1 /* SPDX-License-Identifier: ((GPL-2.0 WITH Lin << 2 /* 1 /* 3 * Copyright (c) 2016-2017, Mellanox Technolog 2 * Copyright (c) 2016-2017, Mellanox Technologies. All rights reserved. 4 * 3 * 5 * This software is available to you under a c 4 * This software is available to you under a choice of one of two 6 * licenses. You may choose to be licensed un 5 * licenses. You may choose to be licensed under the terms of the GNU 7 * General Public License (GPL) Version 2, ava 6 * General Public License (GPL) Version 2, available from the file 8 * COPYING in the main directory of this sourc 7 * COPYING in the main directory of this source tree, or the 9 * OpenIB.org BSD license below: 8 * OpenIB.org BSD license below: 10 * 9 * 11 * Redistribution and use in source and bi 10 * Redistribution and use in source and binary forms, with or 12 * without modification, are permitted pro 11 * without modification, are permitted provided that the following 13 * conditions are met: 12 * conditions are met: 14 * 13 * 15 * - Redistributions of source code must 14 * - Redistributions of source code must retain the above 16 * copyright notice, this list of condi 15 * copyright notice, this list of conditions and the following 17 * disclaimer. 16 * disclaimer. 18 * 17 * 19 * - Redistributions in binary form must 18 * - Redistributions in binary form must reproduce the above 20 * copyright notice, this list of condi 19 * copyright notice, this list of conditions and the following 21 * disclaimer in the documentation and/ 20 * disclaimer in the documentation and/or other materials 22 * provided with the distribution. 21 * provided with the distribution. 23 * 22 * 24 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT W 23 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, 25 * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMIT 24 * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF 26 * MERCHANTABILITY, FITNESS FOR A PARTICULAR P 25 * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND 27 * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTH 26 * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS 28 * BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER L 27 * BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN 29 * ACTION OF CONTRACT, TORT OR OTHERWISE, ARIS 28 * ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN 30 * CONNECTION WITH THE SOFTWARE OR THE USE OR 29 * CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE 31 * SOFTWARE. 30 * SOFTWARE. 32 */ 31 */ 33 32 34 #ifndef _UAPI_LINUX_TLS_H 33 #ifndef _UAPI_LINUX_TLS_H 35 #define _UAPI_LINUX_TLS_H 34 #define _UAPI_LINUX_TLS_H 36 35 37 #include <linux/types.h> 36 #include <linux/types.h> >> 37 #include <asm/byteorder.h> >> 38 #include <linux/socket.h> >> 39 #include <linux/tcp.h> >> 40 #include <net/tcp.h> 38 41 39 /* TLS socket options */ 42 /* TLS socket options */ 40 #define TLS_TX 1 /* Set 43 #define TLS_TX 1 /* Set transmit parameters */ 41 #define TLS_RX 2 /* Set << 42 #define TLS_TX_ZEROCOPY_RO 3 /* TX << 43 #define TLS_RX_EXPECT_NO_PAD 4 /* Att << 44 44 45 /* Supported versions */ 45 /* Supported versions */ 46 #define TLS_VERSION_MINOR(ver) ((ver) & 0xFF) 46 #define TLS_VERSION_MINOR(ver) ((ver) & 0xFF) 47 #define TLS_VERSION_MAJOR(ver) (((ver) >> 8) 47 #define TLS_VERSION_MAJOR(ver) (((ver) >> 8) & 0xFF) 48 48 49 #define TLS_VERSION_NUMBER(id) ((((id##_VERSI 49 #define TLS_VERSION_NUMBER(id) ((((id##_VERSION_MAJOR) & 0xFF) << 8) | \ 50 ((id##_VERSIO 50 ((id##_VERSION_MINOR) & 0xFF)) 51 51 52 #define TLS_1_2_VERSION_MAJOR 0x3 52 #define TLS_1_2_VERSION_MAJOR 0x3 53 #define TLS_1_2_VERSION_MINOR 0x3 53 #define TLS_1_2_VERSION_MINOR 0x3 54 #define TLS_1_2_VERSION TLS_VERSION_NU 54 #define TLS_1_2_VERSION TLS_VERSION_NUMBER(TLS_1_2) 55 55 56 #define TLS_1_3_VERSION_MAJOR 0x3 << 57 #define TLS_1_3_VERSION_MINOR 0x4 << 58 #define TLS_1_3_VERSION TLS_VERSION_NU << 59 << 60 /* Supported ciphers */ 56 /* Supported ciphers */ 61 #define TLS_CIPHER_AES_GCM_128 57 #define TLS_CIPHER_AES_GCM_128 51 62 #define TLS_CIPHER_AES_GCM_128_IV_SIZE 58 #define TLS_CIPHER_AES_GCM_128_IV_SIZE 8 63 #define TLS_CIPHER_AES_GCM_128_KEY_SIZE 59 #define TLS_CIPHER_AES_GCM_128_KEY_SIZE 16 64 #define TLS_CIPHER_AES_GCM_128_SALT_SIZE 60 #define TLS_CIPHER_AES_GCM_128_SALT_SIZE 4 65 #define TLS_CIPHER_AES_GCM_128_TAG_SIZE 61 #define TLS_CIPHER_AES_GCM_128_TAG_SIZE 16 66 #define TLS_CIPHER_AES_GCM_128_REC_SEQ_SIZE 62 #define TLS_CIPHER_AES_GCM_128_REC_SEQ_SIZE 8 67 63 68 #define TLS_CIPHER_AES_GCM_256 << 69 #define TLS_CIPHER_AES_GCM_256_IV_SIZE << 70 #define TLS_CIPHER_AES_GCM_256_KEY_SIZE << 71 #define TLS_CIPHER_AES_GCM_256_SALT_SIZE << 72 #define TLS_CIPHER_AES_GCM_256_TAG_SIZE << 73 #define TLS_CIPHER_AES_GCM_256_REC_SEQ_SIZE << 74 << 75 #define TLS_CIPHER_AES_CCM_128 << 76 #define TLS_CIPHER_AES_CCM_128_IV_SIZE << 77 #define TLS_CIPHER_AES_CCM_128_KEY_SIZE << 78 #define TLS_CIPHER_AES_CCM_128_SALT_SIZE << 79 #define TLS_CIPHER_AES_CCM_128_TAG_SIZE << 80 #define TLS_CIPHER_AES_CCM_128_REC_SEQ_SIZE << 81 << 82 #define TLS_CIPHER_CHACHA20_POLY1305 << 83 #define TLS_CIPHER_CHACHA20_POLY1305_IV_SIZE << 84 #define TLS_CIPHER_CHACHA20_POLY1305_KEY_SIZE << 85 #define TLS_CIPHER_CHACHA20_POLY1305_SALT_SIZE << 86 #define TLS_CIPHER_CHACHA20_POLY1305_TAG_SIZE << 87 #define TLS_CIPHER_CHACHA20_POLY1305_REC_SEQ_S << 88 << 89 #define TLS_CIPHER_SM4_GCM << 90 #define TLS_CIPHER_SM4_GCM_IV_SIZE << 91 #define TLS_CIPHER_SM4_GCM_KEY_SIZE << 92 #define TLS_CIPHER_SM4_GCM_SALT_SIZE << 93 #define TLS_CIPHER_SM4_GCM_TAG_SIZE << 94 #define TLS_CIPHER_SM4_GCM_REC_SEQ_SIZE << 95 << 96 #define TLS_CIPHER_SM4_CCM << 97 #define TLS_CIPHER_SM4_CCM_IV_SIZE << 98 #define TLS_CIPHER_SM4_CCM_KEY_SIZE << 99 #define TLS_CIPHER_SM4_CCM_SALT_SIZE << 100 #define TLS_CIPHER_SM4_CCM_TAG_SIZE << 101 #define TLS_CIPHER_SM4_CCM_REC_SEQ_SIZE << 102 << 103 #define TLS_CIPHER_ARIA_GCM_128 << 104 #define TLS_CIPHER_ARIA_GCM_128_IV_SIZE << 105 #define TLS_CIPHER_ARIA_GCM_128_KEY_SIZE << 106 #define TLS_CIPHER_ARIA_GCM_128_SALT_SIZE << 107 #define TLS_CIPHER_ARIA_GCM_128_TAG_SIZE << 108 #define TLS_CIPHER_ARIA_GCM_128_REC_SEQ_SIZE << 109 << 110 #define TLS_CIPHER_ARIA_GCM_256 << 111 #define TLS_CIPHER_ARIA_GCM_256_IV_SIZE << 112 #define TLS_CIPHER_ARIA_GCM_256_KEY_SIZE << 113 #define TLS_CIPHER_ARIA_GCM_256_SALT_SIZE << 114 #define TLS_CIPHER_ARIA_GCM_256_TAG_SIZE << 115 #define TLS_CIPHER_ARIA_GCM_256_REC_SEQ_SIZE << 116 << 117 #define TLS_SET_RECORD_TYPE 1 64 #define TLS_SET_RECORD_TYPE 1 118 #define TLS_GET_RECORD_TYPE 2 << 119 65 120 struct tls_crypto_info { 66 struct tls_crypto_info { 121 __u16 version; 67 __u16 version; 122 __u16 cipher_type; 68 __u16 cipher_type; 123 }; 69 }; 124 70 125 struct tls12_crypto_info_aes_gcm_128 { 71 struct tls12_crypto_info_aes_gcm_128 { 126 struct tls_crypto_info info; 72 struct tls_crypto_info info; 127 unsigned char iv[TLS_CIPHER_AES_GCM_12 73 unsigned char iv[TLS_CIPHER_AES_GCM_128_IV_SIZE]; 128 unsigned char key[TLS_CIPHER_AES_GCM_1 74 unsigned char key[TLS_CIPHER_AES_GCM_128_KEY_SIZE]; 129 unsigned char salt[TLS_CIPHER_AES_GCM_ 75 unsigned char salt[TLS_CIPHER_AES_GCM_128_SALT_SIZE]; 130 unsigned char rec_seq[TLS_CIPHER_AES_G 76 unsigned char rec_seq[TLS_CIPHER_AES_GCM_128_REC_SEQ_SIZE]; 131 }; 77 }; 132 << 133 struct tls12_crypto_info_aes_gcm_256 { << 134 struct tls_crypto_info info; << 135 unsigned char iv[TLS_CIPHER_AES_GCM_25 << 136 unsigned char key[TLS_CIPHER_AES_GCM_2 << 137 unsigned char salt[TLS_CIPHER_AES_GCM_ << 138 unsigned char rec_seq[TLS_CIPHER_AES_G << 139 }; << 140 << 141 struct tls12_crypto_info_aes_ccm_128 { << 142 struct tls_crypto_info info; << 143 unsigned char iv[TLS_CIPHER_AES_CCM_12 << 144 unsigned char key[TLS_CIPHER_AES_CCM_1 << 145 unsigned char salt[TLS_CIPHER_AES_CCM_ << 146 unsigned char rec_seq[TLS_CIPHER_AES_C << 147 }; << 148 << 149 struct tls12_crypto_info_chacha20_poly1305 { << 150 struct tls_crypto_info info; << 151 unsigned char iv[TLS_CIPHER_CHACHA20_P << 152 unsigned char key[TLS_CIPHER_CHACHA20_ << 153 unsigned char salt[TLS_CIPHER_CHACHA20 << 154 unsigned char rec_seq[TLS_CIPHER_CHACH << 155 }; << 156 << 157 struct tls12_crypto_info_sm4_gcm { << 158 struct tls_crypto_info info; << 159 unsigned char iv[TLS_CIPHER_SM4_GCM_IV << 160 unsigned char key[TLS_CIPHER_SM4_GCM_K << 161 unsigned char salt[TLS_CIPHER_SM4_GCM_ << 162 unsigned char rec_seq[TLS_CIPHER_SM4_G << 163 }; << 164 << 165 struct tls12_crypto_info_sm4_ccm { << 166 struct tls_crypto_info info; << 167 unsigned char iv[TLS_CIPHER_SM4_CCM_IV << 168 unsigned char key[TLS_CIPHER_SM4_CCM_K << 169 unsigned char salt[TLS_CIPHER_SM4_CCM_ << 170 unsigned char rec_seq[TLS_CIPHER_SM4_C << 171 }; << 172 << 173 struct tls12_crypto_info_aria_gcm_128 { << 174 struct tls_crypto_info info; << 175 unsigned char iv[TLS_CIPHER_ARIA_GCM_1 << 176 unsigned char key[TLS_CIPHER_ARIA_GCM_ << 177 unsigned char salt[TLS_CIPHER_ARIA_GCM << 178 unsigned char rec_seq[TLS_CIPHER_ARIA_ << 179 }; << 180 << 181 struct tls12_crypto_info_aria_gcm_256 { << 182 struct tls_crypto_info info; << 183 unsigned char iv[TLS_CIPHER_ARIA_GCM_2 << 184 unsigned char key[TLS_CIPHER_ARIA_GCM_ << 185 unsigned char salt[TLS_CIPHER_ARIA_GCM << 186 unsigned char rec_seq[TLS_CIPHER_ARIA_ << 187 }; << 188 << 189 enum { << 190 TLS_INFO_UNSPEC, << 191 TLS_INFO_VERSION, << 192 TLS_INFO_CIPHER, << 193 TLS_INFO_TXCONF, << 194 TLS_INFO_RXCONF, << 195 TLS_INFO_ZC_RO_TX, << 196 TLS_INFO_RX_NO_PAD, << 197 __TLS_INFO_MAX, << 198 }; << 199 #define TLS_INFO_MAX (__TLS_INFO_MAX - 1) << 200 << 201 #define TLS_CONF_BASE 1 << 202 #define TLS_CONF_SW 2 << 203 #define TLS_CONF_HW 3 << 204 #define TLS_CONF_HW_RECORD 4 << 205 78 206 #endif /* _UAPI_LINUX_TLS_H */ 79 #endif /* _UAPI_LINUX_TLS_H */ 207 80
Linux® is a registered trademark of Linus Torvalds in the United States and other countries.
TOMOYO® is a registered trademark of NTT DATA CORPORATION.