• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: NKE Manager
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: NKE Manager

  • Subject: Re: NKE Manager
  • From: "Justin C. Walker" <email@hidden>
  • Date: Fri, 11 Oct 2002 13:00:24 -0700
On Friday, October 11, 2002, at 11:32 AM, Joshua Graessley wrote:

On Friday, October 11, 2002, at 10:40 AM, Michael Cashwell wrote:

Greetings,

I'm working on a datalink NKE which is a port of a body of code that works on Solaris and Linux. At this point I'm trying to get the darwin-specific parts of the kernel/userland IPC mechanism figured > out.

The Linux code seems to blindly hijack the PF_KEY domain and excuses doing so with a rather lame comment that anything else using it would conflict with the module anyway so it's OK. I'd rather not do this on darwin / MacOS X and am eyeing the NKE Manager. Conceptually I think I get it. It marshals connections to a domain specifically create to allow userland code to find an NKE based on its handle.

Yes; PF_NKE (pre 10.2, in any case) is what you want. There was some discussion of merging the (somewhat immature) PF_NKE implementation into PF_SYSTEM, and improving it, but I don't know how far that got (and I haven't spent any time with 10.2, to see whether it's been done).

The NKE Manager is the support for PF_NKE, so that should get you started.

You're right, hijacking PF_KEY would be bad since PF_KEY is used for Mac OS Xs IPSec implementation. The NKE Manager is one way to go. With Jaguar, there is a better way using a PF_SYSTEM socket. I can not recall the details unfortunately. Perhaps someone else in the know will respond?

As for the NKE Manager, there should be a sample NKE that makes use of it. Again, I can't recall the details. I'll ask around and see if anyone remembers.

'TCPLogger' is the NKE; the user program that uses it is 'tcplog'.

Regards,

Justin

--
Justin C. Walker, Curmudgeon-At-Large *
Institute for General Semantics | If you're not confused,
| You're not paying attention
*--------------------------------------*-------------------------------*
_______________________________________________
darwin-kernel mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/darwin-kernel
Do not post admin requests to the list. They will be ignored.
  • Follow-Ups:
    • Re: NKE Manager
      • From: Joshua Graessley <email@hidden>
References: 
 >Re: NKE Manager (From: Joshua Graessley <email@hidden>)

  • Prev by Date: Re: NKE Manager
  • Next by Date: Re: NKE Manager
  • Previous by thread: Re: NKE Manager
  • Next by thread: Re: NKE Manager
  • Index(es):
    • Date
    • Thread