| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677 |
- /* SPDX-License-Identifier: GPL-2.0-or-later */
- /*
- * CALIPSO - Common Architecture Label IPv6 Security Option
- *
- * This is an implementation of the CALIPSO protocol as specified in
- * RFC 5570.
- *
- * Authors: Paul Moore <[email protected]>
- * Huw Davies <[email protected]>
- */
- /*
- * (c) Copyright Hewlett-Packard Development Company, L.P., 2006
- * (c) Copyright Huw Davies <[email protected]>, 2015
- */
- #ifndef _CALIPSO_H
- #define _CALIPSO_H
- #include <linux/types.h>
- #include <linux/rcupdate.h>
- #include <linux/list.h>
- #include <linux/net.h>
- #include <linux/skbuff.h>
- #include <net/netlabel.h>
- #include <net/request_sock.h>
- #include <linux/refcount.h>
- #include <asm/unaligned.h>
- /* known doi values */
- #define CALIPSO_DOI_UNKNOWN 0x00000000
- /* doi mapping types */
- #define CALIPSO_MAP_UNKNOWN 0
- #define CALIPSO_MAP_PASS 2
- /*
- * CALIPSO DOI definitions
- */
- /* DOI definition struct */
- struct calipso_doi {
- u32 doi;
- u32 type;
- refcount_t refcount;
- struct list_head list;
- struct rcu_head rcu;
- };
- /*
- * Sysctl Variables
- */
- extern int calipso_cache_enabled;
- extern int calipso_cache_bucketsize;
- #ifdef CONFIG_NETLABEL
- int __init calipso_init(void);
- void calipso_exit(void);
- bool calipso_validate(const struct sk_buff *skb, const unsigned char *option);
- #else
- static inline int __init calipso_init(void)
- {
- return 0;
- }
- static inline void calipso_exit(void)
- {
- }
- static inline bool calipso_validate(const struct sk_buff *skb,
- const unsigned char *option)
- {
- return true;
- }
- #endif /* CONFIG_NETLABEL */
- #endif /* _CALIPSO_H */
|
