1 /* $FreeBSD: src/sys/netkey/keydb.c,v 1.1.2.1 2000/07/15 07:14:42 kris Exp $ */
2 /* $KAME: keydb.c,v 1.64 2000/05/11 17:02:30 itojun Exp $ */
5 * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of the project nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
34 #include "opt_inet6.h"
36 #include <sys/types.h>
37 #include <sys/socket.h>
38 #include <sys/param.h>
39 #include <sys/systm.h>
40 #include <sys/kernel.h>
41 #include <sys/malloc.h>
42 #include <sys/errno.h>
43 #include <sys/queue.h>
46 #include <net/route.h>
48 #include <netinet/in.h>
50 #include <net/pfkeyv2.h>
51 #include <netkey/keydb.h>
52 #include <netinet6/ipsec.h>
54 #include <net/net_osdep.h>
56 MALLOC_DEFINE(M_SECA, "key mgmt", "security associations, key management");
58 static void keydb_delsecasvar __P((struct secasvar *));
61 * secpolicy management
68 p = (struct secpolicy *)malloc(sizeof(*p), M_SECA, M_NOWAIT);
84 * secashead management
92 p = (struct secashead *)malloc(sizeof(*p), M_SECA, M_NOWAIT);
96 for (i = 0; i < sizeof(p->savtree)/sizeof(p->savtree[0]); i++)
97 LIST_INIT(&p->savtree[i]);
102 keydb_delsecashead(p)
110 * secasvar management (reference counted)
117 p = (struct secasvar *)malloc(sizeof(*p), M_SECA, M_NOWAIT);
120 bzero(p, sizeof(*p));
137 keydb_freesecasvar(p)
144 /* negative refcnt will cause panic intentionally */
146 keydb_delsecasvar(p);
156 panic("keydb_delsecasvar called with refcnt != 0");
162 * secreplay management
165 keydb_newsecreplay(wsize)
170 p = (struct secreplay *)malloc(sizeof(*p), M_SECA, M_NOWAIT);
174 bzero(p, sizeof(*p));
176 p->bitmap = (caddr_t)malloc(wsize, M_SECA, M_NOWAIT);
181 bzero(p->bitmap, wsize);
188 keydb_delsecreplay(p)
193 free(p->bitmap, M_SECA);
205 p = (struct secreg *)malloc(sizeof(*p), M_SECA, M_NOWAIT);
207 bzero(p, sizeof(*p));