| /linux/Documentation/arch/arm64/ |
| H A D | pointer-authentication.rst | 2 Pointer authentication in AArch64 Linux
9 This document briefly describes the provision of pointer authentication
16 The ARMv8.3 Pointer Authentication extension adds primitives that can be
20 The extension uses a Pointer Authentication Code (PAC) to determine
38 (APDAKey, APDBKey), and one for generic authentication (APGAKey).
49 Presence of address authentication functionality is advertised via
50 HWCAP_PACA, and generic authentication functionality via HWCAP_PACG.
57 with HINT space pointer authentication instructions protecting
59 with or without pointer authentication support.
72 authentication is present, the kernel will expose the position of TTBR0
[all …]
|
| /linux/Documentation/ABI/testing/ |
| H A D | sysfs-class-firmware-attributes | 149 What: /sys/class/firmware-attributes/*/authentication/
156 Devices support various authentication mechanisms which can be exposed
166 Change in any of these two authentication methods will also generate an
171 <attr> authentication is enabled.
175 The type of authentication used.
195 The means of authentication. This attribute is mandatory.
256 Available for HDD and NVMe authentication to set 'user' or 'master'
265 Used with HDD and NVME authentication to set the drive index
270 These attributes are used for certificate based authentication. This is
272 based authentication.
[all …]
|
| /linux/include/crypto/ |
| H A D | aead.h | 38 * crypto_aead_decrypt. That error indicates an authentication error, i.e.
49 * (resp. ciphertext) will grow (resp. shrink) by the authentication tag size
50 * during encryption (resp. decryption). The authentication tag is generated
52 * decryption, the authentication tag is consumed along with the ciphertext and
83 * @assoclen: Length in bytes of associated data for authentication
106 * @maxauthsize: Set the maximum authentication tag size supported by the
108 * As the authentication tag is a message digest to ensure the
110 * largest authentication tag possible as defined by this
112 * @setauthsize: Set authentication size for the AEAD transformation. This
114 * authentication tag to be either generated by the transformation
[all …]
|
| /linux/Documentation/filesystems/ |
| H A D | ubifs-authentication.rst | 3 .. UBIFS Authentication
8 UBIFS Authentication Support
33 can be used to get full data authentication at the block layer.
37 authentication for UBIFS. Since UBIFS uses fscrypt for file contents and file
38 name encryption, the authentication system could be tied into fscrypt such that
40 be possible to use UBIFS authentication without using encryption.
206 UBIFS Authentication
209 This chapter introduces UBIFS authentication which enables UBIFS to verify
216 UBIFS authentication enables detection of offline data modification. While it
221 UBIFS authentication will not protect against rollback of full flash contents.
[all …]
|
| /linux/drivers/platform/x86/hp/hp-bioscfg/ |
| H A D | spmobj-attributes.c | 36 * for authentication scheme
38 * @authentication: the authentication content
42 size_t hp_calculate_security_buffer(const char *authentication) in hp_calculate_security_buffer() argument
46 if (!authentication) in hp_calculate_security_buffer()
49 authlen = strlen(authentication); in hp_calculate_security_buffer()
54 if (!strstarts(authentication, BEAM_PREFIX)) in hp_calculate_security_buffer()
62 * authentication scheme
65 * @authentication: the authentication content
69 int hp_populate_security_buffer(u16 *authbuf, const char *authentication) in hp_populate_security_buffer() argument
75 if (strstarts(authentication, BEAM_PREFIX)) { in hp_populate_security_buffer()
[all …]
|
| /linux/drivers/crypto/ |
| H A D | sa2ul.h | 74 #define SA_ENG_ID_AM2 5 /* Authentication engine for pass 2 */
108 #define SA_CTX_PE_PKT_TYPE_IPSEC_AH 2 /* IPSec Authentication Header */
127 * Bit 4-5: Fetch Authentication Bytes or Encr pass 2
239 * @auth_size: Authentication size for pass 1
240 * @auth_size2: Authentication size for pass 2
241 * @auth_offset: Authentication payload offset
242 * @auth_iv: Authentication initialization vector
243 * @aux_key_info: Authentication aux key information
244 * @aux_key: Aux key for authentication
358 /* Authentication algorithms */
[all …]
|
| /linux/include/linux/sunrpc/ |
| H A D | svcauth.h | 5 * RPC server-side authentication stuff.
60 /* Authentication is done in the context of a domain.
66 * a common mechanism for authentication and having a common mapping
72 * A domain is created by an authentication flavour module based on name
101 * Each authentication flavour registers an auth_ops
107 * If there is a problem with the authentication *authp should be set.
|
| H A D | auth.h | 5 * Declarations for the RPC client authentication machinery.
23 * Maximum size of AUTH_NONE authentication information, in XDR words.
69 * Client authentication handle
105 * Client authentication ops
|
| /linux/Documentation/crypto/ |
| H A D | userspace-if.rst | 213 system call family, the consumer must set the authentication tag size.
214 To set the authentication tag size, the caller must use the setsockopt
235 - specification of the associated authentication data (AAD) with the
265 - associated authentication data (AAD)
267 - authentication tag
269 The sizes of the AAD and the authentication tag are provided with the
279 - AEAD decryption input: AAD \|\| ciphertext \|\| authentication tag
284 - AEAD encryption output: ciphertext \|\| authentication tag
394 - ALG_SET_AEAD_AUTHSIZE -- Setting the authentication tag size for
395 AEAD ciphers. For a encryption operation, the authentication tag of
[all …]
|
| /linux/drivers/staging/greybus/Documentation/firmware/ |
| H A D | firmware-management | 40 ; (Optional) Component Authentication Protocol (CAP) on CPort 4
183 Sysfs Interfaces - Authentication
186 The Component Authentication Protocol interacts with Userspace using the
196 authentication a of particular interface.
198 The Authentication core creates a device of class 'gb_authenticate', which shall
237 /* Authentication types */
291 Authentication. The user is required to fill the 'certificate_class' and
333 component authentication protocol.
|
| /linux/include/uapi/linux/ |
| H A D | psp-dbc.h | 26 * 0: no authentication, PSP will return single use nonce.
27 * 1: authentication: PSP will return multi-use nonce.
28 * @nonce: 8 byte value used for future authentication (output).
88 * If a nonce is fetched without authentication it can only
90 * If a nonce is fetched with authentication it can be used
|
| H A D | nl80211.h | 186 * preshared key authentication in station mode. In %NL80211_CMD_CONNECT
194 * handshakes during 802.1X authentication in station mode. In order to
202 * preshared key authentication in AP mode. In %NL80211_CMD_START_AP
214 * DOC: FILS shared key authentication offload
216 * FILS shared key authentication offload can be advertised by drivers by
218 * FILS shared key authentication offload should be able to construct the
219 * authentication and association frames for FILS shared key authentication and
227 * rIK should be used to generate an authentication tag on the ERP message and
232 * When FILS shared key authentication is completed, driver needs to provide the
252 * DOC: SAE authentication offload
[all …]
|
| /linux/drivers/target/iscsi/ |
| H A D | iscsi_target_tpg.c | 78 * By default we disable authentication for discovery sessions, in iscsit_load_discovery_tpg()
90 tpg->tpg_attrib.authentication = 0; in iscsit_load_discovery_tpg()
212 a->authentication = TA_AUTHENTICATION; in iscsit_set_default_tpg_attribs()
316 * unless explictly disabled. Set the default to CHAP if authentication in iscsit_tpg_enable_portal_group()
323 if (tpg->tpg_attrib.authentication) { in iscsit_tpg_enable_portal_group()
585 int iscsit_ta_authentication(struct iscsi_portal_group *tpg, u32 authentication) in iscsit_ta_authentication() argument
592 if ((authentication != 1) && (authentication != 0)) { in iscsit_ta_authentication()
593 pr_err("Illegal value for authentication parameter:" in iscsit_ta_authentication()
594 " %u, ignoring request.\n", authentication); in iscsit_ta_authentication()
605 if (authentication) { in iscsit_ta_authentication()
[all …]
|
| /linux/Documentation/driver-api/media/drivers/ |
| H A D | ipu6.rst | 31 interrupt handling, firmware authentication and global timer sync.
60 Security and firmware authentication
64 undergo an authentication process before it is allowed to executed on the IPU6
66 (CSE) to complete authentication process. The CSE is responsible of
68 into an isolated memory region. Firmware authentication process is implemented
122 metadata are defined by CSE and used by CSE for authentication. Module data is
127 ``FW_SOURCE_BASE`` register. Finally the CSE will do authentication for this
|
| /linux/Documentation/networking/ |
| H A D | tls-offload.rst | 54 On the receive side if the device handled decryption and authentication
133 * crypto processing state (partial blocks, partial authentication tag, etc.)
140 crypto operations and authentication regardless of segmentation. For this
146 * partial authentication tag (all data had been seen but part of the
147 authentication tag has to be written or read from the subsequent segment)
156 The kernel stack performs record framing reserving space for the authentication
167 The device performs encryption and authentication of the record data.
168 It replaces the authentication tag and TCP checksum with correct values.
180 decryption, authentication for each record in the packet). The device leaves
221 data (to be able to insert the authentication tag) and move onto handling
[all …]
|
| /linux/drivers/gpu/drm/amd/display/modules/hdcp/ |
| H A D | hdcp.c | 55 /* if all displays on the link don't need authentication, in is_cp_desired_hdcp1()
75 /* if all displays on the link don't need authentication, in is_cp_desired_hdcp2()
228 /* stop callback and watchdog requests from previous authentication*/ in reset_authentication()
348 /* reset existing authentication status */ in mod_hdcp_add_display()
367 /* request authentication */ in mod_hdcp_add_display()
394 /* stop current authentication */ in mod_hdcp_remove_display()
411 /* request authentication when connection is not reset */ in mod_hdcp_remove_display()
458 /* stop current authentication */ in mod_hdcp_update_display()
473 /* request authentication when connection is not reset */ in mod_hdcp_update_display()
560 /* reset authentication if needed */ in mod_hdcp_process_event()
|
| /linux/drivers/platform/x86/intel/ifs/ |
| H A D | load.c | 53 [2] = "Chunk authentication error. The hash of chunk did not match expected value",
56 [5] = "Authentication flow interrupted",
103 dev_err(dev, "invalid error code 0x%x for authentication\n", err_code); in auth_err_message()
105 dev_err(dev, "Chunk authentication error : %s\n", in auth_err_message()
113 * for scan hash copy and test chunk authentication.
147 /* scan data authentication and copy chunks to secured memory */ in copy_hashes_authenticate_chunks()
232 /* scan data authentication and copy chunks to secured memory */ in copy_hashes_authenticate_chunks_gen2()
321 * and proceed the authentication for the next chunk.
|
| /linux/Documentation/filesystems/nfs/ |
| H A D | rpc-server-gss.rst | 6 implement RPCGSS authentication in kernel RPC servers such as the NFS
9 purposes of authentication.)
23 The RPCGSS Authentication method describes a way to perform GSSAPI
24 Authentication for NFS. Although GSSAPI is itself completely mechanism
|
| /linux/drivers/crypto/intel/qat/qat_common/ |
| H A D | adf_gen4_tl.c | 72 /* Wireless Authentication slice utilization. */
80 /* Authentication slice utilization. */
94 /* Wireless Authentication slice execution count. */
102 /* Authentication slice execution count. */
|
| /linux/Documentation/devicetree/bindings/remoteproc/ |
| H A D | qcom,sm8550-pas.yaml | 7 title: Qualcomm SM8550 Peripheral Authentication Service
13 Qualcomm SM8550 SoC Peripheral Authentication Service loads and boots firmware
55 - description: Memory region for main Firmware authentication
56 - description: Memory region for Devicetree Firmware authentication
|
| H A D | qcom,sa8775p-pas.yaml | 7 title: Qualcomm SA8775p Peripheral Authentication Service
13 Qualcomm SA8775p SoC Peripheral Authentication Service loads and boots firmware
47 - description: Memory region for main Firmware authentication
|
| /linux/fs/ubifs/ |
| H A D | auth.c | 9 * This file implements various helper functions for UBIFS authentication support
52 * ubifs_prepare_auth_node - Prepare an authentication node
57 * This function prepares an authentication node for writing onto flash.
159 * Returns 0 if both hashes are equal or authentication is disabled, otherwise a
250 * ubifs_init_authentication - initialize UBIFS authentication support
263 ubifs_err(c, "authentication hash name needed with authentication"); in ubifs_init_authentication()
363 * This function releases the authentication related resources.
|
| /linux/Documentation/security/keys/ |
| H A D | ecryptfs.rst | 17 FEK decryption is called authentication token and, currently, can be stored in a
25 authentication token in its payload with a FEKEK randomly generated by the
30 authentication token, which content is well known, but only the FEKEK in
|
| /linux/arch/s390/include/asm/ |
| H A D | cpacf.h | 119 * function codes for the KMAC (COMPUTE MESSAGE AUTHENTICATION CODE)
163 * Function codes for the KMA (CIPHER MESSAGE WITH AUTHENTICATION)
172 * Flags for the KMA (CIPHER MESSAGE WITH AUTHENTICATION) instruction
187 * Function codes for KDSA (COMPUTE DIGITAL SIGNATURE AUTHENTICATION)
370 * cpacf_qai() - Get the query authentication information for a CPACF opcode
374 * Executes the query authentication information function for the given crypto
377 * On success 1 is returned and the mask is filled with the query authentication
506 * _cpacf_kmac() - executes the KMAC (COMPUTE MESSAGE AUTHENTICATION CODE)
537 * cpacf_kmac() - executes the KMAC (COMPUTE MESSAGE AUTHENTICATION CODE)
685 * cpacf_kma() - executes the KMA (CIPHER MESSAGE WITH AUTHENTICATION)
|
| /linux/drivers/gpu/drm/i915/gt/uc/ |
| H A D | intel_huc.c | 28 * triggering its security authentication. This is done differently depending
32 * and the authentication via GuC
33 * - DG2: load and authentication are both performed via GSC.
35 * not-DG2 older platforms), while the authentication is done in 2-steps,
39 * On platforms where the GuC does the authentication, to correctly do so the
479 * minimum frequency, the authentication time can be in the seconds range. in intel_huc_wait_for_auth_complete()
532 * @type: authentication type (via GuC or via GSC)
574 /* Check authentication status, it should be done by now */ in intel_huc_auth()
582 huc_probe_error(huc, "%s authentication failed %pe\n", in intel_huc_auth()
|