|
|
6c9f0c |
From cecdecdbe81c9ca86127413c6559be2d3ffcabd3 Mon Sep 17 00:00:00 2001
|
|
|
6c9f0c |
Message-Id: <cecdecdbe81c9ca86127413c6559be2d3ffcabd3.1488376601.git.dcaratti@redhat.com>
|
|
|
6c9f0c |
From: Sabrina Dubroca <sd@queasysnail.net>
|
|
|
6c9f0c |
Date: Tue, 20 Sep 2016 09:43:09 +0200
|
|
|
6c9f0c |
Subject: [PATCH] mka: Pass full structures down to macsec drivers' receive SA
|
|
|
6c9f0c |
ops
|
|
|
6c9f0c |
|
|
|
6c9f0c |
Clean up the driver interface by passing pointers to struct receive_sa
|
|
|
6c9f0c |
down the stack to the {create,enable,disable}_receive_sa() ops, instead
|
|
|
6c9f0c |
of passing the individual properties of the SA.
|
|
|
6c9f0c |
|
|
|
6c9f0c |
Signed-off-by: Sabrina Dubroca <sd@queasysnail.net>
|
|
|
6c9f0c |
---
|
|
|
6c9f0c |
src/drivers/driver.h | 18 ++++++------------
|
|
|
6c9f0c |
src/drivers/driver_macsec_qca.c | 32 ++++++++++++++++++++------------
|
|
|
6c9f0c |
src/pae/ieee802_1x_kay.h | 7 +++----
|
|
|
6c9f0c |
src/pae/ieee802_1x_secy_ops.c | 7 +++----
|
|
|
6c9f0c |
wpa_supplicant/driver_i.h | 14 ++++++--------
|
|
|
6c9f0c |
wpa_supplicant/wpas_kay.c | 13 ++++++-------
|
|
|
6c9f0c |
6 files changed, 44 insertions(+), 47 deletions(-)
|
|
|
6c9f0c |
|
|
|
6c9f0c |
diff --git a/src/drivers/driver.h b/src/drivers/driver.h
|
|
|
6c9f0c |
index bb2d1d2..f1915fc 100644
|
|
|
6c9f0c |
--- a/src/drivers/driver.h
|
|
|
6c9f0c |
+++ b/src/drivers/driver.h
|
|
|
6c9f0c |
@@ -3391,32 +3391,26 @@ struct wpa_driver_ops {
|
|
|
6c9f0c |
/**
|
|
|
6c9f0c |
* create_receive_sa - create secure association for receive
|
|
|
6c9f0c |
* @priv: private driver interface data from init()
|
|
|
6c9f0c |
- * @channel: secure channel
|
|
|
6c9f0c |
- * @an: association number
|
|
|
6c9f0c |
- * @lowest_pn: the lowest packet number can be received
|
|
|
6c9f0c |
- * @sak: the secure association key
|
|
|
6c9f0c |
+ * @sa: secure association
|
|
|
6c9f0c |
* Returns: 0 on success, -1 on failure
|
|
|
6c9f0c |
*/
|
|
|
6c9f0c |
- int (*create_receive_sa)(void *priv, u32 channel, u8 an,
|
|
|
6c9f0c |
- u32 lowest_pn, const u8 *sak);
|
|
|
6c9f0c |
+ int (*create_receive_sa)(void *priv, struct receive_sa *sa);
|
|
|
6c9f0c |
|
|
|
6c9f0c |
/**
|
|
|
6c9f0c |
* enable_receive_sa - enable the SA for receive
|
|
|
6c9f0c |
* @priv: private driver interface data from init()
|
|
|
6c9f0c |
- * @channel: secure channel
|
|
|
6c9f0c |
- * @an: association number
|
|
|
6c9f0c |
+ * @sa: secure association
|
|
|
6c9f0c |
* Returns: 0 on success, -1 on failure
|
|
|
6c9f0c |
*/
|
|
|
6c9f0c |
- int (*enable_receive_sa)(void *priv, u32 channel, u8 an);
|
|
|
6c9f0c |
+ int (*enable_receive_sa)(void *priv, struct receive_sa *sa);
|
|
|
6c9f0c |
|
|
|
6c9f0c |
/**
|
|
|
6c9f0c |
* disable_receive_sa - disable SA for receive
|
|
|
6c9f0c |
* @priv: private driver interface data from init()
|
|
|
6c9f0c |
- * @channel: secure channel index
|
|
|
6c9f0c |
- * @an: association number
|
|
|
6c9f0c |
+ * @sa: secure association
|
|
|
6c9f0c |
* Returns: 0 on success, -1 on failure
|
|
|
6c9f0c |
*/
|
|
|
6c9f0c |
- int (*disable_receive_sa)(void *priv, u32 channel, u8 an);
|
|
|
6c9f0c |
+ int (*disable_receive_sa)(void *priv, struct receive_sa *sa);
|
|
|
6c9f0c |
|
|
|
6c9f0c |
/**
|
|
|
6c9f0c |
* get_available_transmit_sc - get available transmit channel
|
|
|
6c9f0c |
diff --git a/src/drivers/driver_macsec_qca.c b/src/drivers/driver_macsec_qca.c
|
|
|
6c9f0c |
index 9bfc9a4..2867c31 100644
|
|
|
6c9f0c |
--- a/src/drivers/driver_macsec_qca.c
|
|
|
6c9f0c |
+++ b/src/drivers/driver_macsec_qca.c
|
|
|
6c9f0c |
@@ -667,49 +667,57 @@ static int macsec_qca_delete_receive_sc(void *priv, u32 channel)
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
|
|
|
6c9f0c |
-static int macsec_qca_create_receive_sa(void *priv, u32 channel, u8 an,
|
|
|
6c9f0c |
- u32 lowest_pn, const u8 *sak)
|
|
|
6c9f0c |
+static int macsec_qca_create_receive_sa(void *priv, struct receive_sa *sa)
|
|
|
6c9f0c |
{
|
|
|
6c9f0c |
struct macsec_qca_data *drv = priv;
|
|
|
6c9f0c |
int ret = 0;
|
|
|
6c9f0c |
fal_rx_sak_t rx_sak;
|
|
|
6c9f0c |
int i = 0;
|
|
|
6c9f0c |
+ u32 channel = sa->sc->channel;
|
|
|
6c9f0c |
|
|
|
6c9f0c |
wpa_printf(MSG_DEBUG, "%s, channel=%d, an=%d, lpn=0x%x",
|
|
|
6c9f0c |
- __func__, channel, an, lowest_pn);
|
|
|
6c9f0c |
+ __func__, channel, sa->an, sa->lowest_pn);
|
|
|
6c9f0c |
|
|
|
6c9f0c |
os_memset(&rx_sak, 0, sizeof(rx_sak));
|
|
|
6c9f0c |
for (i = 0; i < 16; i++)
|
|
|
6c9f0c |
- rx_sak.sak[i] = sak[15 - i];
|
|
|
6c9f0c |
+ rx_sak.sak[i] = sa->pkey->key[15 - i];
|
|
|
6c9f0c |
|
|
|
6c9f0c |
- ret += nss_macsec_secy_rx_sa_create(drv->secy_id, channel, an);
|
|
|
6c9f0c |
- ret += nss_macsec_secy_rx_sak_set(drv->secy_id, channel, an, &rx_sak);
|
|
|
6c9f0c |
+ ret += nss_macsec_secy_rx_sa_create(drv->secy_id, channel, sa->an);
|
|
|
6c9f0c |
+ ret += nss_macsec_secy_rx_sak_set(drv->secy_id, channel, sa->an,
|
|
|
6c9f0c |
+ &rx_sak);
|
|
|
6c9f0c |
|
|
|
6c9f0c |
return ret;
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
|
|
|
6c9f0c |
-static int macsec_qca_enable_receive_sa(void *priv, u32 channel, u8 an)
|
|
|
6c9f0c |
+static int macsec_qca_enable_receive_sa(void *priv, struct receive_sa *sa)
|
|
|
6c9f0c |
{
|
|
|
6c9f0c |
struct macsec_qca_data *drv = priv;
|
|
|
6c9f0c |
int ret = 0;
|
|
|
6c9f0c |
+ u32 channel = sa->sc->channel;
|
|
|
6c9f0c |
+
|
|
|
6c9f0c |
|
|
|
6c9f0c |
- wpa_printf(MSG_DEBUG, "%s: channel=%d, an=%d", __func__, channel, an);
|
|
|
6c9f0c |
+ wpa_printf(MSG_DEBUG, "%s: channel=%d, an=%d", __func__, channel,
|
|
|
6c9f0c |
+ sa->an);
|
|
|
6c9f0c |
|
|
|
6c9f0c |
- ret += nss_macsec_secy_rx_sa_en_set(drv->secy_id, channel, an, TRUE);
|
|
|
6c9f0c |
+ ret += nss_macsec_secy_rx_sa_en_set(drv->secy_id, channel, sa->an,
|
|
|
6c9f0c |
+ TRUE);
|
|
|
6c9f0c |
|
|
|
6c9f0c |
return ret;
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
|
|
|
6c9f0c |
-static int macsec_qca_disable_receive_sa(void *priv, u32 channel, u8 an)
|
|
|
6c9f0c |
+static int macsec_qca_disable_receive_sa(void *priv, struct receive_sa *sa)
|
|
|
6c9f0c |
{
|
|
|
6c9f0c |
struct macsec_qca_data *drv = priv;
|
|
|
6c9f0c |
int ret = 0;
|
|
|
6c9f0c |
+ u32 channel = sa->sc->channel;
|
|
|
6c9f0c |
|
|
|
6c9f0c |
- wpa_printf(MSG_DEBUG, "%s: channel=%d, an=%d", __func__, channel, an);
|
|
|
6c9f0c |
+ wpa_printf(MSG_DEBUG, "%s: channel=%d, an=%d", __func__, channel,
|
|
|
6c9f0c |
+ sa->an);
|
|
|
6c9f0c |
|
|
|
6c9f0c |
- ret += nss_macsec_secy_rx_sa_en_set(drv->secy_id, channel, an, FALSE);
|
|
|
6c9f0c |
+ ret += nss_macsec_secy_rx_sa_en_set(drv->secy_id, channel, sa->an,
|
|
|
6c9f0c |
+ FALSE);
|
|
|
6c9f0c |
|
|
|
6c9f0c |
return ret;
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
diff --git a/src/pae/ieee802_1x_kay.h b/src/pae/ieee802_1x_kay.h
|
|
|
6c9f0c |
index 36a7bd6..8ee5860 100644
|
|
|
6c9f0c |
--- a/src/pae/ieee802_1x_kay.h
|
|
|
6c9f0c |
+++ b/src/pae/ieee802_1x_kay.h
|
|
|
6c9f0c |
@@ -151,10 +151,9 @@ struct ieee802_1x_kay_ctx {
|
|
|
6c9f0c |
enum validate_frames vf,
|
|
|
6c9f0c |
enum confidentiality_offset co);
|
|
|
6c9f0c |
int (*delete_receive_sc)(void *ctx, u32 channel);
|
|
|
6c9f0c |
- int (*create_receive_sa)(void *ctx, u32 channel, u8 an, u32 lowest_pn,
|
|
|
6c9f0c |
- const u8 *sak);
|
|
|
6c9f0c |
- int (*enable_receive_sa)(void *ctx, u32 channel, u8 an);
|
|
|
6c9f0c |
- int (*disable_receive_sa)(void *ctx, u32 channel, u8 an);
|
|
|
6c9f0c |
+ int (*create_receive_sa)(void *ctx, struct receive_sa *sa);
|
|
|
6c9f0c |
+ int (*enable_receive_sa)(void *ctx, struct receive_sa *sa);
|
|
|
6c9f0c |
+ int (*disable_receive_sa)(void *ctx, struct receive_sa *sa);
|
|
|
6c9f0c |
int (*get_available_transmit_sc)(void *ctx, u32 *channel);
|
|
|
6c9f0c |
int (*create_transmit_sc)(void *ctx, u32 channel,
|
|
|
6c9f0c |
const struct ieee802_1x_mka_sci *sci,
|
|
|
6c9f0c |
diff --git a/src/pae/ieee802_1x_secy_ops.c b/src/pae/ieee802_1x_secy_ops.c
|
|
|
6c9f0c |
index 8c31ca9..fb376df 100644
|
|
|
6c9f0c |
--- a/src/pae/ieee802_1x_secy_ops.c
|
|
|
6c9f0c |
+++ b/src/pae/ieee802_1x_secy_ops.c
|
|
|
6c9f0c |
@@ -253,8 +253,7 @@ int secy_create_receive_sa(struct ieee802_1x_kay *kay, struct receive_sa *rxsa)
|
|
|
6c9f0c |
return -1;
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
- return ops->create_receive_sa(ops->ctx, rxsa->sc->channel, rxsa->an,
|
|
|
6c9f0c |
- rxsa->lowest_pn, rxsa->pkey->key);
|
|
|
6c9f0c |
+ return ops->create_receive_sa(ops->ctx, rxsa);
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
|
|
|
6c9f0c |
@@ -276,7 +275,7 @@ int secy_enable_receive_sa(struct ieee802_1x_kay *kay, struct receive_sa *rxsa)
|
|
|
6c9f0c |
|
|
|
6c9f0c |
rxsa->enable_receive = TRUE;
|
|
|
6c9f0c |
|
|
|
6c9f0c |
- return ops->enable_receive_sa(ops->ctx, rxsa->sc->channel, rxsa->an);
|
|
|
6c9f0c |
+ return ops->enable_receive_sa(ops->ctx, rxsa);
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
|
|
|
6c9f0c |
@@ -298,7 +297,7 @@ int secy_disable_receive_sa(struct ieee802_1x_kay *kay, struct receive_sa *rxsa)
|
|
|
6c9f0c |
|
|
|
6c9f0c |
rxsa->enable_receive = FALSE;
|
|
|
6c9f0c |
|
|
|
6c9f0c |
- return ops->disable_receive_sa(ops->ctx, rxsa->sc->channel, rxsa->an);
|
|
|
6c9f0c |
+ return ops->disable_receive_sa(ops->ctx, rxsa);
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
|
|
|
6c9f0c |
diff --git a/wpa_supplicant/driver_i.h b/wpa_supplicant/driver_i.h
|
|
|
6c9f0c |
index e2c2bd7..666798b 100644
|
|
|
6c9f0c |
--- a/wpa_supplicant/driver_i.h
|
|
|
6c9f0c |
+++ b/wpa_supplicant/driver_i.h
|
|
|
6c9f0c |
@@ -802,29 +802,27 @@ static inline int wpa_drv_delete_receive_sc(struct wpa_supplicant *wpa_s,
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
static inline int wpa_drv_create_receive_sa(struct wpa_supplicant *wpa_s,
|
|
|
6c9f0c |
- u32 channel, u8 an,
|
|
|
6c9f0c |
- u32 lowest_pn, const u8 *sak)
|
|
|
6c9f0c |
+ struct receive_sa *sa)
|
|
|
6c9f0c |
{
|
|
|
6c9f0c |
if (!wpa_s->driver->create_receive_sa)
|
|
|
6c9f0c |
return -1;
|
|
|
6c9f0c |
- return wpa_s->driver->create_receive_sa(wpa_s->drv_priv, channel, an,
|
|
|
6c9f0c |
- lowest_pn, sak);
|
|
|
6c9f0c |
+ return wpa_s->driver->create_receive_sa(wpa_s->drv_priv, sa);
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
static inline int wpa_drv_enable_receive_sa(struct wpa_supplicant *wpa_s,
|
|
|
6c9f0c |
- u32 channel, u8 an)
|
|
|
6c9f0c |
+ struct receive_sa *sa)
|
|
|
6c9f0c |
{
|
|
|
6c9f0c |
if (!wpa_s->driver->enable_receive_sa)
|
|
|
6c9f0c |
return -1;
|
|
|
6c9f0c |
- return wpa_s->driver->enable_receive_sa(wpa_s->drv_priv, channel, an);
|
|
|
6c9f0c |
+ return wpa_s->driver->enable_receive_sa(wpa_s->drv_priv, sa);
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
static inline int wpa_drv_disable_receive_sa(struct wpa_supplicant *wpa_s,
|
|
|
6c9f0c |
- u32 channel, u8 an)
|
|
|
6c9f0c |
+ struct receive_sa *sa)
|
|
|
6c9f0c |
{
|
|
|
6c9f0c |
if (!wpa_s->driver->disable_receive_sa)
|
|
|
6c9f0c |
return -1;
|
|
|
6c9f0c |
- return wpa_s->driver->disable_receive_sa(wpa_s->drv_priv, channel, an);
|
|
|
6c9f0c |
+ return wpa_s->driver->disable_receive_sa(wpa_s->drv_priv, sa);
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
static inline int
|
|
|
6c9f0c |
diff --git a/wpa_supplicant/wpas_kay.c b/wpa_supplicant/wpas_kay.c
|
|
|
6c9f0c |
index 4b74112..344c59e 100644
|
|
|
6c9f0c |
--- a/wpa_supplicant/wpas_kay.c
|
|
|
6c9f0c |
+++ b/wpa_supplicant/wpas_kay.c
|
|
|
6c9f0c |
@@ -117,22 +117,21 @@ static int wpas_delete_receive_sc(void *wpa_s, u32 channel)
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
|
|
|
6c9f0c |
-static int wpas_create_receive_sa(void *wpa_s, u32 channel, u8 an,
|
|
|
6c9f0c |
- u32 lowest_pn, const u8 *sak)
|
|
|
6c9f0c |
+static int wpas_create_receive_sa(void *wpa_s, struct receive_sa *sa)
|
|
|
6c9f0c |
{
|
|
|
6c9f0c |
- return wpa_drv_create_receive_sa(wpa_s, channel, an, lowest_pn, sak);
|
|
|
6c9f0c |
+ return wpa_drv_create_receive_sa(wpa_s, sa);
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
|
|
|
6c9f0c |
-static int wpas_enable_receive_sa(void *wpa_s, u32 channel, u8 an)
|
|
|
6c9f0c |
+static int wpas_enable_receive_sa(void *wpa_s, struct receive_sa *sa)
|
|
|
6c9f0c |
{
|
|
|
6c9f0c |
- return wpa_drv_enable_receive_sa(wpa_s, channel, an);
|
|
|
6c9f0c |
+ return wpa_drv_enable_receive_sa(wpa_s, sa);
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
|
|
|
6c9f0c |
-static int wpas_disable_receive_sa(void *wpa_s, u32 channel, u8 an)
|
|
|
6c9f0c |
+static int wpas_disable_receive_sa(void *wpa_s, struct receive_sa *sa)
|
|
|
6c9f0c |
{
|
|
|
6c9f0c |
- return wpa_drv_disable_receive_sa(wpa_s, channel, an);
|
|
|
6c9f0c |
+ return wpa_drv_disable_receive_sa(wpa_s, sa);
|
|
|
6c9f0c |
}
|
|
|
6c9f0c |
|
|
|
6c9f0c |
|
|
|
6c9f0c |
--
|
|
|
6c9f0c |
2.7.4
|
|
|
6c9f0c |
|