Home Explore Help
Sign In
GfA
/
linux_kernel
5
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: ae65a26dd3
Branches Tags
linux_kernel
/
fs
/
crypto
/
fscrypt_private.h

fscrypt_private.h 2.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293 
  1. /*
    2. 

  2.  * fscrypt_private.h
    3. 

  3.  *
    4. 

  4.  * Copyright (C) 2015, Google, Inc.
    5. 

  5.  *
    6. 

  6.  * This contains encryption key functions.
    7. 

  7.  *
    8. 

  8.  * Written by Michael Halcrow, Ildar Muslukhov, and Uday Savagaonkar, 2015.
    9. 

  9.  */
    10. 

  10. 

  11. #ifndef _FSCRYPT_PRIVATE_H
    12. 

  12. #define _FSCRYPT_PRIVATE_H
    13. 

  13. 

  14. #include <linux/fscrypto.h>
    15. 

  15. 

  16. #define FS_FNAME_CRYPTO_DIGEST_SIZE	32
    17. 

  17. 

  18. /* Encryption parameters */
    19. 

  19. #define FS_XTS_TWEAK_SIZE		16
    20. 

  20. #define FS_AES_128_ECB_KEY_SIZE		16
    21. 

  21. #define FS_AES_256_GCM_KEY_SIZE		32
    22. 

  22. #define FS_AES_256_CBC_KEY_SIZE		32
    23. 

  23. #define FS_AES_256_CTS_KEY_SIZE		32
    24. 

  24. #define FS_AES_256_XTS_KEY_SIZE		64
    25. 

  25. #define FS_MAX_KEY_SIZE			64
    26. 

  26. 

  27. #define FS_KEY_DESC_PREFIX		"fscrypt:"
    28. 

  28. #define FS_KEY_DESC_PREFIX_SIZE		8
    29. 

  29. 

  30. #define FS_KEY_DERIVATION_NONCE_SIZE		16
    31. 

  31. 

  32. /**
    33. 

  33.  * Encryption context for inode
    34. 

  34.  *
    35. 

  35.  * Protector format:
    36. 

  36.  *  1 byte: Protector format (1 = this version)
    37. 

  37.  *  1 byte: File contents encryption mode
    38. 

  38.  *  1 byte: File names encryption mode
    39. 

  39.  *  1 byte: Flags
    40. 

  40.  *  8 bytes: Master Key descriptor
    41. 

  41.  *  16 bytes: Encryption Key derivation nonce
    42. 

  42.  */
    43. 

  43. struct fscrypt_context {
    44. 

  44. 	u8 format;
    45. 

  45. 	u8 contents_encryption_mode;
    46. 

  46. 	u8 filenames_encryption_mode;
    47. 

  47. 	u8 flags;
    48. 

  48. 	u8 master_key_descriptor[FS_KEY_DESCRIPTOR_SIZE];
    49. 

  49. 	u8 nonce[FS_KEY_DERIVATION_NONCE_SIZE];
    50. 

  50. } __packed;
    51. 

  51. 

  52. #define FS_ENCRYPTION_CONTEXT_FORMAT_V1		1
    53. 

  53. 

  54. /* This is passed in from userspace into the kernel keyring */
    55. 

  55. struct fscrypt_key {
    56. 

  56. 	u32 mode;
    57. 

  57. 	u8 raw[FS_MAX_KEY_SIZE];
    58. 

  58. 	u32 size;
    59. 

  59. } __packed;
    60. 

  60. 

  61. /*
    62. 

  62.  * A pointer to this structure is stored in the file system's in-core
    63. 

  63.  * representation of an inode.
    64. 

  64.  */
    65. 

  65. struct fscrypt_info {
    66. 

  66. 	u8 ci_data_mode;
    67. 

  67. 	u8 ci_filename_mode;
    68. 

  68. 	u8 ci_flags;
    69. 

  69. 	struct crypto_skcipher *ci_ctfm;
    70. 

  70. 	struct key *ci_keyring_key;
    71. 

  71. 	u8 ci_master_key[FS_KEY_DESCRIPTOR_SIZE];
    72. 

  72. };
    73. 

  73. 

  74. #define FS_CTX_REQUIRES_FREE_ENCRYPT_FL		0x00000001
    75. 

  75. #define FS_CTX_HAS_BOUNCE_BUFFER_FL		0x00000002
    76. 

  76. 

  77. struct fscrypt_completion_result {
    78. 

  78. 	struct completion completion;
    79. 

  79. 	int res;
    80. 

  80. };
    81. 

  81. 

  82. #define DECLARE_FS_COMPLETION_RESULT(ecr) \
    83. 

  83. 	struct fscrypt_completion_result ecr = { \
    84. 

  84. 		COMPLETION_INITIALIZER((ecr).completion), 0 }
    85. 

  85. 

  86. 

  87. /* crypto.c */
    88. 

  88. int fscrypt_initialize(unsigned int cop_flags);
    89. 

  89. 

  90. /* keyinfo.c */
    91. 

  91. extern int fscrypt_get_crypt_info(struct inode *);
    92. 

  92. 

  93. #endif /* _FSCRYPT_PRIVATE_H */
    94.