1 /* SPDX-License-Identifier: ((GPL-2.0 WITH Lin <<
2 /* 1 /*
3 * Copyright (c) 2016-2017, Mellanox Technolog 2 * Copyright (c) 2016-2017, Mellanox Technologies. All rights reserved.
4 * 3 *
5 * This software is available to you under a c 4 * This software is available to you under a choice of one of two
6 * licenses. You may choose to be licensed un 5 * licenses. You may choose to be licensed under the terms of the GNU
7 * General Public License (GPL) Version 2, ava 6 * General Public License (GPL) Version 2, available from the file
8 * COPYING in the main directory of this sourc 7 * COPYING in the main directory of this source tree, or the
9 * OpenIB.org BSD license below: 8 * OpenIB.org BSD license below:
10 * 9 *
11 * Redistribution and use in source and bi 10 * Redistribution and use in source and binary forms, with or
12 * without modification, are permitted pro 11 * without modification, are permitted provided that the following
13 * conditions are met: 12 * conditions are met:
14 * 13 *
15 * - Redistributions of source code must 14 * - Redistributions of source code must retain the above
16 * copyright notice, this list of condi 15 * copyright notice, this list of conditions and the following
17 * disclaimer. 16 * disclaimer.
18 * 17 *
19 * - Redistributions in binary form must 18 * - Redistributions in binary form must reproduce the above
20 * copyright notice, this list of condi 19 * copyright notice, this list of conditions and the following
21 * disclaimer in the documentation and/ 20 * disclaimer in the documentation and/or other materials
22 * provided with the distribution. 21 * provided with the distribution.
23 * 22 *
24 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT W 23 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
25 * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMIT 24 * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
26 * MERCHANTABILITY, FITNESS FOR A PARTICULAR P 25 * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
27 * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTH 26 * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
28 * BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER L 27 * BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
29 * ACTION OF CONTRACT, TORT OR OTHERWISE, ARIS 28 * ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
30 * CONNECTION WITH THE SOFTWARE OR THE USE OR 29 * CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
31 * SOFTWARE. 30 * SOFTWARE.
32 */ 31 */
33 32
34 #ifndef _UAPI_LINUX_TLS_H 33 #ifndef _UAPI_LINUX_TLS_H
35 #define _UAPI_LINUX_TLS_H 34 #define _UAPI_LINUX_TLS_H
36 35
37 #include <linux/types.h> 36 #include <linux/types.h>
>> 37 #include <asm/byteorder.h>
>> 38 #include <linux/socket.h>
>> 39 #include <linux/tcp.h>
>> 40 #include <net/tcp.h>
38 41
39 /* TLS socket options */ 42 /* TLS socket options */
40 #define TLS_TX 1 /* Set 43 #define TLS_TX 1 /* Set transmit parameters */
41 #define TLS_RX 2 /* Set <<
42 #define TLS_TX_ZEROCOPY_RO 3 /* TX <<
43 #define TLS_RX_EXPECT_NO_PAD 4 /* Att <<
44 44
45 /* Supported versions */ 45 /* Supported versions */
46 #define TLS_VERSION_MINOR(ver) ((ver) & 0xFF) 46 #define TLS_VERSION_MINOR(ver) ((ver) & 0xFF)
47 #define TLS_VERSION_MAJOR(ver) (((ver) >> 8) 47 #define TLS_VERSION_MAJOR(ver) (((ver) >> 8) & 0xFF)
48 48
49 #define TLS_VERSION_NUMBER(id) ((((id##_VERSI 49 #define TLS_VERSION_NUMBER(id) ((((id##_VERSION_MAJOR) & 0xFF) << 8) | \
50 ((id##_VERSIO 50 ((id##_VERSION_MINOR) & 0xFF))
51 51
52 #define TLS_1_2_VERSION_MAJOR 0x3 52 #define TLS_1_2_VERSION_MAJOR 0x3
53 #define TLS_1_2_VERSION_MINOR 0x3 53 #define TLS_1_2_VERSION_MINOR 0x3
54 #define TLS_1_2_VERSION TLS_VERSION_NU 54 #define TLS_1_2_VERSION TLS_VERSION_NUMBER(TLS_1_2)
55 55
56 #define TLS_1_3_VERSION_MAJOR 0x3 <<
57 #define TLS_1_3_VERSION_MINOR 0x4 <<
58 #define TLS_1_3_VERSION TLS_VERSION_NU <<
59 <<
60 /* Supported ciphers */ 56 /* Supported ciphers */
61 #define TLS_CIPHER_AES_GCM_128 57 #define TLS_CIPHER_AES_GCM_128 51
62 #define TLS_CIPHER_AES_GCM_128_IV_SIZE 58 #define TLS_CIPHER_AES_GCM_128_IV_SIZE 8
63 #define TLS_CIPHER_AES_GCM_128_KEY_SIZE 59 #define TLS_CIPHER_AES_GCM_128_KEY_SIZE 16
64 #define TLS_CIPHER_AES_GCM_128_SALT_SIZE 60 #define TLS_CIPHER_AES_GCM_128_SALT_SIZE 4
65 #define TLS_CIPHER_AES_GCM_128_TAG_SIZE 61 #define TLS_CIPHER_AES_GCM_128_TAG_SIZE 16
66 #define TLS_CIPHER_AES_GCM_128_REC_SEQ_SIZE 62 #define TLS_CIPHER_AES_GCM_128_REC_SEQ_SIZE 8
67 63
68 #define TLS_CIPHER_AES_GCM_256 <<
69 #define TLS_CIPHER_AES_GCM_256_IV_SIZE <<
70 #define TLS_CIPHER_AES_GCM_256_KEY_SIZE <<
71 #define TLS_CIPHER_AES_GCM_256_SALT_SIZE <<
72 #define TLS_CIPHER_AES_GCM_256_TAG_SIZE <<
73 #define TLS_CIPHER_AES_GCM_256_REC_SEQ_SIZE <<
74 <<
75 #define TLS_CIPHER_AES_CCM_128 <<
76 #define TLS_CIPHER_AES_CCM_128_IV_SIZE <<
77 #define TLS_CIPHER_AES_CCM_128_KEY_SIZE <<
78 #define TLS_CIPHER_AES_CCM_128_SALT_SIZE <<
79 #define TLS_CIPHER_AES_CCM_128_TAG_SIZE <<
80 #define TLS_CIPHER_AES_CCM_128_REC_SEQ_SIZE <<
81 <<
82 #define TLS_CIPHER_CHACHA20_POLY1305 <<
83 #define TLS_CIPHER_CHACHA20_POLY1305_IV_SIZE <<
84 #define TLS_CIPHER_CHACHA20_POLY1305_KEY_SIZE <<
85 #define TLS_CIPHER_CHACHA20_POLY1305_SALT_SIZE <<
86 #define TLS_CIPHER_CHACHA20_POLY1305_TAG_SIZE <<
87 #define TLS_CIPHER_CHACHA20_POLY1305_REC_SEQ_S <<
88 <<
89 #define TLS_CIPHER_SM4_GCM <<
90 #define TLS_CIPHER_SM4_GCM_IV_SIZE <<
91 #define TLS_CIPHER_SM4_GCM_KEY_SIZE <<
92 #define TLS_CIPHER_SM4_GCM_SALT_SIZE <<
93 #define TLS_CIPHER_SM4_GCM_TAG_SIZE <<
94 #define TLS_CIPHER_SM4_GCM_REC_SEQ_SIZE <<
95 <<
96 #define TLS_CIPHER_SM4_CCM <<
97 #define TLS_CIPHER_SM4_CCM_IV_SIZE <<
98 #define TLS_CIPHER_SM4_CCM_KEY_SIZE <<
99 #define TLS_CIPHER_SM4_CCM_SALT_SIZE <<
100 #define TLS_CIPHER_SM4_CCM_TAG_SIZE <<
101 #define TLS_CIPHER_SM4_CCM_REC_SEQ_SIZE <<
102 <<
103 #define TLS_CIPHER_ARIA_GCM_128 <<
104 #define TLS_CIPHER_ARIA_GCM_128_IV_SIZE <<
105 #define TLS_CIPHER_ARIA_GCM_128_KEY_SIZE <<
106 #define TLS_CIPHER_ARIA_GCM_128_SALT_SIZE <<
107 #define TLS_CIPHER_ARIA_GCM_128_TAG_SIZE <<
108 #define TLS_CIPHER_ARIA_GCM_128_REC_SEQ_SIZE <<
109 <<
110 #define TLS_CIPHER_ARIA_GCM_256 <<
111 #define TLS_CIPHER_ARIA_GCM_256_IV_SIZE <<
112 #define TLS_CIPHER_ARIA_GCM_256_KEY_SIZE <<
113 #define TLS_CIPHER_ARIA_GCM_256_SALT_SIZE <<
114 #define TLS_CIPHER_ARIA_GCM_256_TAG_SIZE <<
115 #define TLS_CIPHER_ARIA_GCM_256_REC_SEQ_SIZE <<
116 <<
117 #define TLS_SET_RECORD_TYPE 1 64 #define TLS_SET_RECORD_TYPE 1
118 #define TLS_GET_RECORD_TYPE 2 <<
119 65
120 struct tls_crypto_info { 66 struct tls_crypto_info {
121 __u16 version; 67 __u16 version;
122 __u16 cipher_type; 68 __u16 cipher_type;
123 }; 69 };
124 70
125 struct tls12_crypto_info_aes_gcm_128 { 71 struct tls12_crypto_info_aes_gcm_128 {
126 struct tls_crypto_info info; 72 struct tls_crypto_info info;
127 unsigned char iv[TLS_CIPHER_AES_GCM_12 73 unsigned char iv[TLS_CIPHER_AES_GCM_128_IV_SIZE];
128 unsigned char key[TLS_CIPHER_AES_GCM_1 74 unsigned char key[TLS_CIPHER_AES_GCM_128_KEY_SIZE];
129 unsigned char salt[TLS_CIPHER_AES_GCM_ 75 unsigned char salt[TLS_CIPHER_AES_GCM_128_SALT_SIZE];
130 unsigned char rec_seq[TLS_CIPHER_AES_G 76 unsigned char rec_seq[TLS_CIPHER_AES_GCM_128_REC_SEQ_SIZE];
131 }; 77 };
132 <<
133 struct tls12_crypto_info_aes_gcm_256 { <<
134 struct tls_crypto_info info; <<
135 unsigned char iv[TLS_CIPHER_AES_GCM_25 <<
136 unsigned char key[TLS_CIPHER_AES_GCM_2 <<
137 unsigned char salt[TLS_CIPHER_AES_GCM_ <<
138 unsigned char rec_seq[TLS_CIPHER_AES_G <<
139 }; <<
140 <<
141 struct tls12_crypto_info_aes_ccm_128 { <<
142 struct tls_crypto_info info; <<
143 unsigned char iv[TLS_CIPHER_AES_CCM_12 <<
144 unsigned char key[TLS_CIPHER_AES_CCM_1 <<
145 unsigned char salt[TLS_CIPHER_AES_CCM_ <<
146 unsigned char rec_seq[TLS_CIPHER_AES_C <<
147 }; <<
148 <<
149 struct tls12_crypto_info_chacha20_poly1305 { <<
150 struct tls_crypto_info info; <<
151 unsigned char iv[TLS_CIPHER_CHACHA20_P <<
152 unsigned char key[TLS_CIPHER_CHACHA20_ <<
153 unsigned char salt[TLS_CIPHER_CHACHA20 <<
154 unsigned char rec_seq[TLS_CIPHER_CHACH <<
155 }; <<
156 <<
157 struct tls12_crypto_info_sm4_gcm { <<
158 struct tls_crypto_info info; <<
159 unsigned char iv[TLS_CIPHER_SM4_GCM_IV <<
160 unsigned char key[TLS_CIPHER_SM4_GCM_K <<
161 unsigned char salt[TLS_CIPHER_SM4_GCM_ <<
162 unsigned char rec_seq[TLS_CIPHER_SM4_G <<
163 }; <<
164 <<
165 struct tls12_crypto_info_sm4_ccm { <<
166 struct tls_crypto_info info; <<
167 unsigned char iv[TLS_CIPHER_SM4_CCM_IV <<
168 unsigned char key[TLS_CIPHER_SM4_CCM_K <<
169 unsigned char salt[TLS_CIPHER_SM4_CCM_ <<
170 unsigned char rec_seq[TLS_CIPHER_SM4_C <<
171 }; <<
172 <<
173 struct tls12_crypto_info_aria_gcm_128 { <<
174 struct tls_crypto_info info; <<
175 unsigned char iv[TLS_CIPHER_ARIA_GCM_1 <<
176 unsigned char key[TLS_CIPHER_ARIA_GCM_ <<
177 unsigned char salt[TLS_CIPHER_ARIA_GCM <<
178 unsigned char rec_seq[TLS_CIPHER_ARIA_ <<
179 }; <<
180 <<
181 struct tls12_crypto_info_aria_gcm_256 { <<
182 struct tls_crypto_info info; <<
183 unsigned char iv[TLS_CIPHER_ARIA_GCM_2 <<
184 unsigned char key[TLS_CIPHER_ARIA_GCM_ <<
185 unsigned char salt[TLS_CIPHER_ARIA_GCM <<
186 unsigned char rec_seq[TLS_CIPHER_ARIA_ <<
187 }; <<
188 <<
189 enum { <<
190 TLS_INFO_UNSPEC, <<
191 TLS_INFO_VERSION, <<
192 TLS_INFO_CIPHER, <<
193 TLS_INFO_TXCONF, <<
194 TLS_INFO_RXCONF, <<
195 TLS_INFO_ZC_RO_TX, <<
196 TLS_INFO_RX_NO_PAD, <<
197 __TLS_INFO_MAX, <<
198 }; <<
199 #define TLS_INFO_MAX (__TLS_INFO_MAX - 1) <<
200 <<
201 #define TLS_CONF_BASE 1 <<
202 #define TLS_CONF_SW 2 <<
203 #define TLS_CONF_HW 3 <<
204 #define TLS_CONF_HW_RECORD 4 <<
205 78
206 #endif /* _UAPI_LINUX_TLS_H */ 79 #endif /* _UAPI_LINUX_TLS_H */
207 80
Linux® is a registered trademark of Linus Torvalds in the United States and other countries.
TOMOYO® is a registered trademark of NTT DATA CORPORATION.