NAME
ipsec_pf_key - lists PF_KEY sockets registered with KLIPS
SYNOPSIS
cat /proc/net/pf_key
STACK
Note that pf_key is only supported on the KLIPS and MAST stacks. It is
not supported on any other stack.
DESCRIPTION
/proc/net/pf_key is a read-only file which lists the presently open
PF_KEY sockets on the local system and their parameters.
Each line lists one PF_KEY socket. A table entry consists of:
+
sock pointer (sock)
+
PID of the socket owner (pid)
+
flag to indicate if the socket is dead (d)
+
socket wait queue (sleep)
+
socket pointer (socket)
+
next socket in chain (next)
+
previous socket in chain (prev)
+
last socket error (e)
+
pointer to destruct routine (destruct)
+
is this a reused socket (r)
+
has this socket been zapped (z)
+
socket family to which this socket belongs (fa)
+
local port number (n)
+
protocol version number (p)
+
Receive queue bytes committed (r)
+
Transmit queue bytes committed (w)
+
option memory allocations (o)
+
size of send buffer in bytes (sndbf)
+
timestamp in seconds (stamp)
+
socket flags (Flags)
+
socket type (Type)
+
connection state (St)
EXAMPLES
c3b8c140 3553 0 c0599818 c05997fc 0 0 0 0 1 0 15 0 2 0 0 0 65535
0.103232 00000000 00000003 01
shows that there is one pf_key socket set up that starts at c3b8c140,
whose owning process has PID 3553, the socket is not dead, its wait
queue is at c0599818, whose owning socket is at c05997fc, with no other
sockets in the chain, no errors, no destructor, it is a reused socket
which has not been zapped, from protocol family 15 (PF_KEY), local port
number 0, protocol socket version 2, no memory allocated to transmit,
receive or option queues, a send buffer of almost 64kB, a timestamp of
0.103232, no flags set, type 3, in state 1.
FILES
/proc/net/pf_key
SEE ALSO
ipsec(8), ipsec_manual(8), ipsec_eroute(5), ipsec_spi(5),
ipsec_spigrp(5), ipsec_klipsdebug(5), ipsec_tncfg(8), ipsec_version(5)
HISTORY
Written for the Linux FreeS/WAN project <http://www.freeswan.org/> by
Richard Guy Briggs.
[FIXME: source] 02/25/2010