#include <linux/types.h>
#include <linux/skbuff.h>
#include <linux/socket.h>
#include <linux/module.h>
#include <crypto/aead.h>
#include <linux/etherdevice.h>
#include <linux/netdevice.h>
#include <linux/rtnetlink.h>
#include <linux/refcount.h>
#include <net/genetlink.h>
#include <net/sock.h>
#include <net/gro_cells.h>
#include <net/macsec.h>
#include <net/dst_metadata.h>
#include <linux/phy.h>
#include <linux/byteorder/generic.h>
#include <linux/if_arp.h>
#include <uapi/linux/if_macsec.h>
#define MACSEC_TAG_LEN …
struct macsec_eth_header { … } __packed;
#define MIN_NON_SHORT_LEN …
#define GCM_AES_IV_LEN …
#define for_each_rxsc(secy, sc) …
#define for_each_rxsc_rtnl(secy, sc) …
#define pn_same_half(pn1, pn2) …
struct gcm_iv_xpn { … } __packed;
struct gcm_iv { … };
#define MACSEC_VALIDATE_DEFAULT …
struct pcpu_secy_stats { … };
struct macsec_dev { … };
struct macsec_rxh_data { … };
static struct macsec_dev *macsec_priv(const struct net_device *dev)
{ … }
static struct macsec_rxh_data *macsec_data_rcu(const struct net_device *dev)
{ … }
static struct macsec_rxh_data *macsec_data_rtnl(const struct net_device *dev)
{ … }
struct macsec_cb { … };
static struct macsec_rx_sa *macsec_rxsa_get(struct macsec_rx_sa __rcu *ptr)
{ … }
static void free_rx_sc_rcu(struct rcu_head *head)
{ … }
static struct macsec_rx_sc *macsec_rxsc_get(struct macsec_rx_sc *sc)
{ … }
static void macsec_rxsc_put(struct macsec_rx_sc *sc)
{ … }
static void free_rxsa(struct rcu_head *head)
{ … }
static void macsec_rxsa_put(struct macsec_rx_sa *sa)
{ … }
static struct macsec_tx_sa *macsec_txsa_get(struct macsec_tx_sa __rcu *ptr)
{ … }
static void free_txsa(struct rcu_head *head)
{ … }
static void macsec_txsa_put(struct macsec_tx_sa *sa)
{ … }
static struct macsec_cb *macsec_skb_cb(struct sk_buff *skb)
{ … }
#define MACSEC_PORT_SCB …
#define MACSEC_UNDEF_SCI …
#define MACSEC_UNDEF_SSCI …
#define MACSEC_GCM_AES_128_SAK_LEN …
#define MACSEC_GCM_AES_256_SAK_LEN …
#define DEFAULT_SAK_LEN …
#define DEFAULT_XPN …
#define DEFAULT_SEND_SCI …
#define DEFAULT_ENCRYPT …
#define DEFAULT_ENCODING_SA …
#define MACSEC_XPN_MAX_REPLAY_WINDOW …
static sci_t make_sci(const u8 *addr, __be16 port)
{ … }
static sci_t macsec_frame_sci(struct macsec_eth_header *hdr, bool sci_present)
{ … }
static unsigned int macsec_sectag_len(bool sci_present)
{ … }
static unsigned int macsec_hdr_len(bool sci_present)
{ … }
static unsigned int macsec_extra_len(bool sci_present)
{ … }
static void macsec_fill_sectag(struct macsec_eth_header *h,
const struct macsec_secy *secy, u32 pn,
bool sci_present)
{ … }
static void macsec_set_shortlen(struct macsec_eth_header *h, size_t data_len)
{ … }
static bool macsec_is_offloaded(struct macsec_dev *macsec)
{ … }
static bool macsec_check_offload(enum macsec_offload offload,
struct macsec_dev *macsec)
{ … }
static const struct macsec_ops *__macsec_get_ops(enum macsec_offload offload,
struct macsec_dev *macsec,
struct macsec_context *ctx)
{ … }
static const struct macsec_ops *macsec_get_ops(struct macsec_dev *macsec,
struct macsec_context *ctx)
{ … }
static bool macsec_validate_skb(struct sk_buff *skb, u16 icv_len, bool xpn)
{ … }
#define MACSEC_NEEDED_HEADROOM …
#define MACSEC_NEEDED_TAILROOM …
static void macsec_fill_iv_xpn(unsigned char *iv, ssci_t ssci, u64 pn,
salt_t salt)
{ … }
static void macsec_fill_iv(unsigned char *iv, sci_t sci, u32 pn)
{ … }
static struct macsec_eth_header *macsec_ethhdr(struct sk_buff *skb)
{ … }
static void __macsec_pn_wrapped(struct macsec_secy *secy,
struct macsec_tx_sa *tx_sa)
{ … }
void macsec_pn_wrapped(struct macsec_secy *secy, struct macsec_tx_sa *tx_sa)
{ … }
EXPORT_SYMBOL_GPL(…);
static pn_t tx_sa_update_pn(struct macsec_tx_sa *tx_sa,
struct macsec_secy *secy)
{ … }
static void macsec_encrypt_finish(struct sk_buff *skb, struct net_device *dev)
{ … }
static unsigned int macsec_msdu_len(struct sk_buff *skb)
{ … }
static void macsec_count_tx(struct sk_buff *skb, struct macsec_tx_sc *tx_sc,
struct macsec_tx_sa *tx_sa)
{ … }
static void count_tx(struct net_device *dev, int ret, int len)
{ … }
static void macsec_encrypt_done(void *data, int err)
{ … }
static struct aead_request *macsec_alloc_req(struct crypto_aead *tfm,
unsigned char **iv,
struct scatterlist **sg,
int num_frags)
{ … }
static struct sk_buff *macsec_encrypt(struct sk_buff *skb,
struct net_device *dev)
{ … }
static bool macsec_post_decrypt(struct sk_buff *skb, struct macsec_secy *secy, u32 pn)
{ … }
static void macsec_reset_skb(struct sk_buff *skb, struct net_device *dev)
{ … }
static void macsec_finalize_skb(struct sk_buff *skb, u8 icv_len, u8 hdr_len)
{ … }
static void count_rx(struct net_device *dev, int len)
{ … }
static void macsec_decrypt_done(void *data, int err)
{ … }
static struct sk_buff *macsec_decrypt(struct sk_buff *skb,
struct net_device *dev,
struct macsec_rx_sa *rx_sa,
sci_t sci,
struct macsec_secy *secy)
{ … }
static struct macsec_rx_sc *find_rx_sc(struct macsec_secy *secy, sci_t sci)
{ … }
static struct macsec_rx_sc *find_rx_sc_rtnl(struct macsec_secy *secy, sci_t sci)
{ … }
static enum rx_handler_result handle_not_macsec(struct sk_buff *skb)
{ … }
static rx_handler_result_t macsec_handle_frame(struct sk_buff **pskb)
{ … }
static struct crypto_aead *macsec_alloc_tfm(char *key, int key_len, int icv_len)
{ … }
static int init_rx_sa(struct macsec_rx_sa *rx_sa, char *sak, int key_len,
int icv_len)
{ … }
static void clear_rx_sa(struct macsec_rx_sa *rx_sa)
{ … }
static void free_rx_sc(struct macsec_rx_sc *rx_sc)
{ … }
static struct macsec_rx_sc *del_rx_sc(struct macsec_secy *secy, sci_t sci)
{ … }
static struct macsec_rx_sc *create_rx_sc(struct net_device *dev, sci_t sci,
bool active)
{ … }
static int init_tx_sa(struct macsec_tx_sa *tx_sa, char *sak, int key_len,
int icv_len)
{ … }
static void clear_tx_sa(struct macsec_tx_sa *tx_sa)
{ … }
static struct genl_family macsec_fam;
static struct net_device *get_dev_from_nl(struct net *net,
struct nlattr **attrs)
{ … }
static enum macsec_offload nla_get_offload(const struct nlattr *nla)
{ … }
static sci_t nla_get_sci(const struct nlattr *nla)
{ … }
static int nla_put_sci(struct sk_buff *skb, int attrtype, sci_t value,
int padattr)
{ … }
static ssci_t nla_get_ssci(const struct nlattr *nla)
{ … }
static int nla_put_ssci(struct sk_buff *skb, int attrtype, ssci_t value)
{ … }
static struct macsec_tx_sa *get_txsa_from_nl(struct net *net,
struct nlattr **attrs,
struct nlattr **tb_sa,
struct net_device **devp,
struct macsec_secy **secyp,
struct macsec_tx_sc **scp,
u8 *assoc_num)
{ … }
static struct macsec_rx_sc *get_rxsc_from_nl(struct net *net,
struct nlattr **attrs,
struct nlattr **tb_rxsc,
struct net_device **devp,
struct macsec_secy **secyp)
{ … }
static struct macsec_rx_sa *get_rxsa_from_nl(struct net *net,
struct nlattr **attrs,
struct nlattr **tb_rxsc,
struct nlattr **tb_sa,
struct net_device **devp,
struct macsec_secy **secyp,
struct macsec_rx_sc **scp,
u8 *assoc_num)
{ … }
static const struct nla_policy macsec_genl_policy[NUM_MACSEC_ATTR] = …;
static const struct nla_policy macsec_genl_rxsc_policy[NUM_MACSEC_RXSC_ATTR] = …;
static const struct nla_policy macsec_genl_sa_policy[NUM_MACSEC_SA_ATTR] = …;
static const struct nla_policy macsec_genl_offload_policy[NUM_MACSEC_OFFLOAD_ATTR] = …;
static int macsec_offload(int (* const func)(struct macsec_context *),
struct macsec_context *ctx)
{ … }
static int parse_sa_config(struct nlattr **attrs, struct nlattr **tb_sa)
{ … }
static int parse_rxsc_config(struct nlattr **attrs, struct nlattr **tb_rxsc)
{ … }
static bool validate_add_rxsa(struct nlattr **attrs)
{ … }
static int macsec_add_rxsa(struct sk_buff *skb, struct genl_info *info)
{ … }
static bool validate_add_rxsc(struct nlattr **attrs)
{ … }
static int macsec_add_rxsc(struct sk_buff *skb, struct genl_info *info)
{ … }
static bool validate_add_txsa(struct nlattr **attrs)
{ … }
static int macsec_add_txsa(struct sk_buff *skb, struct genl_info *info)
{ … }
static int macsec_del_rxsa(struct sk_buff *skb, struct genl_info *info)
{ … }
static int macsec_del_rxsc(struct sk_buff *skb, struct genl_info *info)
{ … }
static int macsec_del_txsa(struct sk_buff *skb, struct genl_info *info)
{ … }
static bool validate_upd_sa(struct nlattr **attrs)
{ … }
static int macsec_upd_txsa(struct sk_buff *skb, struct genl_info *info)
{ … }
static int macsec_upd_rxsa(struct sk_buff *skb, struct genl_info *info)
{ … }
static int macsec_upd_rxsc(struct sk_buff *skb, struct genl_info *info)
{ … }
static bool macsec_is_configured(struct macsec_dev *macsec)
{ … }
static bool macsec_needs_tx_tag(struct macsec_dev *macsec,
const struct macsec_ops *ops)
{ … }
static void macsec_set_head_tail_room(struct net_device *dev)
{ … }
static int macsec_update_offload(struct net_device *dev, enum macsec_offload offload)
{ … }
static int macsec_upd_offload(struct sk_buff *skb, struct genl_info *info)
{ … }
static void get_tx_sa_stats(struct net_device *dev, int an,
struct macsec_tx_sa *tx_sa,
struct macsec_tx_sa_stats *sum)
{ … }
static int copy_tx_sa_stats(struct sk_buff *skb, struct macsec_tx_sa_stats *sum)
{ … }
static void get_rx_sa_stats(struct net_device *dev,
struct macsec_rx_sc *rx_sc, int an,
struct macsec_rx_sa *rx_sa,
struct macsec_rx_sa_stats *sum)
{ … }
static int copy_rx_sa_stats(struct sk_buff *skb,
struct macsec_rx_sa_stats *sum)
{ … }
static void get_rx_sc_stats(struct net_device *dev,
struct macsec_rx_sc *rx_sc,
struct macsec_rx_sc_stats *sum)
{ … }
static int copy_rx_sc_stats(struct sk_buff *skb, struct macsec_rx_sc_stats *sum)
{ … }
static void get_tx_sc_stats(struct net_device *dev,
struct macsec_tx_sc_stats *sum)
{ … }
static int copy_tx_sc_stats(struct sk_buff *skb, struct macsec_tx_sc_stats *sum)
{ … }
static void get_secy_stats(struct net_device *dev, struct macsec_dev_stats *sum)
{ … }
static int copy_secy_stats(struct sk_buff *skb, struct macsec_dev_stats *sum)
{ … }
static int nla_put_secy(struct macsec_secy *secy, struct sk_buff *skb)
{ … }
static noinline_for_stack int
dump_secy(struct macsec_secy *secy, struct net_device *dev,
struct sk_buff *skb, struct netlink_callback *cb)
{ … }
static int macsec_generation = …;
static int macsec_dump_txsc(struct sk_buff *skb, struct netlink_callback *cb)
{ … }
static const struct genl_small_ops macsec_genl_ops[] = …;
static struct genl_family macsec_fam __ro_after_init = …;
static struct sk_buff *macsec_insert_tx_tag(struct sk_buff *skb,
struct net_device *dev)
{ … }
static netdev_tx_t macsec_start_xmit(struct sk_buff *skb,
struct net_device *dev)
{ … }
#define MACSEC_FEATURES …
static int macsec_dev_init(struct net_device *dev)
{ … }
static void macsec_dev_uninit(struct net_device *dev)
{ … }
static netdev_features_t macsec_fix_features(struct net_device *dev,
netdev_features_t features)
{ … }
static int macsec_dev_open(struct net_device *dev)
{ … }
static int macsec_dev_stop(struct net_device *dev)
{ … }
static void macsec_dev_change_rx_flags(struct net_device *dev, int change)
{ … }
static void macsec_dev_set_rx_mode(struct net_device *dev)
{ … }
static int macsec_set_mac_address(struct net_device *dev, void *p)
{ … }
static int macsec_change_mtu(struct net_device *dev, int new_mtu)
{ … }
static void macsec_get_stats64(struct net_device *dev,
struct rtnl_link_stats64 *s)
{ … }
static int macsec_get_iflink(const struct net_device *dev)
{ … }
static const struct net_device_ops macsec_netdev_ops = …;
static const struct device_type macsec_type = …;
static const struct nla_policy macsec_rtnl_policy[IFLA_MACSEC_MAX + 1] = …;
static void macsec_free_netdev(struct net_device *dev)
{ … }
static void macsec_setup(struct net_device *dev)
{ … }
static int macsec_changelink_common(struct net_device *dev,
struct nlattr *data[])
{ … }
static int macsec_changelink(struct net_device *dev, struct nlattr *tb[],
struct nlattr *data[],
struct netlink_ext_ack *extack)
{ … }
static void macsec_del_dev(struct macsec_dev *macsec)
{ … }
static void macsec_common_dellink(struct net_device *dev, struct list_head *head)
{ … }
static void macsec_dellink(struct net_device *dev, struct list_head *head)
{ … }
static int register_macsec_dev(struct net_device *real_dev,
struct net_device *dev)
{ … }
static bool sci_exists(struct net_device *dev, sci_t sci)
{ … }
static sci_t dev_to_sci(struct net_device *dev, __be16 port)
{ … }
static int macsec_add_dev(struct net_device *dev, sci_t sci, u8 icv_len)
{ … }
static struct lock_class_key macsec_netdev_addr_lock_key;
static int macsec_newlink(struct net *net, struct net_device *dev,
struct nlattr *tb[], struct nlattr *data[],
struct netlink_ext_ack *extack)
{ … }
static int macsec_validate_attr(struct nlattr *tb[], struct nlattr *data[],
struct netlink_ext_ack *extack)
{ … }
static struct net *macsec_get_link_net(const struct net_device *dev)
{ … }
struct net_device *macsec_get_real_dev(const struct net_device *dev)
{ … }
EXPORT_SYMBOL_GPL(…);
bool macsec_netdev_is_offloaded(struct net_device *dev)
{ … }
EXPORT_SYMBOL_GPL(…);
static size_t macsec_get_size(const struct net_device *dev)
{ … }
static int macsec_fill_info(struct sk_buff *skb,
const struct net_device *dev)
{ … }
static struct rtnl_link_ops macsec_link_ops __read_mostly = …;
static bool is_macsec_master(struct net_device *dev)
{ … }
static int macsec_notify(struct notifier_block *this, unsigned long event,
void *ptr)
{ … }
static struct notifier_block macsec_notifier = …;
static int __init macsec_init(void)
{ … }
static void __exit macsec_exit(void)
{ … }
module_init(…) …;
module_exit(macsec_exit);
MODULE_ALIAS_RTNL_LINK(…) …;
MODULE_ALIAS_GENL_FAMILY(…) …;
MODULE_DESCRIPTION(…) …;
MODULE_LICENSE(…) …;