fragattacks/src/common/ieee802_1x_defs.h
Sabrina Dubroca 7b4d546e3d wpa_supplicant: Add macsec_integ_only setting for MKA
So that the user can turn encryption on (MACsec provides
confidentiality+integrity) or off (MACsec provides integrity only). This
commit adds the configuration parameter while the actual behavior change
to disable encryption in the driver is handled in the following commit.

Signed-off-by: Sabrina Dubroca <sd@queasysnail.net>
2016-11-20 00:35:16 +02:00

85 lines
1.8 KiB
C

/*
* IEEE Std 802.1X-2010 definitions
* Copyright (c) 2013-2014, Qualcomm Atheros, Inc.
*
* This software may be distributed under the terms of the BSD license.
* See README for more details.
*/
#ifndef IEEE802_1X_DEFS_H
#define IEEE802_1X_DEFS_H
#define CS_ID_LEN 8
#define CS_ID_GCM_AES_128 0x0080020001000001ULL
#define CS_NAME_GCM_AES_128 "GCM-AES-128"
enum macsec_policy {
/**
* Should secure sessions.
* This accepts key server's advice to determine whether to secure the
* session or not.
*/
SHOULD_SECURE,
/**
* Disabled MACsec - do not secure sessions.
*/
DO_NOT_SECURE,
/**
* Should secure sessions, and try to use encryption.
* Like @SHOULD_SECURE, this follows the key server's decision.
*/
SHOULD_ENCRYPT,
};
/* IEEE Std 802.1X-2010 - Table 11-6 - MACsec Capability */
enum macsec_cap {
/**
* MACsec is not implemented
*/
MACSEC_CAP_NOT_IMPLEMENTED,
/**
* 'Integrity without confidentiality'
*/
MACSEC_CAP_INTEGRITY,
/**
* 'Integrity without confidentiality' and
* 'Integrity and confidentiality' with a confidentiality offset of 0
*/
MACSEC_CAP_INTEG_AND_CONF,
/**
* 'Integrity without confidentiality' and
* 'Integrity and confidentiality' with a confidentiality offset of 0,
* 30, 50
*/
MACSEC_CAP_INTEG_AND_CONF_0_30_50,
};
enum validate_frames {
Disabled,
Checked,
Strict,
};
/* IEEE Std 802.1X-2010 - Table 11-6 - Confidentiality Offset */
enum confidentiality_offset {
CONFIDENTIALITY_NONE = 0,
CONFIDENTIALITY_OFFSET_0 = 1,
CONFIDENTIALITY_OFFSET_30 = 2,
CONFIDENTIALITY_OFFSET_50 = 3,
};
/* IEEE Std 802.1X-2010 - Table 9-2 */
#define DEFAULT_PRIO_INFRA_PORT 0x10
#define DEFAULT_PRIO_PRIMRAY_AP 0x30
#define DEFAULT_PRIO_SECONDARY_AP 0x50
#define DEFAULT_PRIO_GROUP_CA_MEMBER 0x70
#define DEFAULT_PRIO_NOT_KEY_SERVER 0xFF
#endif /* IEEE802_1X_DEFS_H */