Blame SOURCES/macsec-0003-mka-Pass-full-structures-down-to-macsec-drivers-tran.patch

6c9f0c
From 909c1b9835ecc9c115980e9827a9313c17dab22b Mon Sep 17 00:00:00 2001
6c9f0c
Message-Id: <909c1b9835ecc9c115980e9827a9313c17dab22b.1488376601.git.dcaratti@redhat.com>
6c9f0c
From: Sabrina Dubroca <sd@queasysnail.net>
6c9f0c
Date: Tue, 20 Sep 2016 09:43:07 +0200
6c9f0c
Subject: [PATCH] mka: Pass full structures down to macsec drivers' transmit SA
6c9f0c
 ops
6c9f0c
6c9f0c
Clean up the driver interface by passing pointers to struct transmit_sa
6c9f0c
down the stack to the {create,enable,disable}_transmit_sa ops, instead
6c9f0c
of passing the individual properties of the SA.
6c9f0c
6c9f0c
Signed-off-by: Sabrina Dubroca <sd@queasysnail.net>
6c9f0c
---
6c9f0c
 src/drivers/driver.h            | 20 ++++++--------------
6c9f0c
 src/drivers/driver_macsec_qca.c | 39 +++++++++++++++++++++++----------------
6c9f0c
 src/pae/ieee802_1x_kay.h        |  7 +++----
6c9f0c
 src/pae/ieee802_1x_secy_ops.c   |  8 +++-----
6c9f0c
 wpa_supplicant/driver_i.h       | 16 ++++++----------
6c9f0c
 wpa_supplicant/wpas_kay.c       | 15 ++++++---------
6c9f0c
 6 files changed, 47 insertions(+), 58 deletions(-)
6c9f0c
6c9f0c
diff --git a/src/drivers/driver.h b/src/drivers/driver.h
6c9f0c
index 2c7ce6c..bb2d1d2 100644
6c9f0c
--- a/src/drivers/driver.h
6c9f0c
+++ b/src/drivers/driver.h
6c9f0c
@@ -3448,34 +3448,26 @@ struct wpa_driver_ops {
6c9f0c
 	/**
6c9f0c
 	 * create_transmit_sa - create secure association for transmit
6c9f0c
 	 * @priv: private driver interface data from init()
6c9f0c
-	 * @channel: secure channel index
6c9f0c
-	 * @an: association number
6c9f0c
-	 * @next_pn: the packet number used as next transmit packet
6c9f0c
-	 * @confidentiality: True if the SA is to provide confidentiality
6c9f0c
-	 *                   as well as integrity
6c9f0c
-	 * @sak: the secure association key
6c9f0c
+	 * @sa: secure association
6c9f0c
 	 * Returns: 0 on success, -1 on failure
6c9f0c
 	 */
6c9f0c
-	int (*create_transmit_sa)(void *priv, u32 channel, u8 an, u32 next_pn,
6c9f0c
-				  Boolean confidentiality, const u8 *sak);
6c9f0c
+	int (*create_transmit_sa)(void *priv, struct transmit_sa *sa);
6c9f0c
 
6c9f0c
 	/**
6c9f0c
 	 * enable_transmit_sa - enable SA for transmit
6c9f0c
 	 * @priv: private driver interface data from init()
6c9f0c
-	 * @channel: secure channel
6c9f0c
-	 * @an: association number
6c9f0c
+	 * @sa: secure association
6c9f0c
 	 * Returns: 0 on success, -1 on failure
6c9f0c
 	 */
6c9f0c
-	int (*enable_transmit_sa)(void *priv, u32 channel, u8 an);
6c9f0c
+	int (*enable_transmit_sa)(void *priv, struct transmit_sa *sa);
6c9f0c
 
6c9f0c
 	/**
6c9f0c
 	 * disable_transmit_sa - disable SA for transmit
6c9f0c
 	 * @priv: private driver interface data from init()
6c9f0c
-	 * @channel: secure channel
6c9f0c
-	 * @an: association number
6c9f0c
+	 * @sa: secure association
6c9f0c
 	 * Returns: 0 on success, -1 on failure
6c9f0c
 	 */
6c9f0c
-	int (*disable_transmit_sa)(void *priv, u32 channel, u8 an);
6c9f0c
+	int (*disable_transmit_sa)(void *priv, struct transmit_sa *sa);
6c9f0c
 #endif /* CONFIG_MACSEC */
6c9f0c
 
6c9f0c
 	/**
6c9f0c
diff --git a/src/drivers/driver_macsec_qca.c b/src/drivers/driver_macsec_qca.c
6c9f0c
index 95f1e27..9bfc9a4 100644
6c9f0c
--- a/src/drivers/driver_macsec_qca.c
6c9f0c
+++ b/src/drivers/driver_macsec_qca.c
6c9f0c
@@ -794,19 +794,18 @@ static int macsec_qca_delete_transmit_sc(void *priv, u32 channel)
6c9f0c
 }
6c9f0c
 
6c9f0c
 
6c9f0c
-static int macsec_qca_create_transmit_sa(void *priv, u32 channel, u8 an,
6c9f0c
-					 u32 next_pn, Boolean confidentiality,
6c9f0c
-					 const u8 *sak)
6c9f0c
+static int macsec_qca_create_transmit_sa(void *priv, struct transmit_sa *sa)
6c9f0c
 {
6c9f0c
 	struct macsec_qca_data *drv = priv;
6c9f0c
 	int ret = 0;
6c9f0c
 	u8 tci = 0;
6c9f0c
 	fal_tx_sak_t tx_sak;
6c9f0c
 	int i;
6c9f0c
+	u32 channel = sa->sc->channel;
6c9f0c
 
6c9f0c
 	wpa_printf(MSG_DEBUG,
6c9f0c
 		   "%s: channel=%d, an=%d, next_pn=0x%x, confidentiality=%d",
6c9f0c
-		   __func__, channel, an, next_pn, confidentiality);
6c9f0c
+		   __func__, channel, sa->an, sa->next_pn, sa->confidentiality);
6c9f0c
 
6c9f0c
 	if (drv->always_include_sci)
6c9f0c
 		tci |= TCI_SC;
6c9f0c
@@ -815,45 +814,53 @@ static int macsec_qca_create_transmit_sa(void *priv, u32 channel, u8 an,
6c9f0c
 	else if (drv->use_scb)
6c9f0c
 		tci |= TCI_SCB;
6c9f0c
 
6c9f0c
-	if (confidentiality)
6c9f0c
+	if (sa->confidentiality)
6c9f0c
 		tci |= TCI_E | TCI_C;
6c9f0c
 
6c9f0c
 	os_memset(&tx_sak, 0, sizeof(tx_sak));
6c9f0c
 	for (i = 0; i < 16; i++)
6c9f0c
-		tx_sak.sak[i] = sak[15 - i];
6c9f0c
+		tx_sak.sak[i] = sa->pkey->key[15 - i];
6c9f0c
 
6c9f0c
-	ret += nss_macsec_secy_tx_sa_next_pn_set(drv->secy_id, channel, an,
6c9f0c
-						 next_pn);
6c9f0c
-	ret += nss_macsec_secy_tx_sak_set(drv->secy_id, channel, an, &tx_sak);
6c9f0c
+	ret += nss_macsec_secy_tx_sa_next_pn_set(drv->secy_id, channel, sa->an,
6c9f0c
+						 sa->next_pn);
6c9f0c
+	ret += nss_macsec_secy_tx_sak_set(drv->secy_id, channel, sa->an,
6c9f0c
+					  &tx_sak);
6c9f0c
 	ret += nss_macsec_secy_tx_sc_tci_7_2_set(drv->secy_id, channel,
6c9f0c
 						 (tci >> 2));
6c9f0c
-	ret += nss_macsec_secy_tx_sc_an_set(drv->secy_id, channel, an);
6c9f0c
+	ret += nss_macsec_secy_tx_sc_an_set(drv->secy_id, channel, sa->an);
6c9f0c
 
6c9f0c
 	return ret;
6c9f0c
 }
6c9f0c
 
6c9f0c
 
6c9f0c
-static int macsec_qca_enable_transmit_sa(void *priv, u32 channel, u8 an)
6c9f0c
+static int macsec_qca_enable_transmit_sa(void *priv, struct transmit_sa *sa)
6c9f0c
 {
6c9f0c
 	struct macsec_qca_data *drv = priv;
6c9f0c
 	int ret = 0;
6c9f0c
+	u32 channel = sa->sc->channel;
6c9f0c
 
6c9f0c
-	wpa_printf(MSG_DEBUG, "%s: channel=%d, an=%d", __func__, channel, an);
6c9f0c
 
6c9f0c
-	ret += nss_macsec_secy_tx_sa_en_set(drv->secy_id, channel, an, TRUE);
6c9f0c
+	wpa_printf(MSG_DEBUG, "%s: channel=%d, an=%d", __func__, channel,
6c9f0c
+		   sa->an);
6c9f0c
+
6c9f0c
+	ret += nss_macsec_secy_tx_sa_en_set(drv->secy_id, channel, sa->an,
6c9f0c
+					    TRUE);
6c9f0c
 
6c9f0c
 	return ret;
6c9f0c
 }
6c9f0c
 
6c9f0c
 
6c9f0c
-static int macsec_qca_disable_transmit_sa(void *priv, u32 channel, u8 an)
6c9f0c
+static int macsec_qca_disable_transmit_sa(void *priv, struct transmit_sa *sa)
6c9f0c
 {
6c9f0c
 	struct macsec_qca_data *drv = priv;
6c9f0c
 	int ret = 0;
6c9f0c
+	u32 channel = sa->sc->channel;
6c9f0c
 
6c9f0c
-	wpa_printf(MSG_DEBUG, "%s: channel=%d, an=%d", __func__, channel, an);
6c9f0c
+	wpa_printf(MSG_DEBUG, "%s: channel=%d, an=%d", __func__, channel,
6c9f0c
+		   sa->an);
6c9f0c
 
6c9f0c
-	ret += nss_macsec_secy_tx_sa_en_set(drv->secy_id, channel, an, FALSE);
6c9f0c
+	ret += nss_macsec_secy_tx_sa_en_set(drv->secy_id, channel, sa->an,
6c9f0c
+					    FALSE);
6c9f0c
 
6c9f0c
 	return ret;
6c9f0c
 }
6c9f0c
diff --git a/src/pae/ieee802_1x_kay.h b/src/pae/ieee802_1x_kay.h
6c9f0c
index a747b11..36a7bd6 100644
6c9f0c
--- a/src/pae/ieee802_1x_kay.h
6c9f0c
+++ b/src/pae/ieee802_1x_kay.h
6c9f0c
@@ -160,10 +160,9 @@ struct ieee802_1x_kay_ctx {
6c9f0c
 				  const struct ieee802_1x_mka_sci *sci,
6c9f0c
 				  enum confidentiality_offset co);
6c9f0c
 	int (*delete_transmit_sc)(void *ctx, u32 channel);
6c9f0c
-	int (*create_transmit_sa)(void *ctx, u32 channel, u8 an, u32 next_pn,
6c9f0c
-				  Boolean confidentiality, const u8 *sak);
6c9f0c
-	int (*enable_transmit_sa)(void *ctx, u32 channel, u8 an);
6c9f0c
-	int (*disable_transmit_sa)(void *ctx, u32 channel, u8 an);
6c9f0c
+	int (*create_transmit_sa)(void *ctx, struct transmit_sa *sa);
6c9f0c
+	int (*enable_transmit_sa)(void *ctx, struct transmit_sa *sa);
6c9f0c
+	int (*disable_transmit_sa)(void *ctx, struct transmit_sa *sa);
6c9f0c
 };
6c9f0c
 
6c9f0c
 struct ieee802_1x_kay {
6c9f0c
diff --git a/src/pae/ieee802_1x_secy_ops.c b/src/pae/ieee802_1x_secy_ops.c
6c9f0c
index d05e00f..8c31ca9 100644
6c9f0c
--- a/src/pae/ieee802_1x_secy_ops.c
6c9f0c
+++ b/src/pae/ieee802_1x_secy_ops.c
6c9f0c
@@ -382,9 +382,7 @@ int secy_create_transmit_sa(struct ieee802_1x_kay *kay,
6c9f0c
 		return -1;
6c9f0c
 	}
6c9f0c
 
6c9f0c
-	return ops->create_transmit_sa(ops->ctx, txsa->sc->channel, txsa->an,
6c9f0c
-					txsa->next_pn, txsa->confidentiality,
6c9f0c
-					txsa->pkey->key);
6c9f0c
+	return ops->create_transmit_sa(ops->ctx, txsa);
6c9f0c
 }
6c9f0c
 
6c9f0c
 
6c9f0c
@@ -407,7 +405,7 @@ int secy_enable_transmit_sa(struct ieee802_1x_kay *kay,
6c9f0c
 
6c9f0c
 	txsa->enable_transmit = TRUE;
6c9f0c
 
6c9f0c
-	return ops->enable_transmit_sa(ops->ctx, txsa->sc->channel, txsa->an);
6c9f0c
+	return ops->enable_transmit_sa(ops->ctx, txsa);
6c9f0c
 }
6c9f0c
 
6c9f0c
 
6c9f0c
@@ -430,7 +428,7 @@ int secy_disable_transmit_sa(struct ieee802_1x_kay *kay,
6c9f0c
 
6c9f0c
 	txsa->enable_transmit = FALSE;
6c9f0c
 
6c9f0c
-	return ops->disable_transmit_sa(ops->ctx, txsa->sc->channel, txsa->an);
6c9f0c
+	return ops->disable_transmit_sa(ops->ctx, txsa);
6c9f0c
 }
6c9f0c
 
6c9f0c
 
6c9f0c
diff --git a/wpa_supplicant/driver_i.h b/wpa_supplicant/driver_i.h
6c9f0c
index 639bb83..e2c2bd7 100644
6c9f0c
--- a/wpa_supplicant/driver_i.h
6c9f0c
+++ b/wpa_supplicant/driver_i.h
6c9f0c
@@ -857,31 +857,27 @@ static inline int wpa_drv_delete_transmit_sc(struct wpa_supplicant *wpa_s,
6c9f0c
 }
6c9f0c
 
6c9f0c
 static inline int wpa_drv_create_transmit_sa(struct wpa_supplicant *wpa_s,
6c9f0c
-					     u32 channel, u8 an,
6c9f0c
-					     u32 next_pn,
6c9f0c
-					     Boolean confidentiality,
6c9f0c
-					     const u8 *sak)
6c9f0c
+					     struct transmit_sa *sa)
6c9f0c
 {
6c9f0c
 	if (!wpa_s->driver->create_transmit_sa)
6c9f0c
 		return -1;
6c9f0c
-	return wpa_s->driver->create_transmit_sa(wpa_s->drv_priv, channel, an,
6c9f0c
-						 next_pn, confidentiality, sak);
6c9f0c
+	return wpa_s->driver->create_transmit_sa(wpa_s->drv_priv, sa);
6c9f0c
 }
6c9f0c
 
6c9f0c
 static inline int wpa_drv_enable_transmit_sa(struct wpa_supplicant *wpa_s,
6c9f0c
-					     u32 channel, u8 an)
6c9f0c
+					     struct transmit_sa *sa)
6c9f0c
 {
6c9f0c
 	if (!wpa_s->driver->enable_transmit_sa)
6c9f0c
 		return -1;
6c9f0c
-	return wpa_s->driver->enable_transmit_sa(wpa_s->drv_priv, channel, an);
6c9f0c
+	return wpa_s->driver->enable_transmit_sa(wpa_s->drv_priv, sa);
6c9f0c
 }
6c9f0c
 
6c9f0c
 static inline int wpa_drv_disable_transmit_sa(struct wpa_supplicant *wpa_s,
6c9f0c
-					      u32 channel, u8 an)
6c9f0c
+					      struct transmit_sa *sa)
6c9f0c
 {
6c9f0c
 	if (!wpa_s->driver->disable_transmit_sa)
6c9f0c
 		return -1;
6c9f0c
-	return wpa_s->driver->disable_transmit_sa(wpa_s->drv_priv, channel, an);
6c9f0c
+	return wpa_s->driver->disable_transmit_sa(wpa_s->drv_priv, sa);
6c9f0c
 }
6c9f0c
 #endif /* CONFIG_MACSEC */
6c9f0c
 
6c9f0c
diff --git a/wpa_supplicant/wpas_kay.c b/wpa_supplicant/wpas_kay.c
6c9f0c
index 306d9f1..4b74112 100644
6c9f0c
--- a/wpa_supplicant/wpas_kay.c
6c9f0c
+++ b/wpa_supplicant/wpas_kay.c
6c9f0c
@@ -159,24 +159,21 @@ static int wpas_delete_transmit_sc(void *wpa_s, u32 channel)
6c9f0c
 }
6c9f0c
 
6c9f0c
 
6c9f0c
-static int wpas_create_transmit_sa(void *wpa_s, u32 channel, u8 an,
6c9f0c
-				   u32 next_pn, Boolean confidentiality,
6c9f0c
-				   const u8 *sak)
6c9f0c
+static int wpas_create_transmit_sa(void *wpa_s, struct transmit_sa *sa)
6c9f0c
 {
6c9f0c
-	return wpa_drv_create_transmit_sa(wpa_s, channel, an, next_pn,
6c9f0c
-					  confidentiality, sak);
6c9f0c
+	return wpa_drv_create_transmit_sa(wpa_s, sa);
6c9f0c
 }
6c9f0c
 
6c9f0c
 
6c9f0c
-static int wpas_enable_transmit_sa(void *wpa_s, u32 channel, u8 an)
6c9f0c
+static int wpas_enable_transmit_sa(void *wpa_s, struct transmit_sa *sa)
6c9f0c
 {
6c9f0c
-	return wpa_drv_enable_transmit_sa(wpa_s, channel, an);
6c9f0c
+	return wpa_drv_enable_transmit_sa(wpa_s, sa);
6c9f0c
 }
6c9f0c
 
6c9f0c
 
6c9f0c
-static int wpas_disable_transmit_sa(void *wpa_s, u32 channel, u8 an)
6c9f0c
+static int wpas_disable_transmit_sa(void *wpa_s, struct transmit_sa *sa)
6c9f0c
 {
6c9f0c
-	return wpa_drv_disable_transmit_sa(wpa_s, channel, an);
6c9f0c
+	return wpa_drv_disable_transmit_sa(wpa_s, sa);
6c9f0c
 }
6c9f0c
 
6c9f0c
 
6c9f0c
-- 
6c9f0c
2.7.4
6c9f0c