1 /* SPDX-License-Identifier: GPL-2.0-or-later */ 2 /* 3 * SR-IPv6 implementation 4 * 5 * Author: 6 * David Lebrun <david.lebrun@uclouvain.be> 7 */ 8 9 #ifndef _NET_SEG6_HMAC_H 10 #define _NET_SEG6_HMAC_H 11 12 #include <crypto/sha1.h> 13 #include <crypto/sha2.h> 14 #include <net/flow.h> 15 #include <net/ip6_fib.h> 16 #include <net/sock.h> 17 #include <linux/ip.h> 18 #include <linux/ipv6.h> 19 #include <linux/route.h> 20 #include <net/seg6.h> 21 #include <linux/seg6_hmac.h> 22 #include <linux/rhashtable-types.h> 23 24 #define SEG6_HMAC_RING_SIZE 256 25 26 struct seg6_hmac_info { 27 struct rhash_head node; 28 struct rcu_head rcu; 29 30 u32 hmackeyid; 31 /* The raw key, kept only so it can be returned back to userspace */ 32 char secret[SEG6_HMAC_SECRET_LEN]; 33 u8 slen; 34 u8 alg_id; 35 /* The prepared key, which the calculations actually use */ 36 union { 37 struct hmac_sha1_key sha1; 38 struct hmac_sha256_key sha256; 39 } key; 40 }; 41 42 extern int seg6_hmac_compute(struct seg6_hmac_info *hinfo, 43 struct ipv6_sr_hdr *hdr, struct in6_addr *saddr, 44 u8 *output); 45 extern struct seg6_hmac_info *seg6_hmac_info_lookup(struct net *net, u32 key); 46 extern int seg6_hmac_info_add(struct net *net, u32 key, 47 struct seg6_hmac_info *hinfo); 48 extern int seg6_hmac_info_del(struct net *net, u32 key); 49 extern int seg6_push_hmac(struct net *net, struct in6_addr *saddr, 50 struct ipv6_sr_hdr *srh); 51 extern bool seg6_hmac_validate_skb(struct sk_buff *skb); 52 #ifdef CONFIG_IPV6_SEG6_HMAC 53 extern int seg6_hmac_net_init(struct net *net); 54 extern void seg6_hmac_net_exit(struct net *net); 55 #else 56 static inline int seg6_hmac_net_init(struct net *net) { return 0; } 57 static inline void seg6_hmac_net_exit(struct net *net) {} 58 #endif 59 60 #endif 61