#
# Copyright (c) 2009 Nokia Corporation and/or its subsidiary(-ies).
# All rights reserved.
# This component and the accompanying materials are made available
# under the terms of "Eclipse Public License v1.0"
# which accompanies this distribution, and is available
# at the URL "http://www.eclipse.org/legal/epl-v10.html".
#
# Initial Contributors:
# Nokia Corporation - initial contribution.
#
# Contributors:
#
# Description:
# Sample configuration: This or some equivalent file is
# loaded as a part of policy data into IPSEC policy socket.
#
# Map numbers to algorithms implemented in the libaries
#
# encrypt name(id-number, iv-length-in-bits)
# auth name(id-number, digest-length-in-bits)
#
# name
# The name of the algorithm. This is matched against
# the published algorithms from the crypto libraries
# (TAlgorithmDesc::iName). The name can be prefixed
# with optional library name: "eay.idea" would match
# only from a library named "eay".
# id-number
# The algorithm number, as agreed between the end-points
# (Usually IANA assigned)
# iv-length-in-bits
# The IV length to be used in ESP packets (this should
# match the algorithm IV).
# digest-length-in-bits
# The number of bits used from the digest value (this can
# be less than actual digest length).
#
# (note: these comments may make the policy too long for
# default socket buffer, so you may have to trim these off).
#
encrypt descbc(2,64)
encrypt 3descbc(3,64)
encrypt rc5(4,64)
encrypt idea(5,64)
encrypt cast(6,64)
encrypt blowfish(7,64)
encrypt 3idea(8,64)
encrypt null(11)
encrypt aescbc(12,128)
encrypt aesctr(13,64)
auth md5(2,96) # hmac is implicit in current implementation
auth sha1(3,96) # hmac is implicit in current implementation
auth aes(5,96) # hmac is implicit in current implementation