1 /* SPDX-License-Identifier: GPL-2.0 */ 2 /* 3 * Copyright (c) 2021 Hannes Reinecke, SUSE Software Solutions 4 */ 5 6 #ifndef _NVME_AUTH_H 7 #define _NVME_AUTH_H 8 9 #include <crypto/kpp.h> 10 11 struct nvme_dhchap_key { 12 size_t len; 13 u8 hash; 14 u8 key[]; 15 }; 16 17 u32 nvme_auth_get_seqnum(void); 18 const char *nvme_auth_dhgroup_name(u8 dhgroup_id); 19 const char *nvme_auth_dhgroup_kpp(u8 dhgroup_id); 20 u8 nvme_auth_dhgroup_id(const char *dhgroup_name); 21 22 const char *nvme_auth_hmac_name(u8 hmac_id); 23 const char *nvme_auth_digest_name(u8 hmac_id); 24 size_t nvme_auth_hmac_hash_len(u8 hmac_id); 25 u8 nvme_auth_hmac_id(const char *hmac_name); 26 27 u32 nvme_auth_key_struct_size(u32 key_len); 28 struct nvme_dhchap_key *nvme_auth_extract_key(unsigned char *secret, 29 u8 key_hash); 30 void nvme_auth_free_key(struct nvme_dhchap_key *key); 31 struct nvme_dhchap_key *nvme_auth_alloc_key(u32 len, u8 hash); 32 struct nvme_dhchap_key *nvme_auth_transform_key( 33 struct nvme_dhchap_key *key, char *nqn); 34 int nvme_auth_generate_key(u8 *secret, struct nvme_dhchap_key **ret_key); 35 int nvme_auth_augmented_challenge(u8 hmac_id, u8 *skey, size_t skey_len, 36 u8 *challenge, u8 *aug, size_t hlen); 37 int nvme_auth_gen_privkey(struct crypto_kpp *dh_tfm, u8 dh_gid); 38 int nvme_auth_gen_pubkey(struct crypto_kpp *dh_tfm, 39 u8 *host_key, size_t host_key_len); 40 int nvme_auth_gen_shared_secret(struct crypto_kpp *dh_tfm, 41 u8 *ctrl_key, size_t ctrl_key_len, 42 u8 *sess_key, size_t sess_key_len); 43 44 #endif /* _NVME_AUTH_H */ 45