From owner-freebsd-net@FreeBSD.ORG  Wed May 28 21:38:53 2003
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id D3B2C37B401; Wed, 28 May 2003 21:38:53 -0700 (PDT)
Received: from shuttle.wide.toshiba.co.jp (shuttle.wide.toshiba.co.jp
	[202.249.10.124])	by mx1.FreeBSD.org (Postfix) with ESMTP
	id F0BDC43F75; Wed, 28 May 2003 21:38:52 -0700 (PDT)
	(envelope-from jinmei@isl.rdc.toshiba.co.jp)
Received: from ocean.jinmei.org (shuttle.wide.toshiba.co.jp
	[3ffe:501:100f::35])
	by shuttle.wide.toshiba.co.jp (Postfix) with ESMTP
	id CD40A15248; Thu, 29 May 2003 13:38:51 +0900 (JST)
Date: Thu, 29 May 2003 13:38:49 +0900
Message-ID: <y7v1xyis6xy.wl@ocean.jinmei.org>
From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?=
	<jinmei@isl.rdc.toshiba.co.jp>
To: "Crist J. Clark" <cjc@freebsd.org>
In-Reply-To: <20030528214822.GB3907@blossom.cjclark.org>
References: <20030528214822.GB3907@blossom.cjclark.org>
User-Agent: Wanderlust/2.10.0 (Venus) Emacs/21.3 Mule/5.0 (SAKAKI)
Organization: Research & Development Center, Toshiba Corp., Kawasaki, Japan.
MIME-Version: 1.0 (generated by SEMI 1.14.5 - "Awara-Onsen")
Content-Type: text/plain; charset=US-ASCII
cc: freebsd-net@freebsd.org
Subject: Re: Merging Non-Back-Compatible setkey(8)
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 29 May 2003 04:38:54 -0000

>>>>> On Wed, 28 May 2003 14:48:22 -0700, 
>>>>> "Crist J. Clark" <crist.clark@attbi.com> said:

> I sent a PR into the KAME guys a few weeks back about an issue with
> setkey(8). The issue is that setkey(8) refers to the NULL encryption
> algorithm by the rather misleading name, 'simple.' I'd hoped they'd
> patch it in a back-compatible way, so that 'simple' still would work,
> but they've just swapped 'simple' for 'null' in the code.

We (KAME) provided backward compatibility, though the fix warned when
the old name is specified.  Our latest code works as follows:

# /usr/local/v6/sbin/setkey -c << E_O_F
heredoc> add 10.0.0.1 10.0.0.2 esp 123457 -E simple;
heredoc> E_O_F
line 1: WARNING: encryption algorithm is obsoleted. at [simple]

# /usr/local/v6/sbin/setkey -D | head -10
10.0.0.1 10.0.0.2 
	esp mode=any spi=123457(0x0001e241) reqid=0(0x00000000)
	E: null 
	seq=0x00000000 replay=0 flags=0x00000040 state=mature 
	created: May 29 13:37:27 2003	current: May 29 13:37:52 2003
	diff: 25(s)	hard: 0(s)	soft: 0(s)
	last:                     	hard: 0(s)	soft: 0(s)
	current: 0(bytes)	hard: 0(bytes)	soft: 0(bytes)
	allocated: 0	hard: 0	soft: 0
	sadb_seq=8 pid=14308 refcnt=1

					JINMEI, Tatuya
					Communication Platform Lab.
					Corporate R&D Center, Toshiba Corp.
					jinmei@isl.rdc.toshiba.co.jp