PROTOCOL_FROM_STR(protocol) (tsk_strequals(protocol, "ah") ? proto_ah : ((tsk_strequals(protocol, "ah/esp")) ? proto_both : proto_esp))
+#define TIPSEC_PROTOCOL_TO_STR(protocol)	(protocol == proto_ah ? "ah" : (protocol == proto_both ? "ah/esp" : "esp"))
+
+/**@ingroup tipsec_common_group
+* @def TIPSEC_KEY_LEN
+ * Size of IK (Integrity Key) and CK (Confidentiality Key).
+**/
+/**@ingroup tipsec_common_group
+* @def TIPSEC_IK_LEN
+*/
+/**@ingroup tipsec_common_group
+* @def TIPSEC_CK_LEN
+*/
+#define TIPSEC_KEY_LEN			16
+#define TIPSEC_IK_LEN			20
+#define TIPSEC_CK_LEN			24
+
+/**@ingroup tipsec_common_group
+* @def tipsec_lifetime_t
+*/
+/**@ingroup tipsec_common_group
+* @def tipsec_spi_t
+*/
+/**@ingroup tipsec_common_group
+* @def tipsec_port_t
+*/
+/**@ingroup tipsec_common_group
+* @def tipsec_key_t
+*/
+typedef uint64_t tipsec_lifetime_t;
+typedef uint32_t tipsec_spi_t;
+typedef uint16_t tipsec_port_t;
+typedef void tipsec_key_t;
+
+/**@ingroup tipsec_common_group
+ * List of IPSec modes.
+**/
+typedef enum tipsec_mode_e
+{
+	//! IPSec transport mode. 
+	mode_trans,
+	//! IPSec tunneling mode. 
+	mode_tun
+}
+tipsec_mode_t;
+
+/**@ingroup tipsec_common_group
+ * List of IPSec protocols.
+**/
+typedef enum tipsec_protocol_e
+{
+	//! AH protocol. 
+	proto_ah,
+	//! ESP protocol. 
+	proto_esp,
+	//! Both AH and ESP protocols. 
+	proto_both
+}
+tipsec_protocol_t;
+
+/**@ingroup tipsec_common_group
+ * List of Internet protocols.
+**/
+typedef enum tipsec_ipproto_e
+{
+	//! UDP. 
+	ipproto_udp,
+	//! TCP. 
+	ipproto_tcp,
+	//! ICMP. 
+	ipproto_icmp
+}
+tipsec_ipproto_t;
+
+/**@ingroup tipsec_common_group
+ * List of IPSec algorithms.
+**/
+typedef enum tipsec_algorithm_e
+{
+	//! hmac-md5-96 algorithm. 
+	algo_hmac_md5_96,
+	//! hmac-sha-1-96 algorithm. 
+	algo_hmac_sha_1_96
+}
+tipsec_algorithm_t;
+
+/**@ingroup tipsec_common_group
+ * List of IPSec encrypt-algorithms.
+**/
+typedef enum tipsec_ealgorithm_e
+{
+	//! des-ede3-cbc encrypt-algorithm. 
+	ealg_des_ede3_cbc,
+	//! aes encrypt-algorithm. 
+	ealg_aes,
+	//! null encrypt-algorithm. 
+	ealg_null
+}
+tipsec_ealgorithm_t;
+
+/**@ingroup tipsec_common_group
+ * List of IPSec states.
+**/
+typedef enum tipsec_state_e
+{
+	//! The default state. At this state no SA is created. It's the first and default state.
+	state_initial,
+	//! Partial state. At this state only inbound SAs (with their SPIs) have been created. 
+	state_inbound,
+	//! Full state. At this state both inbound and outbound SAs have been create. It's the final state.
+	state_full,
+	//! All SAs are in active mode. 
+	state_active
+}
+tipsec_state_t;
+
+/**@ingroup tipsec_common_group
+* IPSec context. Common fields.
+*/
+typedef struct tipsec_context_s
+{
+	TSK_DECLARE_OBJECT;
+	
+	//! Indicates whether the context have been initialized or not. 
+	unsigned initialized;
+	//! Indicates whether the context have been started or not. 
+	unsigned started:1;
+	
+	//! The current state of the IPSec context. 
+	tipsec_state_t state;
+	
+	//! Indicates whether to use IPv6 addresses or not. 
+	unsigned use_ipv6:1;
+	//! The network protocol. 
+	tipsec_ipproto_t ipproto;
+	
+	//! IPSec mode. 
+	tipsec_mode_t mode;
+	//! Encrypt algorithm (). 
+	tipsec_ealgorithm_t ealg;
+	//! Algorithm. 
+	tipsec_algorithm_t alg;
+	//! IPSec protocol. 
+	tipsec_protocol_t protocol;
+	
+	//! Remote address (Proxy-CSCF). 
+	void* addr_remote;
+	//! Proxy-CSCF client SPI. 
+	tipsec_spi_t spi_pc;
+	//! Proxy-CSCF server SPI.
+	tipsec_spi_t spi_ps;
+	//! Proxy-CSCF client port.
+	tipsec_port_t port_pc;
+	//! Proxy-CSCF server port.
+	tipsec_port_t port_ps;
+	
+	//! Local address (UE). 
+	void* addr_local;
+	//! UE client SPI. 
+	tipsec_spi_t spi_uc;
+	//! UE server SPI.
+	tipsec_spi_t spi_us;
+	//! UE client port. 
+	tipsec_port_t  port_uc;
+	//! UE server port. 
+	tipsec_port_t port_us;
+	
+	//! The confidentiality key. 
+	tipsec_key_t *ck;
+	//! The integrity key. 
+	tipsec_key_t *ik;
+
+	//! reg-await-auth timer value. 
+	tipsec_lifetime_t lifetime;
+}
+tipsec_context_t;
+
+/**@ingroup tipsec_common_group
+*/
+#define TINYIPSEC_DECLARE_CONTEXT tipsec_context_t context
+
+TINYIPSEC_GEXTERN const void *tipsec_context_def_t;
+
+TINYIPSEC_API tipsec_context_t* tipsec_context_create(tipsec_ipproto_t ipproto, tsk_bool_t use_ipv6, tipsec_mode_t mode, tipsec_ealgorithm_t ealg, tipsec_algorithm_t alg, tipsec_protocol_t protocol);
+TINYIPSEC_API int tipsec_start(tipsec_context_t* ctx);
+TINYIPSEC_API int tipsec_set_local(tipsec_context_t* ctx, const char* addr_local, const char* addr_remote, tipsec_port_t port_uc, tipsec_port_t port_us);
+TINYIPSEC_API int tipsec_set_keys(tipsec_context_t* ctx, const tipsec_key_t* ik, const tipsec_key_t* ck);
+TINYIPSEC_API int tipsec_set_remote(tipsec_context_t* ctx, tipsec_spi_t spi_pc, tipsec_spi_t spi_ps, tipsec_port_t port_pc, tipsec_port_t port_ps, tipsec_lifetime_t lifetime);
+TINYIPSEC_API int tipsec_stop(tipsec_context_t* ctx);
+
+TIPSEC_END_DECLS
+
+#endif /* TINYIPSEC_IPSEC_COMMON_H */
diff --git a/tinyIPSec/src/tipsec_racoon.c b/tinyIPSec/src/tipsec_racoon.c
new file mode 100644
index 0000000..0346244
--- /dev/null
+++ b/tinyIPSec/src/tipsec_racoon.c
@@ -0,0 +1,116 @@
+/*
+* Copyright (C) 2009-2010 Mamadou Diop.
+*
+* Contact: Mamadou Diop <diopmamadou(at)doubango.org>
+*	
+* This file is part of Open Source Doubango Framework.
+*
+* DOUBANGO is free software: you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation, either version 3 of the License, or
+* (at your option) any later version.
+*	
+* DOUBANGO is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+* GNU General Public License for more details.
+*	
+* You should have received a copy of the GNU General Public License
+* along with DOUBANGO.
+*
+*/
+
+/**@file tipsec_racoon.c
+ * @brief IPSec racoon functions.
+ *
+ * @author Mamadou Diop <diopmamadou(at)doubango.org>
+ *
+ * @date Created: Sat Nov 8 16:54:58 2009 mdiop
+ */
+#include "tipsec_racoon.h"
+
+#include "tsk_debug.h"
+
+/**@defgroup tipsec_racoon_group IPSec racoon implementation (IPSec-tools).
+* Supported algo: <b>hmac-md5-96</b> and <b>hmac-sha-1-96</b>.<br>
+* Supported ealg: <b>des-ede3-cbc</b>, <b>aes-cbc</b> and <b>null</b>.<br>
+* Supported mode: <b>tunnel</b> and <b>transport</b>.<br>
+* Supported proto: <b>ah</b> and <b>esp</b>.<br>
+* Supported IP proto: <b>tcp</b> and <b>udp</b>.<br>
+* Supported IP version: <b>IPv4</b> and <b>IPv6</b>.
+*/
+#if HAVE_IPSEC_RACOON
+
+/**@ingroup tipsec_racoon_group
+*/
+int tipsec_start(tipsec_context_t* ctx)
+{
+	TSK_DEBUG_ERROR("No IPSec implementation found.");
+	return -1;
+}
+
+/**@ingroup tipsec_racoon_group
+*/
+int tipsec_set_local(tipsec_context_t* ctx, const char* addr_local, const char* addr_remote, tipsec_port_t port_uc, tipsec_port_t port_us)
+{
+	TSK_DEBUG_ERROR("No IPSec implementation found.");
+	return -1;
+}
+
+/**@ingroup tipsec_racoon_group
+*/
+int tipsec_set_remote(tipsec_context_t* ctx, tipsec_spi_t spi_pc, tipsec_spi_t spi_ps, tipsec_port_t port_pc, tipsec_port_t port_ps, tipsec_lifetime_t lifetime)
+{
+	TSK_DEBUG_ERROR("No IPSec implementation found.");
+	return -1;
+}
+
+/**@ingroup tipsec_racoon_group
+*/
+int tipsec_stop(tipsec_context_t* ctx)
+{
+	TSK_DEBUG_ERROR("No IPSec implementation found.");
+	return -1;
+}
+
+
+
+//=================================================================================================
+//	IPSec context object definition
+//
+static tsk_object_t* tipsec_context_ctor(tsk_object_t * self, va_list * app)
+{
+	tipsec_context_t *context = self;
+	if(context){
+	}
+bail:
+	return self;
+}
+
+static tsk_object_t* tipsec_context_dtor(tsk_object_t * self)
+{ 
+	tipsec_context_t *context = self;
+	if(context){
+	}
+	
+	return self;
+}
+
+static int tipsec_context_cmp(const tsk_object_t *obj1, const tsk_object_t *obj2)
+{
+	return-1;
+}
+
+static const tsk_object_def_t tipsec_context_def_s = 
+{
+sizeof(tipsec_context_t),
+tipsec_context_ctor, 
+tipsec_context_dtor,
+tipsec_context_cmp, 
+};
+
+
+const void *tipsec_context_def_t = &tipsec_context_def_s;
+
+
+#endif /* HAVE_IPSEC_RACOON */
diff --git a/tinyIPSec/src/tipsec_racoon.h b/tinyIPSec/src/tipsec_racoon.h
new file mode 100644
index 0000000..6e2b221
--- /dev/null
+++ b/tinyIPSec/src/tipsec_racoon.h
@@ -0,0 +1,49 @@
+/*
+* Copyright (C) 2009-2010 Mamadou Diop.
+*
+* Contact: Mamadou Diop <diopmamadou(at)doubango.org>
+*	
+* This file is part of Open Source Doubango Framework.
+*
+* DOUBANGO is free software: you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation, either version 3 of the License, or
+* (at your option) any later version.
+*	
+* DOUBANGO is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+* GNU General Public License for more details.
+*	
+* You should have received a copy of the GNU General Public License
+* along with DOUBANGO.
+*
+*/
+
+/**@file tipsec_racoon.h
+ * @brief IPSec racoon functions.
+ *
+ * @author Mamadou Diop <diopmamadou(at)doubango.org>
+ *
+ * @date Created: Sat Nov 8 16:54:58 2009 mdiop
+ */
+#ifndef TINYIPSEC_IPSEC_RACOON_H
+#define TINYIPSEC_IPSEC_RACOON_H
+
+#include "tinyipsec_config.h"
+
+#include "tipsec_common.h"
+
+TIPSEC_BEGIN_DECLS
+
+#if HAVE_IPSEC_RACOON
+
+
+
+#endif /* HAVE_IPSEC_RACOON */
+
+
+TIPSEC_END_DECLS
+
+
+#endif /* TINYIPSEC_IPSEC_RACOON_H */
diff --git a/tinyIPSec/src/tipsec_vista.c b/tinyIPSec/src/tipsec_vista.c
new file mode 100644
index 0000000..b2b2f5f
--- /dev/null
+++ b/tinyIPSec/src/tipsec_vista.c
@@ -0,0 +1,728 @@
+/*
+* Copyright (C) 2009-2010 Mamadou Diop.
+*
+* Contact: Mamadou Diop <diopmamadou(at)doubango.org>
+*	
+* This file is part of Open Source Doubango Framework.
+*
+* DOUBANGO is free software: you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation, either version 3 of the License, or
+* (at your option) any later version.
+*	
+* DOUBANGO is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+* GNU General Public License for more details.
+*	
+* You should have received a copy of the GNU General Public License
+* along with DOUBANGO.
+*
+*/
+
+/**@file tipsec_vista.c
+ * @brief Windows Vista/7 IPsec implementation using WFP.
+ *
+ * @author Mamadou Diop <diopmamadou(at)doubango.org>
+ *
+ * @date Created: Sat Nov 8 16:54:58 2009 mdiop
+ */
+#include "tipsec_vista.h"
+
+/**@defgroup tipsec_vista_group IPSec Vista/7 implementation (WFP).
+* Supported algo: <b>hmac-md5-96</b> and <b>hmac-sha-1-96</b>.<br>
+* Supported ealg: <b>des-ede3-cbc</b>, <b>aes-cbc</b> and <b>null</b>.<br>
+* Supported mode: <b>transport</b> only.<br>
+* Supported proto: <b>ah</b> and <b>esp</b>.<br>
+* Supported IP proto: <b>tcp</b> and <b>udp</b>.<br>
+* Supported IP version: <b>IPv4</b> and <b>IPv6</b>.
+*/
+
+#if HAVE_IPSEC_VISTA
+
+#include "tsk_memory.h"
+#include "tsk_debug.h"
+
+#if defined(_MSC_VER)
+#	pragma comment(lib, "Fwpuclnt.lib")
+#endif
+
+#include <ws2tcpip.h>
+#include <Fwpmu.h>
+
+typedef FWP_BYTE_BLOB* PFWP_BYTE_BLOB;
+
+/**@ingroup tipsec_vista_group
+* @def TINYIPSEC_FILTER_NAME
+*/
+#define TINYIPSEC_FILTER_NAME					TEXT("tinyIPSEC")
+#define TINYIPSEC_PROVIDER_KEY					NULL
+
+/**@ingroup tipsec_vista_group
+* @def TINYIPSEC_SA_NUM_ENTRIES_TO_REQUEST
+*/
+/**@ingroup tipsec_vista_group
+* @def TINYIPSEC_SA_MAX_LIFETIME
+*/
+#define TINYIPSEC_SA_NUM_ENTRIES_TO_REQUEST		20
+#define TINYIPSEC_SA_MAX_LIFETIME				172799
+
+#define TINYIPSEC_VISTA_GET_ALGO(algo) (algo ==  algo_hmac_md5_96) ? IPSEC_AUTH_TRANSFORM_ID_HMAC_MD5_96 : IPSEC_AUTH_TRANSFORM_ID_HMAC_SHA_1_96
+#define TINYIPSEC_VISTA_GET_EALGO(ealg)	 (ealg == ealg_des_ede3_cbc) ? IPSEC_CIPHER_TRANSFORM_ID_CBC_3DES : ( (ealg == ealg_aes) ? IPSEC_CIPHER_TRANSFORM_ID_AES_128 : IPSEC_CIPHER_TRANSFORM_ID_NULL_NULL )
+#define TINYIPSEC_VISTA_GET_MODE(mode)	 (mode == mode_tun) ? IPSEC_TRAFFIC_TYPE_TUNNEL : IPSEC_TRAFFIC_TYPE_TRANSPORT
+#define TINYIPSEC_VISTA_GET_IPPROTO(ipproto)	 (ipproto == ipproto_tcp) ? IPPROTO_TCP : IPPROTO_UDP
+#define TINYIPSEC_VISTA_GET_IPVER(ipv6)	 (ipv6) ? FWP_IP_VERSION_V6 : FWP_IP_VERSION_V4
+#define TINYIPSEC_VISTA_GET_PROTO(proto)	 (proto == proto_ah) ? IPSEC_TRANSFORM_AH : ( (proto == proto_esp) ? IPSEC_TRANSFORM_ESP_AUTH : IPSEC_TRANSFORM_ESP_AUTH_AND_CIPHER );
+
+/* as WFP do not provide null encryption I define my own*/
+static const IPSEC_CIPHER_TRANSFORM_ID0 IPSEC_CIPHER_TRANSFORM_ID_NULL_NULL=
+{
+   (IPSEC_CIPHER_TYPE)NULL,
+   (IPSEC_CIPHER_TYPE)NULL
+};
+
+/**@ingroup tipsec_vista_group
+* IPSec context.
+*/
+typedef struct tipsec_context_vista_s
+{
+	TINYIPSEC_DECLARE_CONTEXT;
+	
+	UINT64 saId_us;
+	UINT64 saId_uc;
+
+	HANDLE engine;
+}
+tipsec_context_vista_t;
+
+/**@ingroup tipsec_vista_group
+*/
+#define TIPSEC_CONTEXT_VISTA(ctx) ((tipsec_context_vista_t*)(ctx))
+
+int tipsec_create_localSA(__in const tipsec_context_vista_t* context, __in tipsec_port_t local_port, __out tipsec_spi_t *spi, UINT64 *saId);
+int tipsec_boundSA(__in const tipsec_context_vista_t* context, __in UINT64 local_saId, __in tipsec_spi_t remote_spi, __in BOOLEAN toInbound);
+
+int tipsec_flush_all(const tipsec_context_vista_t* context);
+void DeleteSaContextAndFilters(__in HANDLE engine, __in UINT64 inFilterId, __in UINT64 outFilterId, __in UINT64 saId);
+
+/**@ingroup tipsec_vista_group
+*/
+int tipsec_start(tipsec_context_t* ctx)
+{
+	tipsec_context_vista_t* ctx_vista = TIPSEC_CONTEXT_VISTA(ctx);
+	int ret = -1;
+
+	if(!ctx_vista){
+		ret = -1;
+		goto bail;
+	}
+
+	if(TIPSEC_CONTEXT(ctx_vista)->started){
+		TSK_DEBUG_WARN("The IPSec context already started.");
+		ret = -2;
+		goto bail;
+	}
+
+	if(TIPSEC_CONTEXT(ctx_vista)->state != state_full){
+		TSK_DEBUG_ERROR("IPSec context is in the wrong state.");
+		ret = -3;
+		goto bail;
+	}
+
+	/* VERY IMPORTANT: The SA context functions must be called in a specific order:
+			(http://msdn.microsoft.com/en-us/library/bb540652(VS.85).aspx).
+		
+		IPsecSaContextCreate0 
+		IPsecSaContextGetSpi0 
+		IPsecSaContextAddInbound0 
+		IPsecSaContextAddOutbound0
+	*/
+
+	/* US <- PC */
+	if((ret = tipsec_boundSA(ctx_vista, ctx_vista->saId_us, TIPSEC_CONTEXT(ctx_vista)->spi_us, TRUE))){
+		TSK_DEBUG_ERROR("Failed to setup [US <- PC] SA.");
+		goto bail;
+	}
+	/* UC <- PS */
+	if((ret = tipsec_boundSA(ctx_vista, ctx_vista->saId_uc, TIPSEC_CONTEXT(ctx_vista)->spi_uc, TRUE))){
+		TSK_DEBUG_ERROR("Failed to setup [UC <- PS] SA.");
+		goto bail;
+	}
+
+	/* UC -> PS */
+	if((ret = tipsec_boundSA(ctx_vista, ctx_vista->saId_uc, TIPSEC_CONTEXT(ctx_vista)->spi_ps, FALSE))){
+		TSK_DEBUG_ERROR("Failed to setup [UC -> PS] SA.");
+		goto bail;
+	}
+	/* US -> PC */
+	if((ret = tipsec_boundSA(ctx_vista, ctx_vista->saId_us, TIPSEC_CONTEXT(ctx_vista)->spi_pc, FALSE))){
+		TSK_DEBUG_ERROR("Failed to setup [US -> PC] SA.");
+		goto bail;
+	}
+
+	// Set the state to active.
+	TIPSEC_CONTEXT(ctx_vista)->state = state_active;
+
+	TIPSEC_CONTEXT(ctx_vista)->started = 1;
+
+bail:
+	return ret;
+}
+
+/**@ingroup tipsec_vista_group
+*/
+int tipsec_set_local(tipsec_context_t* ctx, const char* addr_local, const char* addr_remote, tipsec_port_t port_uc, tipsec_port_t port_us)
+{
+	tipsec_context_vista_t* ctx_vista = TIPSEC_CONTEXT_VISTA(ctx);
+	int ret;
+
+	if(!ctx_vista){
+		ret = -1;
+		goto bail;
+	}
+
+	if(!addr_local || !port_uc || !port_us){
+		ret = -2;
+		goto bail;
+	}
+
+	if(!TIPSEC_CONTEXT(ctx_vista)->initialized){
+		TSK_DEBUG_ERROR("IPSec engine not initialized.");
+		ret = -3;
+		goto bail;
+	}
+
+	if(TIPSEC_CONTEXT(ctx_vista)->state != state_initial){
+		TSK_DEBUG_ERROR("IPSec context is in the wrong state.");
+		ret = -4;
+		goto bail;
+	}
+
+	TSK_FREE(TIPSEC_CONTEXT(ctx_vista)->addr_local);
+	TSK_FREE(TIPSEC_CONTEXT(ctx_vista)->addr_remote);
+
+	/* Set local IP */
+	if(TIPSEC_CONTEXT(ctx_vista)->use_ipv6){
+		TIPSEC_CONTEXT(ctx_vista)->addr_local = tsk_calloc(16, sizeof(uint8_t));
+		TIPSEC_CONTEXT(ctx_vista)->addr_remote = tsk_calloc(16, sizeof(uint8_t));
+
+		if ((ret = inet_pton(AF_INET6, addr_local, TIPSEC_CONTEXT(ctx_vista)->addr_local)) != 1 ){
+			TSK_DEBUG_ERROR("inet_pton(%s) have failed with error code [%x].", addr_local, ret);
+			goto bail;
+		} else ret = 0;
+		if ((ret = inet_pton(AF_INET6, addr_remote, TIPSEC_CONTEXT(ctx_vista)->addr_remote)) != 1 ){
+			TSK_DEBUG_ERROR("inet_pton(%s) have failed with error code [%x].", addr_remote, ret);
+			goto bail;
+		} else ret = 0;
+	}
+	else{
+		TIPSEC_CONTEXT(ctx_vista)->addr_local = tsk_calloc(4, sizeof(uint8_t));
+		TIPSEC_CONTEXT(ctx_vista)->addr_remote = tsk_calloc(4, sizeof(uint8_t));
+
+		if ((ret = inet_pton(AF_INET, addr_local, TIPSEC_CONTEXT(ctx_vista)->addr_local)) != 1 ){
+			TSK_DEBUG_ERROR("inet_pton(%s) have failed with error code [%x].", addr_local, ret);
+			goto bail;
+		} 
+		else {
+			*((UINT32*)TIPSEC_CONTEXT(ctx_vista)->addr_local) = ntohl(*((UINT32*)TIPSEC_CONTEXT(ctx_vista)->addr_local));
+			ret = 0;
+		}
+		if ((ret = inet_pton(AF_INET, addr_remote, TIPSEC_CONTEXT(ctx_vista)->addr_remote)) != 1 ){
+			TSK_DEBUG_ERROR("inet_pton(%s) have failed with error code [%x].", addr_remote, ret);
+			goto bail;
+		} 
+		else{
+			*((UINT32*)TIPSEC_CONTEXT(ctx_vista)->addr_remote) = ntohl(*((UINT32*)TIPSEC_CONTEXT(ctx_vista)->addr_remote));
+			ret = 0;
+		}
+	}
+
+	/* Set ports */
+	TIPSEC_CONTEXT(ctx_vista)->port_uc = port_uc;
+	TIPSEC_CONTEXT(ctx_vista)->port_us = port_us;
+	
+	if((ret = tipsec_create_localSA(ctx_vista, TIPSEC_CONTEXT(ctx_vista)->port_uc, &TIPSEC_CONTEXT(ctx_vista)->spi_uc, &ctx_vista->saId_uc))){
+		goto bail;
+	}
+
+	if((ret = tipsec_create_localSA(ctx_vista, TIPSEC_CONTEXT(ctx_vista)->port_us, &TIPSEC_CONTEXT(ctx_vista)->spi_us, &ctx_vista->saId_us))){
+		goto bail;
+	}
+
+	TIPSEC_CONTEXT(ctx_vista)->state = state_inbound;
+
+bail:
+
+	return ret;
+}
+
+/**@ingroup tipsec_vista_group
+*/
+int tipsec_set_keys(tipsec_context_t* ctx, const tipsec_key_t* ik, const tipsec_key_t* ck)
+{
+	if(!ctx || !ik || !ck){
+		return -1;
+	}
+
+	/* Compute ik and ck */
+	TIPSEC_CONTEXT(ctx)->ik = tsk_calloc(1, sizeof(FWP_BYTE_BLOB));
+	TIPSEC_CONTEXT(ctx)->ck = tsk_calloc(1, sizeof(FWP_BYTE_BLOB));
+
+	((PFWP_BYTE_BLOB)TIPSEC_CONTEXT(ctx)->ik)->data = tsk_calloc(1, TIPSEC_IK_LEN);
+	memcpy(((PFWP_BYTE_BLOB)TIPSEC_CONTEXT(ctx)->ik)->data, ik, TIPSEC_KEY_LEN);
+	((PFWP_BYTE_BLOB)TIPSEC_CONTEXT(ctx)->ik)->size = TIPSEC_KEY_LEN;
+
+	((PFWP_BYTE_BLOB)TIPSEC_CONTEXT(ctx)->ck)->data = tsk_calloc(1, TIPSEC_CK_LEN);
+	memcpy(((PFWP_BYTE_BLOB)TIPSEC_CONTEXT(ctx)->ck)->data, ck, TIPSEC_KEY_LEN);
+	((PFWP_BYTE_BLOB)TIPSEC_CONTEXT(ctx)->ck)->size = TIPSEC_KEY_LEN;
+
+	return 0;
+}
+
+/**@ingroup tipsec_vista_group
+*/
+int tipsec_set_remote(tipsec_context_t* ctx, tipsec_spi_t spi_pc, tipsec_spi_t spi_ps, tipsec_port_t port_pc, tipsec_port_t port_ps, tipsec_lifetime_t lifetime)
+{
+	tipsec_context_vista_t* ctx_vista = TIPSEC_CONTEXT_VISTA(ctx);
+	int ret = -1;
+
+	if(!ctx_vista){
+		ret = -1;
+		goto bail;
+	}
+
+	if(!lifetime || !port_pc || !port_ps){
+		ret = -2;
+		goto bail;
+	}
+
+	if(TIPSEC_CONTEXT(ctx_vista)->state != state_inbound){
+		TSK_DEBUG_ERROR("IPSec context is in the wrong state.");
+		ret = -3;
+		goto bail;
+	}
+
+	/* Set Lifetime */
+	TIPSEC_CONTEXT(ctx_vista)->lifetime = lifetime;
+
+	/* Set ports */
+	TIPSEC_CONTEXT(ctx_vista)->port_ps = port_ps;
+	TIPSEC_CONTEXT(ctx_vista)->port_pc = port_pc;
+
+	/* Set spis */
+	TIPSEC_CONTEXT(ctx_vista)->spi_ps = spi_ps;
+	TIPSEC_CONTEXT(ctx_vista)->spi_pc = spi_pc;
+
+	TIPSEC_CONTEXT(ctx_vista)->state = state_full;
+
+	ret = 0;
+
+bail:
+	return ret;
+}
+
+/**@ingroup tipsec_vista_group
+*/
+int tipsec_stop(tipsec_context_t* ctx)
+{
+	tipsec_context_vista_t* ctx_vista = TIPSEC_CONTEXT_VISTA(ctx);
+	int ret = -1;
+
+	if(!ctx_vista){
+		ret = -1;
+		goto bail;
+	}
+
+	if(!TIPSEC_CONTEXT(ctx_vista)->started){
+		TSK_DEBUG_WARN("The IPSec context not started.");
+		ret = -2;
+		goto bail;
+	}
+
+	/* Flush (delete) all SAs associated to tinyIPSEC */
+	tipsec_flush_all(ctx_vista);
+
+	TIPSEC_CONTEXT(ctx_vista)->started = 0;
+	TIPSEC_CONTEXT(ctx_vista)->state = state_initial;
+
+bail:
+	return ret;
+}
+
+int tipsec_create_localSA(__in const tipsec_context_vista_t* context, __in tipsec_port_t local_port, __out tipsec_spi_t *spi, UINT64 *saId)
+{
+	DWORD result = NO_ERROR;
+	UINT64 tmpInFilterId = 0, tmpOutFilterId = 0, tmpSaId = 0;
+	FWPM_FILTER0 filter;
+	IPSEC_TRAFFIC0 outTraffic;
+	IPSEC_GETSPI0 getSpi;
+	int ret = -1;
+	FWPM_FILTER_CONDITION0 conds[4];
+	conds[0].fieldKey = FWPM_CONDITION_IP_LOCAL_ADDRESS;
+	conds[0].matchType = FWP_MATCH_EQUAL;
+
+	*spi = 0;
+	*saId = 0;
+
+	if(TIPSEC_CONTEXT(context)->use_ipv6){
+		conds[0].conditionValue.type = FWP_BYTE_ARRAY16_TYPE;
+		conds[0].conditionValue.byteArray16 = (FWP_BYTE_ARRAY16*)TIPSEC_CONTEXT(context)->addr_local;
+	}
+	else{
+		conds[0].conditionValue.type = FWP_UINT32;
+		conds[0].conditionValue.uint32 = *((UINT32*)TIPSEC_CONTEXT(context)->addr_local);
+	}
+	conds[1].fieldKey = FWPM_CONDITION_IP_REMOTE_ADDRESS;
+	conds[1].matchType = FWP_MATCH_EQUAL;
+	if(TIPSEC_CONTEXT(context)->use_ipv6){
+		conds[1].conditionValue.type = FWP_BYTE_ARRAY16_TYPE;
+		conds[1].conditionValue.byteArray16 = (FWP_BYTE_ARRAY16*)TIPSEC_CONTEXT(context)->addr_remote;
+	}
+	else{
+		conds[1].conditionValue.type = FWP_UINT32;
+		conds[1].conditionValue.uint32 = *((UINT32*)TIPSEC_CONTEXT(context)->addr_remote);
+	}
+
+	conds[2].fieldKey = FWPM_CONDITION_IP_LOCAL_PORT;
+	conds[2].matchType = FWP_MATCH_EQUAL;
+	conds[2].conditionValue.type = FWP_UINT16;
+	conds[2].conditionValue.uint16 = local_port;
+
+	conds[3].fieldKey = FWPM_CONDITION_IP_PROTOCOL;
+	conds[3].matchType = FWP_MATCH_EQUAL;
+	conds[3].conditionValue.type = FWP_UINT8;
+	conds[3].conditionValue.uint16 = TINYIPSEC_VISTA_GET_IPPROTO(TIPSEC_CONTEXT(context)->ipproto);
+
+	// Fill in the common fields shared by both filters.
+	memset(&filter, 0, sizeof(filter));
+	// For MUI compatibility, object names should be indirect strings. See
+	// SHLoadIndirectString for details.
+	filter.displayData.name = (PWSTR)TINYIPSEC_FILTER_NAME;
+	// Link all objects to our provider. When multiple providers are installed
+	// on a computer, this makes it easy to determine who added what.
+	filter.providerKey = (GUID*)TINYIPSEC_PROVIDER_KEY;
+	filter.numFilterConditions = 4;
+	filter.filterCondition = conds;
+	filter.action.type = FWP_ACTION_CALLOUT_TERMINATING;
+	filter.flags = FWPM_FILTER_FLAG_NONE;
+	//filter.weight.type = FWP_EMPTY;
+
+	// Add the inbound filter.
+	filter.layerKey = (TIPSEC_CONTEXT(context)->use_ipv6) ? FWPM_LAYER_INBOUND_TRANSPORT_V6 : FWPM_LAYER_INBOUND_TRANSPORT_V4;
+	if(TIPSEC_CONTEXT(context)->mode == mode_tun){
+		filter.action.calloutKey = (TIPSEC_CONTEXT(context)->use_ipv6) ? FWPM_CALLOUT_IPSEC_INBOUND_TUNNEL_V6 : FWPM_CALLOUT_IPSEC_INBOUND_TUNNEL_V4;
+	}
+	else{
+		filter.action.calloutKey = (TIPSEC_CONTEXT(context)->use_ipv6) ? FWPM_CALLOUT_IPSEC_INBOUND_TRANSPORT_V6 : FWPM_CALLOUT_IPSEC_INBOUND_TRANSPORT_V4;
+	}
+	if((result = FwpmFilterAdd0(context->engine, &filter, NULL, &tmpInFilterId)) != ERROR_SUCCESS){
+		TSK_DEBUG_ERROR("FwpmFilterAdd0 (inbound) failed with error code [%x]", result);
+		goto CLEANUP;
+	}
+
+	// Add the outbound filter.
+	filter.layerKey = (TIPSEC_CONTEXT(context)->use_ipv6) ? FWPM_LAYER_OUTBOUND_TRANSPORT_V6 : FWPM_LAYER_OUTBOUND_TRANSPORT_V4;
+	if(TIPSEC_CONTEXT(context)->mode == mode_tun){
+		filter.action.calloutKey = (TIPSEC_CONTEXT(context)->use_ipv6) ? FWPM_CALLOUT_IPSEC_OUTBOUND_TUNNEL_V6 : FWPM_CALLOUT_IPSEC_OUTBOUND_TUNNEL_V4;
+	}
+	else{
+		filter.action.calloutKey = (TIPSEC_CONTEXT(context)->use_ipv6) ? FWPM_CALLOUT_IPSEC_OUTBOUND_TRANSPORT_V6 : FWPM_CALLOUT_IPSEC_OUTBOUND_TRANSPORT_V4;
+	}
+	if((result = FwpmFilterAdd0(context->engine, &filter, NULL, &tmpOutFilterId)) != ERROR_SUCCESS){
+		TSK_DEBUG_ERROR("FwpmFilterAdd0(outbound) failed with error code [%x]", result);
+		goto CLEANUP;
+	}
+
+	// Create the SA context using the outbound traffic descriptor.
+	memset(&outTraffic, 0, sizeof(outTraffic));
+	outTraffic.ipVersion = TINYIPSEC_VISTA_GET_IPVER(TIPSEC_CONTEXT(context)->use_ipv6);
+	if(TIPSEC_CONTEXT(context)->use_ipv6){
+		memcpy(outTraffic.localV6Address, TIPSEC_CONTEXT(context)->addr_local, 16);
+		memcpy(outTraffic.remoteV6Address, TIPSEC_CONTEXT(context)->addr_remote, 16);
+	}
+	else{
+		outTraffic.localV4Address = *((ULONG*)TIPSEC_CONTEXT(context)->addr_local);
+		outTraffic.remoteV4Address = *((ULONG*)TIPSEC_CONTEXT(context)->addr_remote);
+	}
+	outTraffic.trafficType = TINYIPSEC_VISTA_GET_MODE(TIPSEC_CONTEXT(context)->mode);
+	outTraffic.ipsecFilterId = tmpOutFilterId;
+	if((result = IPsecSaContextCreate0(context->engine, &outTraffic, NULL, &tmpSaId)) != ERROR_SUCCESS){
+		TSK_DEBUG_ERROR("IPsecSaContextCreate0 failed with error code [%x]", result);
+		goto CLEANUP;
+	}
+	
+	// Get the inbound SPI using the inbound traffic descriptor.
+	memset(&getSpi, 0, sizeof(getSpi));
+	getSpi.inboundIpsecTraffic.ipVersion = TINYIPSEC_VISTA_GET_IPVER(TIPSEC_CONTEXT(context)->use_ipv6);
+	if(TIPSEC_CONTEXT(context)->use_ipv6){
+		memcpy(getSpi.inboundIpsecTraffic.localV6Address, TIPSEC_CONTEXT(context)->addr_local, 16);
+		memcpy(getSpi.inboundIpsecTraffic.remoteV6Address, TIPSEC_CONTEXT(context)->addr_remote, 16);
+	}
+	else{
+		getSpi.inboundIpsecTraffic.localV4Address = *((ULONG*)TIPSEC_CONTEXT(context)->addr_local);
+		getSpi.inboundIpsecTraffic.remoteV4Address = *((ULONG*)TIPSEC_CONTEXT(context)->addr_remote);
+	}
+	getSpi.inboundIpsecTraffic.trafficType = TINYIPSEC_VISTA_GET_MODE(TIPSEC_CONTEXT(context)->mode);
+	getSpi.inboundIpsecTraffic.ipsecFilterId = tmpInFilterId;
+	getSpi.ipVersion = TINYIPSEC_VISTA_GET_IPVER(TIPSEC_CONTEXT(context)->use_ipv6);
+	if((result = IPsecSaContextGetSpi0(context->engine, tmpSaId, &getSpi, spi))){
+		TSK_DEBUG_ERROR("IPsecSaContextGetSpi0 failed with error code [%x]", result);
+		goto CLEANUP;
+	}
+
+	//// Return the various LUIDs to the caller, so he can clean up.
+	//*inFilterId = tmpInFilterId;
+	//*outFilterId = tmpOutFilterId;
+	*saId = tmpSaId;
+	
+CLEANUP:
+	if (result != NO_ERROR){
+		DeleteSaContextAndFilters(context->engine, tmpInFilterId, tmpOutFilterId, tmpSaId);
+	}else ret = 0;
+	
+	return ret;
+}
+
+int tipsec_boundSA(__in const tipsec_context_vista_t* context, __in UINT64 local_saId, __in tipsec_spi_t remote_spi, __in BOOLEAN toInbound)
+{
+	UINT32 i=0, j=0;
+	DWORD result = NO_ERROR;
+	IPSEC_SA0 sa;
+	IPSEC_SA_BUNDLE0 bundle;
+	IPSEC_SA_AUTH_INFORMATION0 authInfo;
+	PFWP_BYTE_BLOB ik = (PFWP_BYTE_BLOB)TIPSEC_CONTEXT(context)->ik;
+	PFWP_BYTE_BLOB ck = (PFWP_BYTE_BLOB)TIPSEC_CONTEXT(context)->ck;
+	
+	memset(&sa, 0, sizeof(sa));
+	sa.spi = remote_spi;
+	sa.saTransformType = TINYIPSEC_VISTA_GET_PROTO(TIPSEC_CONTEXT(context)->protocol);
+
+
+	//
+	//	Keys padding
+	//
+	if(TIPSEC_CONTEXT(context)->alg == algo_hmac_sha_1_96){
+		if(ik->size < TIPSEC_IK_LEN){
+			for(i = ik->size; i<TIPSEC_KEY_LEN; i++){
+				ik->data[i] = 0x00; /* Already done by "tsk_calloc" but ... */
+			}
+			ik->size = TIPSEC_IK_LEN;
+		}
+	}
+	if(TIPSEC_CONTEXT(context)->ealg == ealg_des_ede3_cbc){
+		if(ck->size < TIPSEC_CK_LEN){
+			for(i = ck->size; i<TIPSEC_CK_LEN; i++){
+				ck->data[i] = ck->data[j++];
+			}
+			ck->size = TIPSEC_CK_LEN;
+		}
+	}
+
+	//
+	//	In all case create Authentication info
+	//
+	memset(&authInfo, 0, sizeof(authInfo));
+	authInfo.authTransform.authTransformId = TINYIPSEC_VISTA_GET_ALGO(TIPSEC_CONTEXT(context)->alg);
+	authInfo.authKey = *ik;
+
+	if( sa.saTransformType == IPSEC_TRANSFORM_AH ){
+		sa.ahInformation = &authInfo;
+	}
+	else if( sa.saTransformType == IPSEC_TRANSFORM_ESP_AUTH ){
+		sa.espAuthInformation = &authInfo;
+	}
+	else if( sa.saTransformType == IPSEC_TRANSFORM_ESP_AUTH_AND_CIPHER ){
+		IPSEC_SA_CIPHER_INFORMATION0 cipherInfo;
+		IPSEC_SA_AUTH_AND_CIPHER_INFORMATION0 cipherAuthInfo;
+
+		memset(&cipherInfo, 0, sizeof(cipherInfo));
+		cipherInfo.cipherTransform.cipherTransformId = TINYIPSEC_VISTA_GET_EALGO(TIPSEC_CONTEXT(context)->ealg);
+		cipherInfo.cipherKey = *ck;
+		
+		memset(&cipherAuthInfo, 0, sizeof(cipherAuthInfo));
+		cipherAuthInfo.saAuthInformation = authInfo;
+		cipherAuthInfo.saCipherInformation = cipherInfo;
+
+		sa.espAuthAndCipherInformation = &cipherAuthInfo;
+	}
+	
+	memset(&bundle, 0, sizeof(bundle));
+	bundle.numSAs = 1;
+	bundle.saList = &sa;
+	bundle.ipVersion = TINYIPSEC_VISTA_GET_IPVER(TIPSEC_CONTEXT(context)->use_ipv6);
+	bundle.lifetime.lifetimeSeconds = (UINT32)((TIPSEC_CONTEXT(context)->lifetime > TINYIPSEC_SA_MAX_LIFETIME) ? TINYIPSEC_SA_MAX_LIFETIME : TIPSEC_CONTEXT(context)->lifetime);
+
+	/* From remote to local (inbound) ? */
+	if(toInbound){
+		if((result = IPsecSaContextAddInbound0(context->engine, local_saId, &bundle)) != ERROR_SUCCESS){
+			TSK_DEBUG_ERROR("IPsecSaContextAddInbound0 failed with error code [%x]", result);
+			goto CLEANUP;
+		}
+	}
+	else{
+		if((result = IPsecSaContextAddOutbound0(context->engine, local_saId, &bundle)) != ERROR_SUCCESS){
+			TSK_DEBUG_ERROR("IPsecSaContextAddOutbound0 failed with error code [%x]", result);
+			goto CLEANUP;
+		}
+	}	
+
+CLEANUP:
+	return (result == ERROR_SUCCESS) ? 0 : -1;
+}
+
+
+void DeleteSaContextAndFilters(__in HANDLE engine, __in UINT64 inFilterId, __in UINT64 outFilterId, __in UINT64 saId)
+{
+   DWORD result;
+
+   // Allow the LUIDs to be zero, so we can use this function to cleanup
+   // partial results.
+   if (saId != 0)
+   {
+      result = IPsecSaContextDeleteById0(engine, saId);
+      if (result != ERROR_SUCCESS)
+      {
+         // There's not much we can do if delete fails, so continue trying to
+         // clean up the remaining objects.
+         TSK_DEBUG_ERROR("IPsecSaContextDeleteById0 = 0x%08X\n", result);
+      }
+   }
+   if (outFilterId != 0)
+   {
+      result = FwpmFilterDeleteById0(engine, outFilterId);
+      if (result != ERROR_SUCCESS)
+      {
+         TSK_DEBUG_ERROR("FwpmFilterDeleteById0 = 0x%08X\n", result);
+      }
+   }
+   if (inFilterId != 0)
+   {
+      result = FwpmFilterDeleteById0(engine, inFilterId);
+      if (result != ERROR_SUCCESS)
+      {
+         TSK_DEBUG_ERROR("FwpmFilterDeleteById0 = 0x%08X\n", result);
+      }
+   }
+}
+
+int tipsec_flush_all(const tipsec_context_vista_t* context)
+{
+	UINT32 i;
+	int ret = -1;
+
+	if(context)
+	{
+		HANDLE enumHandle = NULL;
+		IPSEC_SA_DETAILS0** entries = NULL;
+		UINT32 numEntriesReturned = 0;
+		DWORD result;
+
+		if((result = IPsecSaCreateEnumHandle0(context->engine, NULL, &enumHandle)) != ERROR_SUCCESS){
+			TSK_DEBUG_ERROR("IPsecSaCreateEnumHandle0 failed with error code [%x].", result);
+			goto CLEANUP;
+		}
+		
+		if((result = IPsecSaEnum0(context->engine, enumHandle, TINYIPSEC_SA_NUM_ENTRIES_TO_REQUEST, &entries, &numEntriesReturned)) != ERROR_SUCCESS){
+			TSK_DEBUG_ERROR("IPsecSaEnum0 failed with error code [%x].", result);
+			goto CLEANUP;
+		}
+
+		for(i = 0; i<numEntriesReturned; i++)
+		{
+			IPSEC_SA_DETAILS0* entry = (entries)[i];
+			if( !wcscmp(entry->transportFilter->displayData.name, TINYIPSEC_FILTER_NAME))
+			{
+				if((result = FwpmFilterDeleteById0(context->engine, entry->transportFilter->filterId)) != ERROR_SUCCESS){
+					TSK_DEBUG_ERROR("FwpmFilterDeleteById0 failed with error code [%x].", result);
+					goto CLEANUP;
+				}
+			}
+		}
+
+		if((result = IPsecSaDestroyEnumHandle0(context->engine, enumHandle)) != ERROR_SUCCESS){
+			TSK_DEBUG_ERROR("IPsecSaDestroyEnumHandle0 failed with error code [%x].", result);
+			goto CLEANUP;
+		}
+		
+		TSK_DEBUG_INFO("All SAs have been flushed.");
+		ret = 0;
+
+	CLEANUP:
+		FwpmFreeMemory0((void**)entries);
+	}
+
+	return ret;
+}
+
+//=================================================================================================
+//	IPSec context object definition
+//
+static tsk_object_t* tipsec_context_ctor(tsk_object_t * self, va_list * app)
+{
+	tipsec_context_vista_t *context = self;
+	if(context){
+		DWORD code;
+	
+		TIPSEC_CONTEXT(context)->ipproto = va_arg(*app, tipsec_ipproto_t);
+		TIPSEC_CONTEXT(context)->use_ipv6 = va_arg(*app, int);
+		TIPSEC_CONTEXT(context)->mode = va_arg(*app, tipsec_mode_t);
+		TIPSEC_CONTEXT(context)->ealg = va_arg(*app, tipsec_ealgorithm_t);
+		TIPSEC_CONTEXT(context)->alg = va_arg(*app, tipsec_algorithm_t);
+		TIPSEC_CONTEXT(context)->protocol = va_arg(*app, tipsec_protocol_t);
+
+		/* Open engine */
+		if((code = FwpmEngineOpen0(NULL, RPC_C_AUTHN_WINNT, NULL, NULL, &context->engine))){
+			TIPSEC_CONTEXT(context)->initialized = tsk_false;
+			TSK_DEBUG_ERROR("FwpmEngineOpen0 failed with error code [%x].", code);
+		}
+		else{
+			TIPSEC_CONTEXT(context)->initialized = tsk_true;
+		}
+		
+		TIPSEC_CONTEXT(context)->state = state_initial;
+	}
+	return self;
+}
+
+static tsk_object_t* tipsec_context_dtor(tsk_object_t * self)
+{ 
+	tipsec_context_vista_t *context = self;
+	if(context)
+	{
+		DWORD code;
+
+		if(TIPSEC_CONTEXT(context)->started){
+			tipsec_stop(TIPSEC_CONTEXT(context));
+		}
+		
+		/* Close engine */
+		if((code = FwpmEngineClose0(context->engine))){
+			TSK_DEBUG_ERROR("FwpmEngineClose0 failed with error code [%x].", code);
+		}
+
+		TSK_FREE(TIPSEC_CONTEXT(context)->addr_local);
+		TSK_FREE(TIPSEC_CONTEXT(context)->addr_remote);
+		
+		TSK_FREE(TIPSEC_CONTEXT(context)->ik);
+		TSK_FREE(TIPSEC_CONTEXT(context)->ck);
+	}
+
+	return self;
+}
+
+static int tipsec_context_cmp(const tsk_object_t *obj1, const tsk_object_t *obj2)
+{
+	return-1;
+}
+
+static const tsk_object_def_t tipsec_context_def_s = 
+{
+	sizeof(tipsec_context_vista_t),
+	tipsec_context_ctor, 
+	tipsec_context_dtor,
+	tipsec_context_cmp, 
+};
+const void *tipsec_context_def_t = &tipsec_context_def_s;
+
+
+#endif /* HAVE_IPSEC_VISTA */
diff --git a/tinyIPSec/src/tipsec_vista.h b/tinyIPSec/src/tipsec_vista.h
new file mode 100644
index 0000000..2359196
--- /dev/null
+++ b/tinyIPSec/src/tipsec_vista.h
@@ -0,0 +1,49 @@
+/*
+* Copyright (C) 2009-2010 Mamadou Diop.
+*
+* Contact: Mamadou Diop <diopmamadou(at)doubango.org>
+*	
+* This file is part of Open Source Doubango Framework.
+*
+* DOUBANGO is free software: you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation, either version 3 of the License, or
+* (at your option) any later version.
+*	
+* DOUBANGO is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+* GNU General Public License for more details.
+*	
+* You should have received a copy of the GNU General Public License
+* along with DOUBANGO.
+*
+*/
+
+/**@file tipsec_vista.h
+ * @brief Windows Vista/7 IPsec implementation using WFP.
+ *
+ * @author Mamadou Diop <diopmamadou(at)doubango.org>
+ *
+ * @date Created: Sat Nov 8 16:54:58 2009 mdiop
+ */
+#ifndef TINYIPSEC_IPSEC_VISTA_H
+#define TINYIPSEC_IPSEC_VISTA_H
+
+#include "tinyipsec_config.h"
+
+#include "tipsec_common.h"
+
+TIPSEC_BEGIN_DECLS
+
+#if HAVE_IPSEC_VISTA
+
+
+
+#endif /* HAVE_IPSEC_VISTA */
+
+
+TIPSEC_END_DECLS
+
+
+#endif /* TINYIPSEC_IPSEC_VISTA_H */
diff --git a/tinyIPSec/src/tipsec_xp.c b/tinyIPSec/src/tipsec_xp.c
new file mode 100644
index 0000000..e3c5df4
--- /dev/null
+++ b/tinyIPSec/src/tipsec_xp.c
@@ -0,0 +1,652 @@
+/*
+* Copyright (C) 2009-2010 Mamadou Diop.
+*
+* Contact: Mamadou Diop <diopmamadou(at)doubango.org>
+*	
+* This file is part of Open Source Doubango Framework.
+*
+* DOUBANGO is free software: you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation, either version 3 of the License, or
+* (at your option) any later version.
+*	
+* DOUBANGO is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+* GNU General Public License for more details.
+*	
+* You should have received a copy of the GNU General Public License
+* along with DOUBANGO.
+*
+*/
+
+/**@file tipsec_xp.c
+ * @brief Windows XP/2003 IPsec implementation using ipsec6 tool.
+ * @sa http://technet.microsoft.com/en-us/library/cc787900.aspx
+ *
+ * @author Mamadou Diop <diopmamadou(at)doubango.org>
+ *
+ * @date Created: Sat Nov 8 16:54:58 2009 mdiop
+ */
+#include "tipsec_xp.h"
+
+/**@defgroup tipsec_xp_group IPSec XP implementation.
+* Supported algo: <b>hmac-md5-96</b> and <b>hmac-sha-1-96</b>.<br>
+* Supported ealg: <b>null</b> only.<br>
+* Supported mode: <b>tunnel</b> and <b>transport</b>.<br>
+* Supported proto: <b>ah</b> and <b>esp</b>.<br>
+* Supported IP proto: <b>tcp</b> and <b>udp</b>.<br>
+* Supported IP version: <b>IPv6</b> only.
+*/
+
+#if HAVE_IPSEC_XP
+
+#include "tsk_debug.h"
+#include "tsk_memory.h"
+
+
+#define TINYIPSEC_XP_GET_ALGO(algo) ((algo ==  algo_hmac_md5_96) ? "HMAC-MD5-96" : "HMAC-SHA1")
+#define TINYIPSEC_XP_GET_MODE(mode)	 ((mode == mode_tun) ? "TUNNEL" : "TRANSPORT")
+#define TINYIPSEC_XP_GET_PROTO(proto)	 ((proto == proto_ah) ? "AH" : "ESP")
+#define TINYIPSEC_XP_GET_IPPROTO(ipproto)	 ((ipproto == ipproto_tcp) ? "TCP" : ((ipproto == ipproto_icmp) ? "ICMP" : "UDP"))
+
+/**@ingroup tipsec_xp_group
+* @def TINYIPSEC_IPSEC6_FILE
+*/
+/**@ingroup tipsec_xp_group
+* @def TINYIPSEC_IPSEC6_FILE_KEY
+*/
+/**@ingroup tipsec_xp_group
+* @def TINYIPSEC_IPSEC6_FILE_SAD
+*/
+/**@ingroup tipsec_xp_group
+* @def TINYIPSEC_IPSEC6_FILE_SPD
+*/
+#define TINYIPSEC_IPSEC6_FILE				"tinyIPSec"
+#define TINYIPSEC_IPSEC6_FILE_KEY			TINYIPSEC_IPSEC6_FILE".key"
+#define TINYIPSEC_IPSEC6_FILE_SAD			TINYIPSEC_IPSEC6_FILE".sad"
+#define TINYIPSEC_IPSEC6_FILE_SPD			TINYIPSEC_IPSEC6_FILE".spd"
+
+#define TINYIPSEC_IPSEC6_TEMPLATE_POLICY "\n"\
+"Security Policy List\n"\
+"\n"\
+"Policy      RemoteIPAddr                                   LocalIPAddr                                    Protocol      RemotePort    LocalPort   IPSecProtocol  IPSecMode   RemoteGWIPAddr                               SABundleIndex  Direction   Action      InterfaceIndex \n"\
+"_________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________\n"\
+"%s - %s - %s - %s - %u - %u %s %s %s %s %s %s %s ;\n"\
+"%s - %s - %s - %s - %u - %u %s %s %s %s %s %s %s ;\n"\
+"_________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________\n"\
+"\n"\
+"- = Take selector from policy.\n"\
+"+ = Take selector from packet.\n"
+#define TINYIPSEC_IPSEC6_TEMPLATE_SA "\n"\
+"Security Association List\n"\
+"\n"\
+"SAEntry   SPI            SADestIPAddr                                 DestIPAddr                                   SrcIPAddr                                    Protocol    DestPort    SrcPort     AuthAlg     KeyFile        Direction   SecPolicyIndex \n"\
+"___________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________\n"\
+"%s %u %s %s %s %s %s %s %s %s %s %s ;\n"\
+"%s %u %s %s %s %s %s %s %s %s %s %s ;\n"\
+"%s %u %s %s %s %s %s %s %s %s %s %s ;\n"\
+"%s %u %s %s %s %s %s %s %s %s %s %s ;\n"\
+"___________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________\n"
+
+/**@ingroup tipsec_xp_group
+*/
+#define TINYIPSEC_IPSEC6_UCPS_POLICY	"11111983"
+/**@ingroup tipsec_xp_group
+*/
+#define TINYIPSEC_IPSEC6_USPC_POLICY	"22221983"
+
+/**@ingroup tipsec_xp_group
+* IPSec context.
+*/
+typedef struct tipsec_context_xp_s
+{
+	TINYIPSEC_DECLARE_CONTEXT;
+	
+}
+tipsec_context_xp_t;
+
+/**@ingroup tipsec_xp_group
+*/
+#define TIPSEC_CONTEXT_XP(ctx) ((tipsec_context_xp_t*)(ctx))
+
+int tipsec_set_IKey(tipsec_context_xp_t* ctx_xp);
+int tipsec_set_SPDs(tipsec_context_xp_t* ctx_xp);
+int tipsec_set_SAs(tipsec_context_xp_t* ctx_xp);
+
+struct handleInfo{
+	HANDLE process;
+	HANDLE pipe;
+};
+
+int tipsec_run_command(TCHAR *args);
+DWORD WINAPI  tipsec_waitForExit(void *arg);
+
+/**@ingroup tipsec_xp_group
+*/
+int tipsec_start(tipsec_context_t* ctx)
+{
+	tipsec_context_xp_t* ctx_xp = TIPSEC_CONTEXT_XP(ctx);
+	int ret = -1;
+	
+	if(!ctx_xp){
+		ret = -1;
+		goto bail;
+	}
+
+	if(TIPSEC_CONTEXT(ctx_xp)->started){
+		TSK_DEBUG_WARN("The IPSec context already started.");
+		ret = -2;
+		goto bail;
+	}
+
+	if(TIPSEC_CONTEXT(ctx_xp)->state != state_full){
+		TSK_DEBUG_ERROR("IPSec context is in the wrong state.");
+		ret = -3;
+		goto bail;
+	}
+
+	if((ret = tipsec_set_IKey(ctx_xp))){
+		TSK_DEBUG_ERROR("Failed to set IKey.");
+		goto bail;
+	}
+
+	if((ret = tipsec_set_SPDs(ctx_xp))){
+		TSK_DEBUG_ERROR("Failed to set SPDs.");
+		goto bail;
+	}
+
+	if((ret = tipsec_set_SAs(ctx_xp))){
+		TSK_DEBUG_ERROR("Failed to set SAs.");
+		goto bail;
+	}
+
+	/* delete previous Policies */
+	tipsec_run_command(TEXT("d sp "TEXT(TINYIPSEC_IPSEC6_UCPS_POLICY)));
+	tipsec_run_command(TEXT("d sp "TEXT(TINYIPSEC_IPSEC6_USPC_POLICY)));
+
+	/* Load new policies */
+	if(!(ret = tipsec_run_command(TEXT("l "TEXT(TINYIPSEC_IPSEC6_FILE))))){
+		TIPSEC_CONTEXT(ctx_xp)->started = 1;
+	}
+	
+bail:
+	/* Remove files */
+	remove(TINYIPSEC_IPSEC6_FILE_SPD);
+	remove(TINYIPSEC_IPSEC6_FILE_SAD);
+	remove(TINYIPSEC_IPSEC6_FILE_KEY);
+
+	return ret;
+}
+
+/**@ingroup tipsec_xp_group
+*/
+int tipsec_set_local(tipsec_context_t* ctx, const char* addr_local, const char* addr_remote, tipsec_port_t port_uc, tipsec_port_t port_us)
+{
+	tipsec_context_xp_t* ctx_xp = TIPSEC_CONTEXT_XP(ctx);
+	int ret = -1;
+
+	if(!ctx_xp){
+		ret = -1;
+		goto bail;
+	}
+
+	if(!addr_local || !port_uc || !port_us){
+		ret = -2;
+		goto bail;
+	}
+
+	if(!TIPSEC_CONTEXT(ctx_xp)->initialized){
+		TSK_DEBUG_ERROR("IPSec engine not initialized.");
+		ret = -3;
+		goto bail;
+	}
+
+	if(TIPSEC_CONTEXT(ctx_xp)->state != state_initial){
+		TSK_DEBUG_ERROR("IPSec context is in the wrong state.");
+		ret = -4;
+		goto bail;
+	}
+	
+	/* Set local/remote IPv6 addresses*/
+	tsk_strupdate((char**)&TIPSEC_CONTEXT(ctx_xp)->addr_local, addr_local);
+	tsk_strupdate((char**)&TIPSEC_CONTEXT(ctx_xp)->addr_remote, addr_remote);
+
+	/* Set ports */
+	TIPSEC_CONTEXT(ctx_xp)->port_uc = port_uc;
+	TIPSEC_CONTEXT(ctx_xp)->port_us = port_us;
+
+	/* Set SPIs */
+	TIPSEC_CONTEXT(ctx_xp)->spi_uc = (rand() ^ rand());
+	TIPSEC_CONTEXT(ctx_xp)->spi_us = (rand() ^ rand());
+
+	TIPSEC_CONTEXT(ctx_xp)->state = state_inbound;
+
+	ret = 0;
+
+bail:
+	return ret;
+}
+
+/**@ingroup tipsec_xp_group
+*/
+int tipsec_set_keys(tipsec_context_t* ctx, const tipsec_key_t* ik, const tipsec_key_t* ck)
+{
+	if(!ctx || !ik || !ck){
+		return -1;
+	}
+
+	TSK_FREE(ctx->ik);
+	TSK_FREE(ctx->ck);
+
+	ctx->ik = tsk_strndup(ik, TIPSEC_KEY_LEN);
+	ctx->ck = tsk_strndup(ck, TIPSEC_KEY_LEN); /* XP version of IPSec do not support encryption key but we copy ck (Who know?). */				
+
+	return 0;
+}
+
+/**@ingroup tipsec_xp_group
+*/
+int tipsec_set_remote(tipsec_context_t* ctx, tipsec_spi_t spi_pc, tipsec_spi_t spi_ps, tipsec_port_t port_pc, tipsec_port_t port_ps, tipsec_lifetime_t lifetime)
+{
+	tipsec_context_xp_t* ctx_xp = TIPSEC_CONTEXT_XP(ctx);
+	int ret = -1;
+
+	if(!ctx_xp){
+		ret = -1;
+		goto bail;
+	}
+
+	if(!lifetime || !port_pc || !port_ps){
+		ret = -2;
+		goto bail;
+	}
+
+	if(TIPSEC_CONTEXT(ctx_xp)->state != state_inbound){
+		TSK_DEBUG_ERROR("IPSec context is in the wrong state.");
+		ret = -3;
+		goto bail;
+	}
+
+	/* Set Lifetime */
+	TIPSEC_CONTEXT(ctx_xp)->lifetime = lifetime;
+
+	/* Set ports */
+	TIPSEC_CONTEXT(ctx_xp)->port_ps = port_ps;
+	TIPSEC_CONTEXT(ctx_xp)->port_pc = port_pc;
+
+	/* Set spis */
+	TIPSEC_CONTEXT(ctx_xp)->spi_ps = spi_ps;
+	TIPSEC_CONTEXT(ctx_xp)->spi_pc = spi_pc;
+
+	TIPSEC_CONTEXT(ctx_xp)->state = state_full;
+
+	ret = 0;
+
+bail:
+	return ret;
+}
+
+/**@ingroup tipsec_xp_group
+*/
+int tipsec_stop(tipsec_context_t* ctx)
+{
+	tipsec_context_xp_t* ctx_xp = TIPSEC_CONTEXT_XP(ctx);
+	int ret = -1;
+
+	/* Load previous Policies */
+	ret = tipsec_run_command(TEXT("d sp "TEXT(TINYIPSEC_IPSEC6_UCPS_POLICY)));
+	ret = tipsec_run_command(TEXT("d sp "TEXT(TINYIPSEC_IPSEC6_USPC_POLICY)));
+
+	return ret;
+}
+
+
+int tipsec_set_IKey(tipsec_context_xp_t* ctx_xp)
+{
+	int ret = -1;
+	FILE* file = NULL;
+
+	if(!ctx_xp){
+		goto bail;
+	}
+
+	if(TIPSEC_CONTEXT(ctx_xp)->state != state_full){
+		TSK_DEBUG_ERROR("IPSec context is in the wrong state.");
+		ret = -3;
+		goto bail;
+	}
+
+	if(!(file = fopen(TINYIPSEC_IPSEC6_FILE_KEY, "wb+"))){
+		TSK_DEBUG_ERROR("Failed to open file [%s].", TINYIPSEC_IPSEC6_FILE_KEY);
+		ret = -4;
+		goto bail;
+	}
+
+	fwrite(TIPSEC_CONTEXT(ctx_xp)->ik, TIPSEC_KEY_LEN, sizeof(uint8_t), file);
+
+	if(TIPSEC_CONTEXT(ctx_xp)->alg == algo_hmac_md5_96){ /* Pad if HMAC-MD5-96 */
+		uint8_t zeros[4];
+		memset(zeros, 0, 4);
+		fwrite(zeros, 4, sizeof(uint8_t), file);
+	}
+
+	ret = 0;
+
+bail:
+	if(file){
+		fclose(file);
+	}
+
+	return ret;
+}
+
+int tipsec_set_SPDs(tipsec_context_xp_t* ctx_xp)
+{
+	int ret = -1;
+	FILE* file = NULL;
+	char* str = NULL;
+
+	if(!ctx_xp){
+		goto bail;
+	}
+
+	if(TIPSEC_CONTEXT(ctx_xp)->state != state_full){
+		TSK_DEBUG_ERROR("IPSec context is in the wrong state.");
+		ret = -3;
+		goto bail;
+	}
+
+	if(!(file = fopen(TINYIPSEC_IPSEC6_FILE_SPD, "wb+"))){
+		TSK_DEBUG_ERROR("Failed to open file [%s].", TINYIPSEC_IPSEC6_FILE_SPD);
+		ret = -4;
+		goto bail;
+	}
+
+	tsk_sprintf(&str, TINYIPSEC_IPSEC6_TEMPLATE_POLICY,
+		/* UC -> PS */
+		TINYIPSEC_IPSEC6_UCPS_POLICY,
+		TIPSEC_CONTEXT(ctx_xp)->addr_remote,
+		TIPSEC_CONTEXT(ctx_xp)->addr_local,
+		TINYIPSEC_XP_GET_IPPROTO(TIPSEC_CONTEXT(ctx_xp)->ipproto),
+		TIPSEC_CONTEXT(ctx_xp)->port_ps,
+		TIPSEC_CONTEXT(ctx_xp)->port_uc,
+		TINYIPSEC_XP_GET_PROTO(TIPSEC_CONTEXT(ctx_xp)->protocol),
+		TINYIPSEC_XP_GET_MODE(TIPSEC_CONTEXT(ctx_xp)->mode),
+		"*", /* RemoteGWIPAddr */
+		"NONE", /* SABundleIndex */
+		"BIDIRECT", /* Direction */
+		"APPLY", /* Action */
+		"0", /* InterfaceIndex */
+
+		/* US -> PC */
+		TINYIPSEC_IPSEC6_USPC_POLICY,
+		TIPSEC_CONTEXT(ctx_xp)->addr_remote,
+		TIPSEC_CONTEXT(ctx_xp)->addr_local,
+		TINYIPSEC_XP_GET_IPPROTO(TIPSEC_CONTEXT(ctx_xp)->ipproto),
+		TIPSEC_CONTEXT(ctx_xp)->port_pc,
+		TIPSEC_CONTEXT(ctx_xp)->port_us,
+		TINYIPSEC_XP_GET_PROTO(TIPSEC_CONTEXT(ctx_xp)->protocol),
+		TINYIPSEC_XP_GET_MODE(TIPSEC_CONTEXT(ctx_xp)->mode),
+		"*", /* RemoteGWIPAddr */
+		"NONE", /* SABundleIndex */
+		"BIDIRECT", /* Direction */
+		"APPLY", /* Action */
+		"0" /* InterfaceIndex */
+		);
+
+	fwrite(str, tsk_strlen(str), sizeof(uint8_t), file);
+	ret = 0;
+
+bail:
+	if(file){
+		fclose(file);
+	}
+	if(str){
+		TSK_FREE(str);
+	}
+	return ret;
+}
+
+int tipsec_set_SAs(tipsec_context_xp_t* ctx_xp)
+{
+
+	int ret = -1;
+	FILE* file = NULL;
+	char* str = NULL;
+
+	if(!ctx_xp){
+		goto bail;
+	}
+
+	if(TIPSEC_CONTEXT(ctx_xp)->state != state_full){
+		TSK_DEBUG_ERROR("IPSec context is in the wrong state.");
+		ret = -3;
+		goto bail;
+	}
+
+	if(!(file = fopen(TINYIPSEC_IPSEC6_FILE_SAD, "wb+"))){
+		TSK_DEBUG_ERROR("Failed to open file [%s].", TINYIPSEC_IPSEC6_FILE_SAD);
+		ret = -4;
+		goto bail;
+	}
+
+	tsk_sprintf(&str, TINYIPSEC_IPSEC6_TEMPLATE_SA,
+		/* PC -> US */
+		"1", // SAEntry
+		TIPSEC_CONTEXT(ctx_xp)->spi_us, // SPI
+		TIPSEC_CONTEXT(ctx_xp)->addr_local, // SADestIPAddr
+		"POLICY", // DestIPAddr
+		"POLICY", // SrcIPAddr
+		"POLICY", // Protocol
+		"POLICY", // DestPort
+		"POLICY", // SrcPort
+		TINYIPSEC_XP_GET_ALGO(TIPSEC_CONTEXT(ctx_xp)->alg), // AuthAlg
+		TINYIPSEC_IPSEC6_FILE_KEY, // KeyFile
+		"INBOUND", // Direction
+		"0", /* SecPolicyIndex */
+		
+		/* US -> PC */
+		"2", // SAEntry
+		TIPSEC_CONTEXT(ctx_xp)->spi_pc, // SPI
+		TIPSEC_CONTEXT(ctx_xp)->addr_remote, // SADestIPAddr
+		"POLICY", // DestIPAddr
+		"POLICY", // SrcIPAddr
+		"POLICY", // Protocol
+		"POLICY", // DestPort
+		"POLICY", // SrcPort
+		TINYIPSEC_XP_GET_ALGO(TIPSEC_CONTEXT(ctx_xp)->alg), // AuthAlg
+		TINYIPSEC_IPSEC6_FILE_KEY, // KeyFile
+		"OUTBOUND", // Direction
+		"0", /* SecPolicyIndex */
+
+		/* PS -> UC */
+		"3", // SAEntry
+		TIPSEC_CONTEXT(ctx_xp)->spi_uc, // SPI
+		TIPSEC_CONTEXT(ctx_xp)->addr_local, // SADestIPAddr
+		"POLICY", // DestIPAddr
+		"POLICY", // SrcIPAddr
+		"POLICY", // Protocol
+		"POLICY", // DestPort
+		"POLICY", // SrcPort
+		TINYIPSEC_XP_GET_ALGO(TIPSEC_CONTEXT(ctx_xp)->alg), // AuthAlg
+		TINYIPSEC_IPSEC6_FILE_KEY, // KeyFile
+		"INBOUND", // Direction
+		"0", /* SecPolicyIndex */
+
+		/* UC -> PS */
+		"4", // SAEntry
+		TIPSEC_CONTEXT(ctx_xp)->spi_ps, // SPI
+		TIPSEC_CONTEXT(ctx_xp)->addr_remote, // SADestIPAddr
+		"POLICY", // DestIPAddr
+		"POLICY", // SrcIPAddr
+		"POLICY", // Protocol
+		"POLICY", // DestPort
+		"POLICY", // SrcPort
+		TINYIPSEC_XP_GET_ALGO(TIPSEC_CONTEXT(ctx_xp)->alg), // AuthAlg
+		TINYIPSEC_IPSEC6_FILE_KEY, // KeyFile
+		"OUTBOUND", // Direction
+		"0" /* SecPolicyIndex */
+		);
+		
+	fwrite(str, tsk_strlen(str), sizeof(uint8_t), file);
+	ret = 0;
+
+bail:
+	if(file){
+		fclose(file);
+	}
+	if(str){
+		TSK_FREE(str);
+	}
+	return ret;
+}
+
+int tipsec_run_command(TCHAR *args)
+{
+#define TIPSEC_PIPE_BUFFER 1024
+
+	DWORD bread=0,tid=0;
+	int ret = -1;
+	struct handleInfo hInfo;
+	TCHAR _args[MAX_PATH];
+	HANDLE writePipe, readPipe, hThread;
+	SECURITY_ATTRIBUTES secAttr  = {sizeof(SECURITY_ATTRIBUTES), NULL, TRUE};
+	
+	STARTUPINFO si = {0};
+	PROCESS_INFORMATION pi = {0};
+
+	char buffer[TIPSEC_PIPE_BUFFER];
+
+	/* Create pipes */
+	if((ret = CreatePipe(&readPipe, &writePipe, &secAttr, 0)) == 0) {
+		TSK_DEBUG_ERROR("CreatePipe failed with error code [%d].", GetLastError());
+		ret = -5;
+		goto bail;
+	}
+
+	wsprintf(_args, TEXT("\"%s\" %s"), TEXT("ipsec6.exe"), args );
+
+	memset(buffer, 0, TIPSEC_PIPE_BUFFER);
+	
+	si.cb          =  sizeof(STARTUPINFO);
+	si.dwFlags     = STARTF_USESTDHANDLES;
+	si.hStdInput  =  NULL;
+	si.hStdOutput =  writePipe;
+	si.hStdError  =  NULL;
+
+	
+	/* Create process */
+	if (CreateProcess(NULL, _args, NULL, NULL, TRUE, CREATE_NO_WINDOW, NULL, NULL, &si, &pi) == 0){
+		TSK_DEBUG_ERROR("CreateProcess failed with error code [%d].", GetLastError());
+		ret = -3;
+		goto bail;
+	}
+		
+	hInfo.process = pi.hProcess;
+	hInfo.pipe = writePipe;
+
+	/* Create thread */
+	if((hThread = CreateThread(NULL, 0, tipsec_waitForExit, &hInfo, 0, &tid)) == NULL) {
+		TSK_DEBUG_ERROR("CreateThread failed with error code [%d].", GetLastError());
+		ret = -4;
+		goto bail;
+	}
+	
+	/* For debugging */
+#if defined(DEBUG) || defined(_DEBUG)
+	while (ReadFile(readPipe, buffer, TIPSEC_PIPE_BUFFER-2, &bread, NULL))
+	{
+		if(bread > 0){
+			TSK_DEBUG_INFO("IPSEC6 ==> %s\n-------------\n", buffer);
+			memset(buffer, 0, TIPSEC_PIPE_BUFFER); /* reset the buffer. */
+		}
+	}
+#endif
+
+	ret = 0;
+	
+bail:
+	return ret;
+}
+
+DWORD WINAPI tipsec_waitForExit(void *arg)
+{
+	struct handleInfo *info = (struct handleInfo *)arg;
+	WaitForSingleObject(&(info->process),INFINITE);
+	CloseHandle(info->pipe);
+	return 0;
+}
+
+
+
+
+
+
+
+//=================================================================================================
+//	IPSec context object definition
+//
+static tsk_object_t* tipsec_context_ctor(tsk_object_t * self, va_list * app)
+{
+	tipsec_context_xp_t *context = self;
+	if(context){
+		TIPSEC_CONTEXT(context)->ipproto = va_arg(*app, tipsec_ipproto_t);
+		TIPSEC_CONTEXT(context)->use_ipv6 = va_arg(*app, int);
+		TIPSEC_CONTEXT(context)->mode = va_arg(*app, tipsec_mode_t);
+		TIPSEC_CONTEXT(context)->ealg = va_arg(*app, tipsec_ealgorithm_t);
+		TIPSEC_CONTEXT(context)->alg = va_arg(*app, tipsec_algorithm_t);
+		TIPSEC_CONTEXT(context)->protocol = va_arg(*app, tipsec_protocol_t);
+
+		/* Open engine */
+		if(!TIPSEC_CONTEXT(context)->use_ipv6){
+			TSK_DEBUG_ERROR("IPSec/IPv4 is not supported on Windows XP.");
+
+			TIPSEC_CONTEXT(context)->initialized = tsk_false;
+			goto bail;
+		}
+		else{
+			TIPSEC_CONTEXT(context)->initialized = tsk_true;
+		}
+		
+		TIPSEC_CONTEXT(context)->state = state_initial;
+	}
+bail:
+	return self;
+}
+
+static tsk_object_t* tipsec_context_dtor(tsk_object_t * self)
+{ 
+	tipsec_context_xp_t *context = self;
+	if(context)
+	{
+		if(TIPSEC_CONTEXT(context)->started){
+			tipsec_stop(TIPSEC_CONTEXT(context));
+		}
+
+		TSK_FREE(TIPSEC_CONTEXT(context)->addr_local);
+		TSK_FREE(TIPSEC_CONTEXT(context)->addr_remote);
+		
+		TSK_FREE(TIPSEC_CONTEXT(context)->ik);
+		TSK_FREE(TIPSEC_CONTEXT(context)->ck);
+	}
+
+	return self;
+}
+
+static int tipsec_context_cmp(const tsk_object_t *obj1, const tsk_object_t *obj2)
+{
+	return-1;
+}
+
+static const tsk_object_def_t tipsec_context_def_s = 
+{
+	sizeof(tipsec_context_xp_t),
+	tipsec_context_ctor, 
+	tipsec_context_dtor,
+	tipsec_context_cmp, 
+};
+const void *tipsec_context_def_t = &tipsec_context_def_s;
+
+
+#endif /* HAVE_IPSEC_XP */
diff --git a/tinyIPSec/src/tipsec_xp.h b/tinyIPSec/src/tipsec_xp.h
new file mode 100644
index 0000000..a34dcc7
--- /dev/null
+++ b/tinyIPSec/src/tipsec_xp.h
@@ -0,0 +1,50 @@
+/*
+* Copyright (C) 2009-2010 Mamadou Diop.
+*
+* Contact: Mamadou Diop <diopmamadou(at)doubango.org>
+*	
+* This file is part of Open Source Doubango Framework.
+*
+* DOUBANGO is free software: you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation, either version 3 of the License, or
+* (at your option) any later version.
+*	
+* DOUBANGO is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+* GNU General Public License for more details.
+*	
+* You should have received a copy of the GNU General Public License
+* along with DOUBANGO.
+*
+*/
+
+/**@file tipsec_xp.h
+ * @brief Windows XP/2003 IPsec implementation using ipsec6 tool.
+ * @sa http://technet.microsoft.com/en-us/library/cc787900.aspx
+ *
+ * @author Mamadou Diop <diopmamadou(at)doubango.org>
+ *
+ * @date Created: Sat Nov 8 16:54:58 2009 mdiop
+ */
+#ifndef TINYIPSEC_IPSEC_XP_H
+#define TINYIPSEC_IPSEC_XP_H
+
+#include "tinyipsec_config.h"
+
+#include "tipsec_common.h"
+
+TIPSEC_BEGIN_DECLS
+
+#if HAVE_IPSEC_XP
+
+
+
+#endif /* HAVE_IPSEC_XP */
+
+
+TIPSEC_END_DECLS
+
+
+#endif /* TINYIPSEC_IPSEC_XP_H */
diff --git a/tinyIPSec/test/droid-makefile b/tinyIPSec/test/droid-makefile
new file mode 100644
index 0000000..d3456be
--- /dev/null
+++ b/tinyIPSec/test/droid-makefile
@@ -0,0 +1,28 @@
+APP := test
+
+CFLAGS := $(CFLAGS_COMMON) -I../src -I../../tinySAK/src
+LDFLAGS := $(LDFLAGS_COMMON) -Wl,-Bsymbolic,--whole-archive -l$(PROJECT) -ltinySAK  -Wl,--entry=main
+
+all: $(APP)
+
+OBJS += $(APP).o
+
+$(APP): $(OBJS)
+	$(CC) $(LDFLAGS) -o $@ $^ 
+
+%.o: %.c
+	$(CC) -c $(INCLUDE) $(CFLAGS) $< -o $@
+	
+install: $(APP)
+	$(ANDROID_SDK_ROOT)/tools/adb push $(APP) $(EXEC_DIR)/$(APP)
+	$(ANDROID_SDK_ROOT)/tools/adb shell chmod 777 $(EXEC_DIR)/$(APP)
+
+run:
+	$(ANDROID_SDK_ROOT)/tools/adb shell $(EXEC_DIR)/$(APP)
+
+#dbg:
+#	$(MAKE) $(MAKEFILE) DEBUG="-g -DDEBUG"
+#	$(MAKE) $(MAKEFILE) install
+	
+clean:
+	@rm -f $(OBJS) $(APP)
+\ No newline at end of file
diff --git a/tinyIPSec/test/stdafx.c b/tinyIPSec/test/stdafx.c
new file mode 100644
index 0000000..781cdcf
--- /dev/null
+++ b/tinyIPSec/test/stdafx.c
@@ -0,0 +1,26 @@
+/*
+* Copyright (C) 2009 Mamadou Diop.
+*
+* Contact: Mamadou Diop <diopmamadou(at)doubango.org>
+*	
+* This file is part of Open Source Doubango Framework.
+*
+* DOUBANGO is free software: you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation, either version 3 of the License, or
+* (at your option) any later version.
+*	
+* DOUBANGO is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+* GNU General Public License for more details.
+*	
+* You should have received a copy of the GNU General Public License
+* along with DOUBANGO.
+*
+*/
+
+#include "stdafx.h"
+
+// TODO: reference any additional headers you need in STDAFX.H
+// and not in this file
diff --git a/tinyIPSec/test/stdafx.h b/tinyIPSec/test/stdafx.h
new file mode 100644
index 0000000..b6dd734
--- /dev/null
+++ b/tinyIPSec/test/stdafx.h
@@ -0,0 +1,34 @@
+/*
+* Copyright (C) 2009 Mamadou Diop.
+*
+* Contact: Mamadou Diop <diopmamadou(at)doubango.org>
+*	
+* This file is part of Open Source Doubango Framework.
+*
+* DOUBANGO is free software: you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation, either version 3 of the License, or
+* (at your option) any later version.
+*	
+* DOUBANGO is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+* GNU General Public License for more details.
+*	
+* You should have received a copy of the GNU General Public License
+* along with DOUBANGO.
+*
+*/
+
+#ifndef TEST_TINYIPSEC_STDAFX_H
+#define TEST_TINYIPSEC_STDAFX_H
+
+#include <stdio.h>
+
+#if (defined(_WIN32) || defined(WIN32) || defined(_WIN32_WCE)) && !defined(__SYMBIAN32__)
+#include <tchar.h>
+#endif
+
+
+// TODO: reference additional headers your program requires here
+#endif /* TEST_TINYIPSEC_STDAFX_H */
diff --git a/tinyIPSec/test/test.c b/tinyIPSec/test/test.c
new file mode 100644
index 0000000..92dc600
--- /dev/null
+++ b/tinyIPSec/test/test.c
@@ -0,0 +1,159 @@
+/*
+* Copyright (C) 2009 Mamadou Diop.
+*
+* Contact: Mamadou Diop <diopmamadou(at)doubango.org>
+*	
+* This file is part of Open Source Doubango Framework.
+*
+* DOUBANGO is free software: you can redistribute it and/or modify
+* it under the terms of the GNU General Public License as published by
+* the Free Software Foundation, either version 3 of the License, or
+* (at your option) any later version.
+*	
+* DOUBANGO is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+* GNU General Public License for more details.
+*	
+* You should have received a copy of the GNU General Public License
+* along with DOUBANGO.
+*
+*/
+#include "stdafx.h"
+#include "tipsec.h"
+
+#include "tsk_debug.h"
+
+//#define ADDR_REMOTE		"192.168.0.9" //"2a01:e35:8b32:7050:6122:2706:2124:32ca"//"192.168.0.15"
+//#define ADDR_LOCAL		"192.168.0.12" //"2a01:e35:8b32:7050:6122:2706:2124:32cb"//"192.168.0.14"
+#define ADDR_REMOTE		"2001:5c0:1502:1800::225"
+#define ADDR_LOCAL		"2001:5c0:1502:1800:5cc8:4a4e:3ef7:3314"
+#define USE_IPV6		1
+
+#define IK		"1234567890123456"
+#define CK		"1234567890121234"
+
+#define PORT_UC 		1010
+#define PORT_US			2020
+
+#define PORT_PC			3030
+#define PORT_PS			4040
+#define SPI_PC			2222
+#define SPI_PS			3333
+
+#ifdef _WIN32_WCE
+int _tmain(int argc, _TCHAR* argv[])
+#else
+int main()
+#endif
+{
+	int ret;
+	tipsec_lifetime_t lifetime = 600000; /* Always set it to the maximum value. (Not possible to update the value after REGISTER 200OK. ) */
+
+	tipsec_context_t * ctx = tipsec_context_create(ipproto_icmp, USE_IPV6, mode_trans, ealg_aes, algo_hmac_md5_96, proto_both);
+
+	if((ret = tipsec_set_local(ctx, ADDR_LOCAL, ADDR_REMOTE, PORT_UC, PORT_US))){
+		goto bail;
+	}
+
+	/* Now send your first request with security-client header using
+	*/
+	TSK_DEBUG_INFO("Security-Client: ipsec-3gpp; alg=%s; ealg=%s; spi-c=%u; spi-s=%u; port-c=%u; port-s=%u\n\n",
+			TIPSEC_ALG_TO_STR(ctx->alg), TIPSEC_EALG_TO_STR(ctx->ealg), ctx->spi_uc, ctx->spi_us, ctx->port_uc, ctx->port_us
+		);
+	getchar();
+
+	/* get and process the 401/407
+	*/
+
+	if((ret = tipsec_set_remote(ctx, SPI_PC, SPI_PS, PORT_PC, PORT_PS, lifetime))){
+		goto bail;
+	}
+
+	tipsec_set_keys(ctx, IK, CK);
+
+	/* Start */
+	if((ret = tipsec_start(ctx))){
+		goto bail;
+	}
+
+	TSK_DEBUG_INFO("ALL IS OOOOOOOK");
+	getchar();
+
+	if((ret = tipsec_stop(ctx))){
+		goto bail;
+	}
+
+bail:
+	TSK_OBJECT_SAFE_FREE(ctx);
+
+	//ipsec_context_t* context = 0;
+	//uint32_t spi_local_s = 0, spi_local_c = 0, spi_remote_s = 0, spi_remote_c = 0;
+
+	////http://www.arib.or.jp/IMT-2000/V740Dec09/2_T63/ARIB-STD-T63/Rel7/33/A33203-790.pdf
+	///* create context */
+	//IPSEC_CONTEXT_CREATE(context);
+
+	//// FIXME: check context validity
+
+	///* set algorithms, proto and mode */
+	//context->auth = iaa_hmac_md5_96;
+	//context->encrypt = iea_null;
+	//context->proto = ipp_esp;
+	//context->mode = ipm_transport;
+	//
+	///* set ik and ck */
+	//ipsec_set_ck(context, CK);
+	//ipsec_set_ik(context, IK);
+
+	///* set local and remote IPs */
+	//context->localIP = ipsec_strdup(LOCAL_IP);
+	//context->remoteIP = ipsec_strdup(REMOTE_IP);
+	//context->ipv6 = 0;
+
+	///* set local ports */
+	//context->SAs[ipd_incoming_req].port = PORT_LOCAL_S; /* US <- PC */
+	//context->SAs[ipd_incoming_rep].port = PORT_LOCAL_C; /* UC <- PS */
+
+	///* get local spis */
+	//spi_local_s = ipsec_get_spi(context, ipd_incoming_req);
+	//spi_local_c = ipsec_get_spi(context, ipd_incoming_rep);
+
+	///******* 
+	//	now send your first request with security-client header using
+	//	...
+	//*/
+	//printf("Security-Client: ipsec-3gpp; alg=%s; ealg=%s; spi-c=%u; spi-s=%u; port-c=%u; port-s=%u\n\n",
+	//		IPSEC_AUTH_ALG_STR(context->auth), IPSEC_ENC_ALG_STR(context->encrypt), spi_local_c, spi_local_s, PORT_LOCAL_C, PORT_LOCAL_S
+	//	);
+	//getchar();
+
+	///* 
+	//	get and process the 401/407 
+	//	...
+	//*/
+	//printf("Security-Server: ipsec-3gpp; q=0.1; alg=%s; ealg=%s; spi-c=%u; spi-s=%u; port-c=%u; port-s=%u\n\n",
+	//	IPSEC_AUTH_ALG_STR(context->auth), IPSEC_ENC_ALG_STR(context->encrypt), SPI_REMOTE_C, SPI_REMOTE_S, PORT_REMOTE_C, PORT_REMOTE_S
+	//	);
+
+	///* set values for remote entity */
+	//context->SAs[ipd_outgoing_rep].port = PORT_REMOTE_C; /* US -> PC */
+	//context->SAs[ipd_outgoing_rep].spi = SPI_REMOTE_C; /* US -> PC */
+	//context->SAs[ipd_outgoing_req].port = PORT_REMOTE_S; /* UC -> PS */
+	//context->SAs[ipd_outgoing_req].spi = SPI_REMOTE_S; /* UC -> PS */
+
+
+	///* bound SAs and begin sending/receiving sip messages */
+	//ipsec_sa_bound(context, ipd_incoming_rep);
+	//ipsec_sa_bound(context, ipd_incoming_req);
+	//ipsec_sa_bound(context, ipd_outgoing_rep);
+	//ipsec_sa_bound(context, ipd_outgoing_req);
+
+	//getchar();
+
+	///* free context */
+	//IPSEC_CONTEXT_SAFE_FREE(context);
+
+	return 0;
+}
+
diff --git a/tinyIPSec/test/test.vcproj b/tinyIPSec/test/test.vcproj
new file mode 100644
index 0000000..ddf329b
--- /dev/null
+++ b/tinyIPSec/test/test.vcproj
@@ -0,0 +1,201 @@
+<?xml version="1.0" encoding="Windows-1252"?>
+<VisualStudioProject
+	ProjectType="Visual C++"
+	Version="9.00"
+	Name="test"
+	ProjectGUID="{E40FEB1F-BE85-488D-BCBE-89668F6EBBF7}"
+	RootNamespace="test"
+	Keyword="Win32Proj"
+	TargetFrameworkVersion="131072"
+	>
+	<Platforms>
+		<Platform
+			Name="Win32"
+		/>
+	</Platforms>
+	<ToolFiles>
+	</ToolFiles>
+	<Configurations>
+		<Configuration
+			Name="Debug|Win32"
+			OutputDirectory="$(SolutionDir)$(ConfigurationName)"
+			IntermediateDirectory="$(ConfigurationName)"
+			ConfigurationType="1"
+			CharacterSet="1"
+			>
+			<Tool
+				Name="VCPreBuildEventTool"
+			/>
+			<Tool
+				Name="VCCustomBuildTool"
+			/>
+			<Tool
+				Name="VCXMLDataGeneratorTool"
+			/>
+			<Tool
+				Name="VCWebServiceProxyGeneratorTool"
+			/>
+			<Tool
+				Name="VCMIDLTool"
+			/>
+			<Tool
+				Name="VCCLCompilerTool"
+				Optimization="0"
+				AdditionalIncludeDirectories="&quot;$(DOUBANGO_HOME)\thirdparties\win32\include&quot;;&quot;$(SolutionDir)\src&quot;;&quot;$(DOUBANGO_HOME)\tinySAK\src&quot;"
+				PreprocessorDefinitions="DEBUG_LEVEL=DEBUG_LEVEL_INFO;WIN32;_DEBUG;_CONSOLE"
+				MinimalRebuild="true"
+				BasicRuntimeChecks="3"
+				RuntimeLibrary="3"
+				UsePrecompiledHeader="0"
+				WarningLevel="3"
+				Detect64BitPortabilityProblems="true"
+				DebugInformationFormat="4"
+				CompileAs="1"
+			/>
+			<Tool
+				Name="VCManagedResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCPreLinkEventTool"
+			/>
+			<Tool
+				Name="VCLinkerTool"
+				AdditionalDependencies="&quot;$(outDir)\tinyIPSec.lib&quot; &quot;$(outDir)\tinySAK.lib&quot;"
+				LinkIncremental="2"
+				GenerateDebugInformation="true"
+				SubSystem="1"
+				RandomizedBaseAddress="1"
+				DataExecutionPrevention="0"
+				TargetMachine="1"
+			/>
+			<Tool
+				Name="VCALinkTool"
+			/>
+			<Tool
+				Name="VCManifestTool"
+			/>
+			<Tool
+				Name="VCXDCMakeTool"
+			/>
+			<Tool
+				Name="VCBscMakeTool"
+			/>
+			<Tool
+				Name="VCFxCopTool"
+			/>
+			<Tool
+				Name="VCAppVerifierTool"
+			/>
+			<Tool
+				Name="VCPostBuildEventTool"
+			/>
+		</Configuration>
+		<Configuration
+			Name="Release|Win32"
+			OutputDirectory="$(SolutionDir)$(ConfigurationName)"
+			IntermediateDirectory="$(ConfigurationName)"
+			ConfigurationType="1"
+			CharacterSet="1"
+			WholeProgramOptimization="1"
+			>
+			<Tool
+				Name="VCPreBuildEventTool"
+			/>
+			<Tool
+				Name="VCCustomBuildTool"
+			/>
+			<Tool
+				Name="VCXMLDataGeneratorTool"
+			/>
+			<Tool
+				Name="VCWebServiceProxyGeneratorTool"
+			/>
+			<Tool
+				Name="VCMIDLTool"
+			/>
+			<Tool
+				Name="VCCLCompilerTool"
+				PreprocessorDefinitions="WIN32;NDEBUG;_CONSOLE"
+				RuntimeLibrary="2"
+				UsePrecompiledHeader="0"
+				WarningLevel="3"
+				Detect64BitPortabilityProblems="true"
+				DebugInformationFormat="3"
+			/>
+			<Tool
+				Name="VCManagedResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCPreLinkEventTool"
+			/>
+			<Tool
+				Name="VCLinkerTool"
+				LinkIncremental="1"
+				GenerateDebugInformation="true"
+				SubSystem="1"
+				OptimizeReferences="2"
+				EnableCOMDATFolding="2"
+				RandomizedBaseAddress="1"
+				DataExecutionPrevention="0"
+				TargetMachine="1"
+			/>
+			<Tool
+				Name="VCALinkTool"
+			/>
+			<Tool
+				Name="VCManifestTool"
+			/>
+			<Tool
+				Name="VCXDCMakeTool"
+			/>
+			<Tool
+				Name="VCBscMakeTool"
+			/>
+			<Tool
+				Name="VCFxCopTool"
+			/>
+			<Tool
+				Name="VCAppVerifierTool"
+			/>
+			<Tool
+				Name="VCPostBuildEventTool"
+			/>
+		</Configuration>
+	</Configurations>
+	<References>
+	</References>
+	<Files>
+		<Filter
+			Name="Source Files"
+			Filter="cpp;c;cc;cxx;def;odl;idl;hpj;bat;asm;asmx"
+			UniqueIdentifier="{4FC737F1-C7A5-4376-A066-2A32D752A2FF}"
+			>
+			<File
+				RelativePath=".\stdafx.c"
+				>
+			</File>
+			<File
+				RelativePath=".\test.c"
+				>
+			</File>
+		</Filter>
+		<Filter
+			Name="Header Files"
+			Filter="h;hpp;hxx;hm;inl;inc;xsd"
+			UniqueIdentifier="{93995380-89BD-4b04-88EB-625FBE52EBFB}"
+			>
+			<File
+				RelativePath=".\stdafx.h"
+				>
+			</File>
+		</Filter>
+	</Files>
+	<Globals>
+	</Globals>
+</VisualStudioProject>
diff --git a/tinyIPSec/tinyIPSec.sln b/tinyIPSec/tinyIPSec.sln
new file mode 100644
index 0000000..8dcac6a
--- /dev/null
+++ b/tinyIPSec/tinyIPSec.sln
@@ -0,0 +1,44 @@
+
+Microsoft Visual Studio Solution File, Format Version 10.00
+# Visual Studio 2008
+Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "tinySAK", "..\tinySAK\tinySAK.vcproj", "{6BC9B796-10C6-4CF7-A6E4-E2DACCDA84DA}"
+EndProject
+Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "tinyIPSec", "tinyIPSec.vcproj", "{002FF064-588F-402E-A096-C8D033F49F40}"
+EndProject
+Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "test", "test\test.vcproj", "{E40FEB1F-BE85-488D-BCBE-89668F6EBBF7}"
+EndProject
+Global
+	GlobalSection(SolutionConfigurationPlatforms) = preSolution
+		Debug|Win32 = Debug|Win32
+		Debug|Windows Mobile 5.0 Pocket PC SDK (ARMV4I) = Debug|Windows Mobile 5.0 Pocket PC SDK (ARMV4I)
+		Release|Win32 = Release|Win32
+		Release|Windows Mobile 5.0 Pocket PC SDK (ARMV4I) = Release|Windows Mobile 5.0 Pocket PC SDK (ARMV4I)
+	EndGlobalSection
+	GlobalSection(ProjectConfigurationPlatforms) = postSolution
+		{6BC9B796-10C6-4CF7-A6E4-E2DACCDA84DA}.Debug|Win32.ActiveCfg = Debug|Win32
+		{6BC9B796-10C6-4CF7-A6E4-E2DACCDA84DA}.Debug|Win32.Build.0 = Debug|Win32
+		{6BC9B796-10C6-4CF7-A6E4-E2DACCDA84DA}.Debug|Windows Mobile 5.0 Pocket PC SDK (ARMV4I).ActiveCfg = Debug|Windows Mobile 5.0 Pocket PC SDK (ARMV4I)
+		{6BC9B796-10C6-4CF7-A6E4-E2DACCDA84DA}.Debug|Windows Mobile 5.0 Pocket PC SDK (ARMV4I).Build.0 = Debug|Windows Mobile 5.0 Pocket PC SDK (ARMV4I)
+		{6BC9B796-10C6-4CF7-A6E4-E2DACCDA84DA}.Debug|Windows Mobile 5.0 Pocket PC SDK (ARMV4I).Deploy.0 = Debug|Windows Mobile 5.0 Pocket PC SDK (ARMV4I)
+		{6BC9B796-10C6-4CF7-A6E4-E2DACCDA84DA}.Release|Win32.ActiveCfg = Release|Win32
+		{6BC9B796-10C6-4CF7-A6E4-E2DACCDA84DA}.Release|Win32.Build.0 = Release|Win32
+		{6BC9B796-10C6-4CF7-A6E4-E2DACCDA84DA}.Release|Windows Mobile 5.0 Pocket PC SDK (ARMV4I).ActiveCfg = Release|Windows Mobile 5.0 Pocket PC SDK (ARMV4I)
+		{6BC9B796-10C6-4CF7-A6E4-E2DACCDA84DA}.Release|Windows Mobile 5.0 Pocket PC SDK (ARMV4I).Build.0 = Release|Windows Mobile 5.0 Pocket PC SDK (ARMV4I)
+		{6BC9B796-10C6-4CF7-A6E4-E2DACCDA84DA}.Release|Windows Mobile 5.0 Pocket PC SDK (ARMV4I).Deploy.0 = Release|Windows Mobile 5.0 Pocket PC SDK (ARMV4I)
+		{002FF064-588F-402E-A096-C8D033F49F40}.Debug|Win32.ActiveCfg = Debug|Win32
+		{002FF064-588F-402E-A096-C8D033F49F40}.Debug|Win32.Build.0 = Debug|Win32
+		{002FF064-588F-402E-A096-C8D033F49F40}.Debug|Windows Mobile 5.0 Pocket PC SDK (ARMV4I).ActiveCfg = Debug|Win32
+		{002FF064-588F-402E-A096-C8D033F49F40}.Release|Win32.ActiveCfg = Release|Win32
+		{002FF064-588F-402E-A096-C8D033F49F40}.Release|Win32.Build.0 = Release|Win32
+		{002FF064-588F-402E-A096-C8D033F49F40}.Release|Windows Mobile 5.0 Pocket PC SDK (ARMV4I).ActiveCfg = Release|Win32
+		{E40FEB1F-BE85-488D-BCBE-89668F6EBBF7}.Debug|Win32.ActiveCfg = Debug|Win32
+		{E40FEB1F-BE85-488D-BCBE-89668F6EBBF7}.Debug|Win32.Build.0 = Debug|Win32
+		{E40FEB1F-BE85-488D-BCBE-89668F6EBBF7}.Debug|Windows Mobile 5.0 Pocket PC SDK (ARMV4I).ActiveCfg = Debug|Win32
+		{E40FEB1F-BE85-488D-BCBE-89668F6EBBF7}.Release|Win32.ActiveCfg = Release|Win32
+		{E40FEB1F-BE85-488D-BCBE-89668F6EBBF7}.Release|Win32.Build.0 = Release|Win32
+		{E40FEB1F-BE85-488D-BCBE-89668F6EBBF7}.Release|Windows Mobile 5.0 Pocket PC SDK (ARMV4I).ActiveCfg = Release|Win32
+	EndGlobalSection
+	GlobalSection(SolutionProperties) = preSolution
+		HideSolutionNode = FALSE
+	EndGlobalSection
+EndGlobal
diff --git a/tinyIPSec/tinyIPSec.tag b/tinyIPSec/tinyIPSec.tag
new file mode 100644
index 0000000..c2b3be4
--- /dev/null
+++ b/tinyIPSec/tinyIPSec.tag
@@ -0,0 +1,1002 @@
+<?xml version='1.0' encoding='ISO-8859-1' standalone='yes' ?>
+<tagfile>
+  <compound kind="page">
+    <name>index</name>
+    <title>TinyIPSec API Overview</title>
+    <filename>index</filename>
+  </compound>
+  <compound kind="file">
+    <name>tinyipsec_config.h</name>
+    <path>C:/Projects/Doubango/tinyIPSec/src/</path>
+    <filename>tinyipsec__config_8h</filename>
+    <member kind="define">
+      <type>#define</type>
+      <name>TINYIPSEC_API</name>
+      <anchorfile>tinyipsec__config_8h.html</anchorfile>
+      <anchor>abef456bec9fbd947edd788ecf9838e6c</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TINYIPSEC_GEXTERN</name>
+      <anchorfile>tinyipsec__config_8h.html</anchorfile>
+      <anchor>ab70c3788fe63d08227fc5078ed53d7c6</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_BEGIN_DECLS</name>
+      <anchorfile>tinyipsec__config_8h.html</anchorfile>
+      <anchor>aaf1df1f70c5ceeac797c273b24e9e4fd</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_END_DECLS</name>
+      <anchorfile>tinyipsec__config_8h.html</anchorfile>
+      <anchor>a64796bed0fbed09967e22706cc312955</anchor>
+      <arglist></arglist>
+    </member>
+  </compound>
+  <compound kind="file">
+    <name>tipsec.c</name>
+    <path>C:/Projects/Doubango/tinyIPSec/src/</path>
+    <filename>tipsec_8c</filename>
+    <includes id="tipsec_8h" name="tipsec.h" local="yes" imported="no">tipsec.h</includes>
+  </compound>
+  <compound kind="file">
+    <name>tipsec.h</name>
+    <path>C:/Projects/Doubango/tinyIPSec/src/</path>
+    <filename>tipsec_8h</filename>
+    <includes id="tinyipsec__config_8h" name="tinyipsec_config.h" local="yes" imported="no">tinyIPSEC_config.h</includes>
+    <includes id="tipsec__common_8h" name="tipsec_common.h" local="yes" imported="no">tipsec_common.h</includes>
+  </compound>
+  <compound kind="file">
+    <name>tipsec_common.c</name>
+    <path>C:/Projects/Doubango/tinyIPSec/src/</path>
+    <filename>tipsec__common_8c</filename>
+    <includes id="tipsec__common_8h" name="tipsec_common.h" local="yes" imported="no">tipsec_common.h</includes>
+    <member kind="function">
+      <type>tipsec_context_t *</type>
+      <name>tipsec_context_create</name>
+      <anchorfile>tipsec__common_8c.html</anchorfile>
+      <anchor>ad4e25e81e8ae133e43fdba8eedb30029</anchor>
+      <arglist>(tipsec_ipproto_t ipproto, tsk_bool_t use_ipv6, tipsec_mode_t mode, tipsec_ealgorithm_t ealg, tipsec_algorithm_t alg, tipsec_protocol_t protocol)</arglist>
+    </member>
+    <member kind="function">
+      <type>int</type>
+      <name>tipsec_start</name>
+      <anchorfile>tipsec__common_8c.html</anchorfile>
+      <anchor>affd11a7ac0bde42c42e204074df88498</anchor>
+      <arglist>(tipsec_context_t *ctx)</arglist>
+    </member>
+    <member kind="function">
+      <type>int</type>
+      <name>tipsec_set_local</name>
+      <anchorfile>tipsec__common_8c.html</anchorfile>
+      <anchor>a928bf5d10f375dc9936e34e80229ce16</anchor>
+      <arglist>(tipsec_context_t *ctx, const char *addr_local, const char *addr_remote, tipsec_port_t port_uc, tipsec_port_t port_us)</arglist>
+    </member>
+    <member kind="function">
+      <type>int</type>
+      <name>tipsec_set_keys</name>
+      <anchorfile>tipsec__common_8c.html</anchorfile>
+      <anchor>a7776b00550479080bf1120fff8ed5fd1</anchor>
+      <arglist>(tipsec_context_t *ctx, const tipsec_key_t *ik, const tipsec_key_t *ck)</arglist>
+    </member>
+    <member kind="function">
+      <type>int</type>
+      <name>tipsec_set_remote</name>
+      <anchorfile>tipsec__common_8c.html</anchorfile>
+      <anchor>a20d8708dfb2dd9bdf0423e5fb945ba34</anchor>
+      <arglist>(tipsec_context_t *ctx, tipsec_spi_t spi_pc, tipsec_spi_t spi_ps, tipsec_port_t port_pc, tipsec_port_t port_ps, tipsec_lifetime_t lifetime)</arglist>
+    </member>
+    <member kind="function">
+      <type>int</type>
+      <name>tipsec_stop</name>
+      <anchorfile>tipsec__common_8c.html</anchorfile>
+      <anchor>acef726977f2a96380dbeee403f8ece02</anchor>
+      <arglist>(tipsec_context_t *ctx)</arglist>
+    </member>
+    <member kind="variable">
+      <type>const void *</type>
+      <name>tipsec_context_def_t</name>
+      <anchorfile>tipsec__common_8c.html</anchorfile>
+      <anchor>ac9ef6d05704cf4b106c66124b3adcb80</anchor>
+      <arglist></arglist>
+    </member>
+  </compound>
+  <compound kind="file">
+    <name>tipsec_common.h</name>
+    <path>C:/Projects/Doubango/tinyIPSec/src/</path>
+    <filename>tipsec__common_8h</filename>
+    <includes id="tinyipsec__config_8h" name="tinyipsec_config.h" local="yes" imported="no">tinyIPSEC_config.h</includes>
+    <class kind="struct">tipsec_context_s</class>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_CONTEXT</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga031b539830dd0bba323f772aa8773158</anchor>
+      <arglist>(ctx)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_IPPROTO_FROM_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gaa8aac71ce8c6de518f67923dff3c91ce</anchor>
+      <arglist>(ipproto)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_IPPROTO_TO_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga0559d76ead2418b1eebcb44eefaceddc</anchor>
+      <arglist>(ipproto)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_MODE_FROM_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga088685f515f05aa14d5e9d67e958d700</anchor>
+      <arglist>(mode)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_MODE_TO_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga3e94f6c1a82d4598abd088d1f71f204f</anchor>
+      <arglist>(mode)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_EALG_FROM_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gaac76bbc14fcbb47116916220d8998068</anchor>
+      <arglist>(ealg)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_EALG_TO_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga23e38a587b10d23aebb47fd650309b8a</anchor>
+      <arglist>(ealg)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_ALG_FROM_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga0a49d87e54aabd4a168a281acf71a5ab</anchor>
+      <arglist>(alg)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_ALG_TO_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga3d431568e9beaddf1885590b88422ae3</anchor>
+      <arglist>(alg)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_PROTOCOL_FROM_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga1f15db462110b18e6f953a55590a0be3</anchor>
+      <arglist>(protocol)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_PROTOCOL_TO_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga27dc104c07bf731ec09ae9d841deb3a8</anchor>
+      <arglist>(protocol)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_KEY_LEN</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga851fbd8d4f91dcda203bfe9856aaf23b</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_IK_LEN</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga0b023400d28a9cdd733bde20894dc83a</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_CK_LEN</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga6ebefb2b9ed5e9c7962cecd5a9403f2f</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TINYIPSEC_DECLARE_CONTEXT</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gaf11d05f9c9fa26e24f7fcb02822992e4</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>uint64_t</type>
+      <name>tipsec_lifetime_t</name>
+      <anchorfile>tipsec__common_8h.html</anchorfile>
+      <anchor>a5e3f91a70997490f4ac4d98d96ee1adb</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>uint32_t</type>
+      <name>tipsec_spi_t</name>
+      <anchorfile>tipsec__common_8h.html</anchorfile>
+      <anchor>a12b094dc84f16b83bcdb31052d6b4a66</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>uint16_t</type>
+      <name>tipsec_port_t</name>
+      <anchorfile>tipsec__common_8h.html</anchorfile>
+      <anchor>a492784849740492d00c74b4a20a7a0b6</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>void</type>
+      <name>tipsec_key_t</name>
+      <anchorfile>tipsec__common_8h.html</anchorfile>
+      <anchor>aaba5a3f465f81050641b9f260f30ee0b</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>enum tipsec_mode_e</type>
+      <name>tipsec_mode_t</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga877a3113645122f113e9399962a6ee04</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>enum tipsec_protocol_e</type>
+      <name>tipsec_protocol_t</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga06eccdaf53b7ed5c4836a57cd098a17f</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>enum tipsec_ipproto_e</type>
+      <name>tipsec_ipproto_t</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga9750a5fce24a25fed8683cd5b74c4776</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>enum tipsec_algorithm_e</type>
+      <name>tipsec_algorithm_t</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga95027d339821caf4b3868c67f3dfc117</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>enum tipsec_ealgorithm_e</type>
+      <name>tipsec_ealgorithm_t</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga8b2c0135326a3e9f04ec4983c4747b6e</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>enum tipsec_state_e</type>
+      <name>tipsec_state_t</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga7145039e5ecc8b0f3d0329d991fad686</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>struct tipsec_context_s</type>
+      <name>tipsec_context_t</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga0b8ffcf277be1447a551d18fbec2d96a</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumeration">
+      <name>tipsec_mode_e</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga2e365e188f68a1791007ad68dfe7de2e</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>mode_trans</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gga2e365e188f68a1791007ad68dfe7de2ea49ff719c96c4668d4303d2884413d87a</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>mode_tun</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gga2e365e188f68a1791007ad68dfe7de2ea68a35e9f2906a3e9018b925863d8de44</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumeration">
+      <name>tipsec_protocol_e</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gaa2d750c8e3680f9ce2d2ab37972b9e33</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>proto_ah</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaa2d750c8e3680f9ce2d2ab37972b9e33aa74c85f7f22556e53fe3805e3cabf69c</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>proto_esp</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaa2d750c8e3680f9ce2d2ab37972b9e33a8d3f645c9bcb4aad8a6aef3d02a255c7</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>proto_both</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaa2d750c8e3680f9ce2d2ab37972b9e33a54ed28109aff482fd675b96b83c1ca07</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumeration">
+      <name>tipsec_ipproto_e</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gaa71e8cb8bf5fc3673e7a1585f9ba2521</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>ipproto_udp</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaa71e8cb8bf5fc3673e7a1585f9ba2521a105b8570058e9003717bd56643af75b9</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>ipproto_tcp</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaa71e8cb8bf5fc3673e7a1585f9ba2521a51d75c8309d93b4fd6c58b675510a1b8</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>ipproto_icmp</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaa71e8cb8bf5fc3673e7a1585f9ba2521a0dd871bdd179315f39834d265df6e5ae</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumeration">
+      <name>tipsec_algorithm_e</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga529fade1455b4f029e61a882467b5021</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>algo_hmac_md5_96</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gga529fade1455b4f029e61a882467b5021aa3bf68329aa5d57dcc9f7611968e205b</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>algo_hmac_sha_1_96</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gga529fade1455b4f029e61a882467b5021a860a6ba099cc0df925d1cd1725a0c6cd</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumeration">
+      <name>tipsec_ealgorithm_e</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga71634bfd364a00cb020b42790a4a4ae3</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>ealg_des_ede3_cbc</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gga71634bfd364a00cb020b42790a4a4ae3a26c3a0cf983ec250339ee9ac2fb2239e</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>ealg_aes</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gga71634bfd364a00cb020b42790a4a4ae3ae5cdadedebba9cc34cae3aec3aa75778</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>ealg_null</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gga71634bfd364a00cb020b42790a4a4ae3abf16edc14198aa145add99b22a9fb6a5</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumeration">
+      <name>tipsec_state_e</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gaf85b43ddf445b576d6ff125356bd652b</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>state_initial</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaf85b43ddf445b576d6ff125356bd652ba8f952da0293fceca1122e9fe917e5948</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>state_inbound</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaf85b43ddf445b576d6ff125356bd652ba43d0c18ca65168ed7d227c55b9391d1e</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>state_full</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaf85b43ddf445b576d6ff125356bd652bac1e4f14db80773ee398bca9292569d50</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>state_active</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaf85b43ddf445b576d6ff125356bd652ba7c7581232b6636c63abe1eb55d0a3d5c</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="function">
+      <type>TINYIPSEC_API tipsec_context_t *</type>
+      <name>tipsec_context_create</name>
+      <anchorfile>tipsec__common_8h.html</anchorfile>
+      <anchor>a251b9f886032a9af83e1adfaa7dc87de</anchor>
+      <arglist>(tipsec_ipproto_t ipproto, tsk_bool_t use_ipv6, tipsec_mode_t mode, tipsec_ealgorithm_t ealg, tipsec_algorithm_t alg, tipsec_protocol_t protocol)</arglist>
+    </member>
+    <member kind="function">
+      <type>TINYIPSEC_API int</type>
+      <name>tipsec_start</name>
+      <anchorfile>tipsec__common_8h.html</anchorfile>
+      <anchor>ab34dd23f5b4ba87cf7c1e2846b35b269</anchor>
+      <arglist>(tipsec_context_t *ctx)</arglist>
+    </member>
+    <member kind="function">
+      <type>TINYIPSEC_API int</type>
+      <name>tipsec_set_local</name>
+      <anchorfile>tipsec__common_8h.html</anchorfile>
+      <anchor>acf143069e15b831ce1de8c80e4739fe0</anchor>
+      <arglist>(tipsec_context_t *ctx, const char *addr_local, const char *addr_remote, tipsec_port_t port_uc, tipsec_port_t port_us)</arglist>
+    </member>
+    <member kind="function">
+      <type>TINYIPSEC_API int</type>
+      <name>tipsec_set_keys</name>
+      <anchorfile>tipsec__common_8h.html</anchorfile>
+      <anchor>a137acab0153ebffa1b2726b7b92e6705</anchor>
+      <arglist>(tipsec_context_t *ctx, const tipsec_key_t *ik, const tipsec_key_t *ck)</arglist>
+    </member>
+    <member kind="function">
+      <type>TINYIPSEC_API int</type>
+      <name>tipsec_set_remote</name>
+      <anchorfile>tipsec__common_8h.html</anchorfile>
+      <anchor>a7e631003938572fd2c41d139a21cec2d</anchor>
+      <arglist>(tipsec_context_t *ctx, tipsec_spi_t spi_pc, tipsec_spi_t spi_ps, tipsec_port_t port_pc, tipsec_port_t port_ps, tipsec_lifetime_t lifetime)</arglist>
+    </member>
+    <member kind="function">
+      <type>TINYIPSEC_API int</type>
+      <name>tipsec_stop</name>
+      <anchorfile>tipsec__common_8h.html</anchorfile>
+      <anchor>a060c0509d26fe1e224917e068959fc61</anchor>
+      <arglist>(tipsec_context_t *ctx)</arglist>
+    </member>
+    <member kind="variable">
+      <type>TINYIPSEC_GEXTERN const void *</type>
+      <name>tipsec_context_def_t</name>
+      <anchorfile>tipsec__common_8h.html</anchorfile>
+      <anchor>a0f542fef286aafa5c9498661023f2b62</anchor>
+      <arglist></arglist>
+    </member>
+  </compound>
+  <compound kind="file">
+    <name>tipsec_racoon.c</name>
+    <path>C:/Projects/Doubango/tinyIPSec/src/</path>
+    <filename>tipsec__racoon_8c</filename>
+    <includes id="tipsec__racoon_8h" name="tipsec_racoon.h" local="yes" imported="no">tipsec_racoon.h</includes>
+  </compound>
+  <compound kind="file">
+    <name>tipsec_racoon.h</name>
+    <path>C:/Projects/Doubango/tinyIPSec/src/</path>
+    <filename>tipsec__racoon_8h</filename>
+    <includes id="tinyipsec__config_8h" name="tinyipsec_config.h" local="yes" imported="no">tinyIPSEC_config.h</includes>
+    <includes id="tipsec__common_8h" name="tipsec_common.h" local="yes" imported="no">tipsec_common.h</includes>
+  </compound>
+  <compound kind="file">
+    <name>tipsec_vista.c</name>
+    <path>C:/Projects/Doubango/tinyIPSec/src/</path>
+    <filename>tipsec__vista_8c</filename>
+    <includes id="tipsec__vista_8h" name="tipsec_vista.h" local="yes" imported="no">tipsec_vista.h</includes>
+  </compound>
+  <compound kind="file">
+    <name>tipsec_vista.h</name>
+    <path>C:/Projects/Doubango/tinyIPSec/src/</path>
+    <filename>tipsec__vista_8h</filename>
+    <includes id="tinyipsec__config_8h" name="tinyipsec_config.h" local="yes" imported="no">tinyIPSEC_config.h</includes>
+    <includes id="tipsec__common_8h" name="tipsec_common.h" local="yes" imported="no">tipsec_common.h</includes>
+  </compound>
+  <compound kind="file">
+    <name>tipsec_xp.c</name>
+    <path>C:/Projects/Doubango/tinyIPSec/src/</path>
+    <filename>tipsec__xp_8c</filename>
+    <includes id="tipsec__xp_8h" name="tipsec_xp.h" local="yes" imported="no">tipsec_xp.h</includes>
+  </compound>
+  <compound kind="file">
+    <name>tipsec_xp.h</name>
+    <path>C:/Projects/Doubango/tinyIPSec/src/</path>
+    <filename>tipsec__xp_8h</filename>
+    <includes id="tinyipsec__config_8h" name="tinyipsec_config.h" local="yes" imported="no">tinyIPSEC_config.h</includes>
+    <includes id="tipsec__common_8h" name="tipsec_common.h" local="yes" imported="no">tipsec_common.h</includes>
+  </compound>
+  <compound kind="group">
+    <name>tipsec_common_group</name>
+    <title>IPSec common.</title>
+    <filename>group__tipsec__common__group.html</filename>
+    <class kind="struct">tipsec_context_s</class>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_CONTEXT</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga031b539830dd0bba323f772aa8773158</anchor>
+      <arglist>(ctx)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_IPPROTO_FROM_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gaa8aac71ce8c6de518f67923dff3c91ce</anchor>
+      <arglist>(ipproto)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_IPPROTO_TO_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga0559d76ead2418b1eebcb44eefaceddc</anchor>
+      <arglist>(ipproto)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_MODE_FROM_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga088685f515f05aa14d5e9d67e958d700</anchor>
+      <arglist>(mode)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_MODE_TO_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga3e94f6c1a82d4598abd088d1f71f204f</anchor>
+      <arglist>(mode)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_EALG_FROM_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gaac76bbc14fcbb47116916220d8998068</anchor>
+      <arglist>(ealg)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_EALG_TO_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga23e38a587b10d23aebb47fd650309b8a</anchor>
+      <arglist>(ealg)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_ALG_FROM_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga0a49d87e54aabd4a168a281acf71a5ab</anchor>
+      <arglist>(alg)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_ALG_TO_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga3d431568e9beaddf1885590b88422ae3</anchor>
+      <arglist>(alg)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_PROTOCOL_FROM_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga1f15db462110b18e6f953a55590a0be3</anchor>
+      <arglist>(protocol)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_PROTOCOL_TO_STR</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga27dc104c07bf731ec09ae9d841deb3a8</anchor>
+      <arglist>(protocol)</arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_KEY_LEN</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga851fbd8d4f91dcda203bfe9856aaf23b</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_IK_LEN</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga0b023400d28a9cdd733bde20894dc83a</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TIPSEC_CK_LEN</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga6ebefb2b9ed5e9c7962cecd5a9403f2f</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="define">
+      <type>#define</type>
+      <name>TINYIPSEC_DECLARE_CONTEXT</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gaf11d05f9c9fa26e24f7fcb02822992e4</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>enum tipsec_mode_e</type>
+      <name>tipsec_mode_t</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga877a3113645122f113e9399962a6ee04</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>enum tipsec_protocol_e</type>
+      <name>tipsec_protocol_t</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga06eccdaf53b7ed5c4836a57cd098a17f</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>enum tipsec_ipproto_e</type>
+      <name>tipsec_ipproto_t</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga9750a5fce24a25fed8683cd5b74c4776</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>enum tipsec_algorithm_e</type>
+      <name>tipsec_algorithm_t</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga95027d339821caf4b3868c67f3dfc117</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>enum tipsec_ealgorithm_e</type>
+      <name>tipsec_ealgorithm_t</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga8b2c0135326a3e9f04ec4983c4747b6e</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>enum tipsec_state_e</type>
+      <name>tipsec_state_t</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga7145039e5ecc8b0f3d0329d991fad686</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="typedef">
+      <type>struct tipsec_context_s</type>
+      <name>tipsec_context_t</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga0b8ffcf277be1447a551d18fbec2d96a</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumeration">
+      <name>tipsec_mode_e</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga2e365e188f68a1791007ad68dfe7de2e</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>mode_trans</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gga2e365e188f68a1791007ad68dfe7de2ea49ff719c96c4668d4303d2884413d87a</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>mode_tun</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gga2e365e188f68a1791007ad68dfe7de2ea68a35e9f2906a3e9018b925863d8de44</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumeration">
+      <name>tipsec_protocol_e</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gaa2d750c8e3680f9ce2d2ab37972b9e33</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>proto_ah</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaa2d750c8e3680f9ce2d2ab37972b9e33aa74c85f7f22556e53fe3805e3cabf69c</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>proto_esp</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaa2d750c8e3680f9ce2d2ab37972b9e33a8d3f645c9bcb4aad8a6aef3d02a255c7</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>proto_both</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaa2d750c8e3680f9ce2d2ab37972b9e33a54ed28109aff482fd675b96b83c1ca07</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumeration">
+      <name>tipsec_ipproto_e</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gaa71e8cb8bf5fc3673e7a1585f9ba2521</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>ipproto_udp</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaa71e8cb8bf5fc3673e7a1585f9ba2521a105b8570058e9003717bd56643af75b9</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>ipproto_tcp</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaa71e8cb8bf5fc3673e7a1585f9ba2521a51d75c8309d93b4fd6c58b675510a1b8</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>ipproto_icmp</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaa71e8cb8bf5fc3673e7a1585f9ba2521a0dd871bdd179315f39834d265df6e5ae</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumeration">
+      <name>tipsec_algorithm_e</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga529fade1455b4f029e61a882467b5021</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>algo_hmac_md5_96</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gga529fade1455b4f029e61a882467b5021aa3bf68329aa5d57dcc9f7611968e205b</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>algo_hmac_sha_1_96</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gga529fade1455b4f029e61a882467b5021a860a6ba099cc0df925d1cd1725a0c6cd</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumeration">
+      <name>tipsec_ealgorithm_e</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ga71634bfd364a00cb020b42790a4a4ae3</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>ealg_des_ede3_cbc</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gga71634bfd364a00cb020b42790a4a4ae3a26c3a0cf983ec250339ee9ac2fb2239e</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>ealg_aes</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gga71634bfd364a00cb020b42790a4a4ae3ae5cdadedebba9cc34cae3aec3aa75778</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>ealg_null</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gga71634bfd364a00cb020b42790a4a4ae3abf16edc14198aa145add99b22a9fb6a5</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumeration">
+      <name>tipsec_state_e</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>gaf85b43ddf445b576d6ff125356bd652b</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>state_initial</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaf85b43ddf445b576d6ff125356bd652ba8f952da0293fceca1122e9fe917e5948</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>state_inbound</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaf85b43ddf445b576d6ff125356bd652ba43d0c18ca65168ed7d227c55b9391d1e</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>state_full</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaf85b43ddf445b576d6ff125356bd652bac1e4f14db80773ee398bca9292569d50</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="enumvalue">
+      <name>state_active</name>
+      <anchorfile>group__tipsec__common__group.html</anchorfile>
+      <anchor>ggaf85b43ddf445b576d6ff125356bd652ba7c7581232b6636c63abe1eb55d0a3d5c</anchor>
+      <arglist></arglist>
+    </member>
+  </compound>
+  <compound kind="group">
+    <name>tipsec_racoon_group</name>
+    <title>IPSec racoon implementation (IPSec-tools).</title>
+    <filename>group__tipsec__racoon__group.html</filename>
+  </compound>
+  <compound kind="group">
+    <name>tipsec_vista_group</name>
+    <title>IPSec Vista/7 implementation (WFP).</title>
+    <filename>group__tipsec__vista__group.html</filename>
+  </compound>
+  <compound kind="group">
+    <name>tipsec_xp_group</name>
+    <title>IPSec XP implementation.</title>
+    <filename>group__tipsec__xp__group.html</filename>
+  </compound>
+  <compound kind="struct">
+    <name>tipsec_context_s</name>
+    <filename>structtipsec__context__s.html</filename>
+    <member kind="variable">
+      <type></type>
+      <name>TSK_DECLARE_OBJECT</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>a6cb2c811d40d14ceb34bd3b2e7dc5e6a</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>unsigned</type>
+      <name>initialized</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>a8ac8977c8c92fcb0ed6caa2e0d04accf</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>unsigned</type>
+      <name>started</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>ab5202032c6f302c5af65f677e81f85ce</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_state_t</type>
+      <name>state</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>a2df38f03125e48e731fcb211b2048558</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>unsigned</type>
+      <name>use_ipv6</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>ae5095fe5b034d1f95b3a40f33c8859b6</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_ipproto_t</type>
+      <name>ipproto</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>abd7d3a4162f66b9db9f804c6104af79c</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_mode_t</type>
+      <name>mode</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>a56d1b9adaa7ba7f320fa329ceb3c8a63</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_ealgorithm_t</type>
+      <name>ealg</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>a25f4a0fd55a15418ce390e8eda46efaf</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_algorithm_t</type>
+      <name>alg</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>a697cdb7db7ecceaa5344678d964626a0</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_protocol_t</type>
+      <name>protocol</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>ae981aea3fc62cafbe8854831f6e07bdc</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>void *</type>
+      <name>addr_remote</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>a38b70b6c14625550d40696e30a1cdba8</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_spi_t</type>
+      <name>spi_pc</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>ad42534d6f9918b2b76d54ddba141f6b6</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_spi_t</type>
+      <name>spi_ps</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>a1e6a1164174fb00ced5f7a0a5240311e</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_port_t</type>
+      <name>port_pc</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>ac66f4a28b4adae716fb0eaf8084e3cec</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_port_t</type>
+      <name>port_ps</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>a730ff7fa7683b47c0b7629a5edcb70e4</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>void *</type>
+      <name>addr_local</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>a811d6e6b4918e2d236eb921d4c49bda2</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_spi_t</type>
+      <name>spi_uc</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>afc536ff0c14d22abbe456ba5e40e2baf</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_spi_t</type>
+      <name>spi_us</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>a3163c2199fd0b242546bb3d6d42ad779</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_port_t</type>
+      <name>port_uc</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>ac729f02f32c01188729b82d9e289dd3a</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_port_t</type>
+      <name>port_us</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>ad0412d958389edf7c73ec008fcf6674f</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_key_t *</type>
+      <name>ck</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>a569633d677a9d05b76fb1a88b0b3f6e0</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_key_t *</type>
+      <name>ik</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>ae9fefaf339adffbb94848b4b6a060c9a</anchor>
+      <arglist></arglist>
+    </member>
+    <member kind="variable">
+      <type>tipsec_lifetime_t</type>
+      <name>lifetime</name>
+      <anchorfile>structtipsec__context__s.html</anchorfile>
+      <anchor>a95fe4be3dd2b115a2c9588815bddf7da</anchor>
+      <arglist></arglist>
+    </member>
+  </compound>
+</tagfile>
diff --git a/tinyIPSec/tinyIPSec.vcproj b/tinyIPSec/tinyIPSec.vcproj
new file mode 100644
index 0000000..b17bafe
--- /dev/null
+++ b/tinyIPSec/tinyIPSec.vcproj
@@ -0,0 +1,237 @@
+<?xml version="1.0" encoding="Windows-1252"?>
+<VisualStudioProject
+	ProjectType="Visual C++"
+	Version="9.00"
+	Name="tinyIPSec"
+	ProjectGUID="{002FF064-588F-402E-A096-C8D033F49F40}"
+	RootNamespace="tinyIPSec"
+	Keyword="Win32Proj"
+	TargetFrameworkVersion="131072"
+	>
+	<Platforms>
+		<Platform
+			Name="Win32"
+		/>
+	</Platforms>
+	<ToolFiles>
+	</ToolFiles>
+	<Configurations>
+		<Configuration
+			Name="Debug|Win32"
+			OutputDirectory="$(SolutionDir)$(ConfigurationName)"
+			IntermediateDirectory="$(ConfigurationName)"
+			ConfigurationType="2"
+			CharacterSet="1"
+			>
+			<Tool
+				Name="VCPreBuildEventTool"
+			/>
+			<Tool
+				Name="VCCustomBuildTool"
+			/>
+			<Tool
+				Name="VCXMLDataGeneratorTool"
+			/>
+			<Tool
+				Name="VCWebServiceProxyGeneratorTool"
+			/>
+			<Tool
+				Name="VCMIDLTool"
+			/>
+			<Tool
+				Name="VCCLCompilerTool"
+				Optimization="0"
+				AdditionalIncludeDirectories="&quot;..\thirdparties\win32\include&quot;;&quot;..\tinySAK\src&quot;"
+				PreprocessorDefinitions="HAVE_IPSEC=0;WIN32;_WIN32_WINNT=0x0501;_DEBUG;_WINDOWS;_USRDLL;TINYIPSEC_EXPORTS"
+				MinimalRebuild="true"
+				BasicRuntimeChecks="3"
+				RuntimeLibrary="3"
+				UsePrecompiledHeader="0"
+				WarningLevel="3"
+				WarnAsError="true"
+				Detect64BitPortabilityProblems="false"
+				DebugInformationFormat="4"
+				CompileAs="1"
+			/>
+			<Tool
+				Name="VCManagedResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCPreLinkEventTool"
+			/>
+			<Tool
+				Name="VCLinkerTool"
+				AdditionalDependencies="Ws2_32.lib $(OutDir)\tinySAK.lib"
+				LinkIncremental="2"
+				GenerateDebugInformation="true"
+				SubSystem="2"
+				RandomizedBaseAddress="1"
+				DataExecutionPrevention="0"
+				TargetMachine="1"
+			/>
+			<Tool
+				Name="VCALinkTool"
+			/>
+			<Tool
+				Name="VCManifestTool"
+			/>
+			<Tool
+				Name="VCXDCMakeTool"
+			/>
+			<Tool
+				Name="VCBscMakeTool"
+			/>
+			<Tool
+				Name="VCFxCopTool"
+			/>
+			<Tool
+				Name="VCAppVerifierTool"
+			/>
+			<Tool
+				Name="VCPostBuildEventTool"
+			/>
+		</Configuration>
+		<Configuration
+			Name="Release|Win32"
+			OutputDirectory="$(SolutionDir)$(ConfigurationName)"
+			IntermediateDirectory="$(ConfigurationName)"
+			ConfigurationType="2"
+			CharacterSet="1"
+			WholeProgramOptimization="1"
+			>
+			<Tool
+				Name="VCPreBuildEventTool"
+			/>
+			<Tool
+				Name="VCCustomBuildTool"
+			/>
+			<Tool
+				Name="VCXMLDataGeneratorTool"
+			/>
+			<Tool
+				Name="VCWebServiceProxyGeneratorTool"
+			/>
+			<Tool
+				Name="VCMIDLTool"
+			/>
+			<Tool
+				Name="VCCLCompilerTool"
+				EnableIntrinsicFunctions="false"
+				AdditionalIncludeDirectories="&quot;..\thirdparties\win32\include&quot;;&quot;..\tinySAK\src&quot;"
+				PreprocessorDefinitions="HAVE_IPSEC=0;WIN32;_WIN32_WINNT=0x0501;NDEBUG;_WINDOWS;_USRDLL;TINYIPSEC_EXPORTS"
+				RuntimeLibrary="2"
+				EnableFunctionLevelLinking="false"
+				UsePrecompiledHeader="0"
+				WarningLevel="3"
+				WarnAsError="true"
+				Detect64BitPortabilityProblems="true"
+				DebugInformationFormat="0"
+				CompileAs="1"
+			/>
+			<Tool
+				Name="VCManagedResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCResourceCompilerTool"
+			/>
+			<Tool
+				Name="VCPreLinkEventTool"
+			/>
+			<Tool
+				Name="VCLinkerTool"
+				AdditionalDependencies="Ws2_32.lib $(OutDir)\tinySAK.lib"
+				LinkIncremental="1"
+				IgnoreDefaultLibraryNames="MSVCRTD"
+				GenerateDebugInformation="false"
+				SubSystem="2"
+				OptimizeReferences="2"
+				EnableCOMDATFolding="2"
+				RandomizedBaseAddress="1"
+				DataExecutionPrevention="0"
+				TargetMachine="0"
+			/>
+			<Tool
+				Name="VCALinkTool"
+			/>
+			<Tool
+				Name="VCManifestTool"
+			/>
+			<Tool
+				Name="VCXDCMakeTool"
+			/>
+			<Tool
+				Name="VCBscMakeTool"
+			/>
+			<Tool
+				Name="VCFxCopTool"
+			/>
+			<Tool
+				Name="VCAppVerifierTool"
+			/>
+			<Tool
+				Name="VCPostBuildEventTool"
+			/>
+		</Configuration>
+	</Configurations>
+	<References>
+	</References>
+	<Files>
+		<Filter
+			Name="source(*.c)"
+			>
+			<File
+				RelativePath=".\src\tipsec.c"
+				>
+			</File>
+			<File
+				RelativePath=".\src\tipsec_common.c"
+				>
+			</File>
+			<File
+				RelativePath=".\src\tipsec_racoon.c"
+				>
+			</File>
+			<File
+				RelativePath=".\src\tipsec_vista.c"
+				>
+			</File>
+			<File
+				RelativePath=".\src\tipsec_xp.c"
+				>
+			</File>
+		</Filter>
+		<Filter
+			Name="include(*.h)"
+			>
+			<File
+				RelativePath=".\src\tinyipsec_config.h"
+				>
+			</File>
+			<File
+				RelativePath=".\src\tipsec.h"
+				>
+			</File>
+			<File
+				RelativePath=".\src\tipsec_common.h"
+				>
+			</File>
+			<File
+				RelativePath=".\src\tipsec_racoon.h"
+				>
+			</File>
+			<File
+				RelativePath=".\src\tipsec_vista.h"
+				>
+			</File>
+			<File
+				RelativePath=".\src\tipsec_xp.h"
+				>
+			</File>
+		</Filter>
+	</Files>
+	<Globals>
+	</Globals>
+</VisualStudioProject>