(usagi-users 03147) Re: [Ipsec-tools-devel] How to send additional data from kernel to racoon?

[Aidas Kasparas <a.kasparas@xxxxxx>]

Michal Ludvig wrote:
> On Tue, 23 Nov 2004, Park Lee wrote:
>
>
> > On Tue, 23 Nov 2004 at 12:13, Michal Ludvig wrote:
> >
> > > I haven't closely followed the thread but ... how about moving from 
> > > PF_KEY to NetLink in IPsec-tools on Linux? NetLink messages are 
> > > more versatile I think and could better suit Park's requirements. But 
> > > it's just my feeling, 
> > > I don't know too much about NetLink either ;-)
> >
> >
> > Thank you.
>
>
> > Now, I still want to add a new extension in PF_KEY (RFC2367) in Linux 
> > 2.6. But I wouldn't find any useful information about how to do it on 
> > web.
> > Would you please give me some hints on how to define a new extension in 
> > PF_KEY (RFC2367) in Linux 2.6 and How to attach it to a message (such as 
> > SADB_ACQUIRE message)?
>
>
> I don't know, never did it. I'd say "read the sources" but you probably 
> don't want to hear such answer...

But, this answer is right. I have provided you list of files where the 
code resides. Please make sure you understand what parts of these files 
are for what. Then get Kernel Hacker Guide and familarize yourself how 
coding in kernel should be done. Write down what exactly you want to 
get. And then, get your hands dirty coding, debuging...

Or, call my boss to discuss conditions if you want me to guide you 
step-by-step or do the work.

> I'm afraid your eventual extensions to the Linux PF_KEY wouldn't be 
> accepted into mainline anyway. NetLink is the prefered way of doing such 
> things, AFAIK.
>
> Michal Ludvig

--
Aidas Kasparas
IT administrator
GM Consult Group, UAB