1/* SPDX-License-Identifier: (GPL-2.0 OR BSD-3-Clause) */
2/*
3 * Greybus Component Authentication User Header
4 *
5 * Copyright(c) 2016 Google Inc. All rights reserved.
6 * Copyright(c) 2016 Linaro Ltd. All rights reserved.
7 */
8
9#ifndef __GREYBUS_AUTHENTICATION_USER_H
10#define __GREYBUS_AUTHENTICATION_USER_H
11
12#include <linux/ioctl.h>
13#include <linux/types.h>
14
15#define CAP_CERTIFICATE_MAX_SIZE	1600
16#define CAP_SIGNATURE_MAX_SIZE		320
17
18/* Certificate class types */
19#define CAP_CERT_IMS_EAPC		0x00000001
20#define CAP_CERT_IMS_EASC		0x00000002
21#define CAP_CERT_IMS_EARC		0x00000003
22#define CAP_CERT_IMS_IAPC		0x00000004
23#define CAP_CERT_IMS_IASC		0x00000005
24#define CAP_CERT_IMS_IARC		0x00000006
25
26/* IMS Certificate response result codes */
27#define CAP_IMS_RESULT_CERT_FOUND	0x00
28#define CAP_IMS_RESULT_CERT_CLASS_INVAL	0x01
29#define CAP_IMS_RESULT_CERT_CORRUPT	0x02
30#define CAP_IMS_RESULT_CERT_NOT_FOUND	0x03
31
32/* Authentication types */
33#define CAP_AUTH_IMS_PRI		0x00000001
34#define CAP_AUTH_IMS_SEC		0x00000002
35#define CAP_AUTH_IMS_RSA		0x00000003
36
37/* Authenticate response result codes */
38#define CAP_AUTH_RESULT_CR_SUCCESS	0x00
39#define CAP_AUTH_RESULT_CR_BAD_TYPE	0x01
40#define CAP_AUTH_RESULT_CR_WRONG_EP	0x02
41#define CAP_AUTH_RESULT_CR_NO_KEY	0x03
42#define CAP_AUTH_RESULT_CR_SIG_FAIL	0x04
43
44/* IOCTL support */
45struct cap_ioc_get_endpoint_uid {
46	__u8			uid[8];
47} __packed;
48
49struct cap_ioc_get_ims_certificate {
50	__u32			certificate_class;
51	__u32			certificate_id;
52
53	__u8			result_code;
54	__u32			cert_size;
55	__u8			certificate[CAP_CERTIFICATE_MAX_SIZE];
56} __packed;
57
58struct cap_ioc_authenticate {
59	__u32			auth_type;
60	__u8			uid[8];
61	__u8			challenge[32];
62
63	__u8			result_code;
64	__u8			response[64];
65	__u32			signature_size;
66	__u8			signature[CAP_SIGNATURE_MAX_SIZE];
67} __packed;
68
69#define CAP_IOCTL_BASE			'C'
70#define CAP_IOC_GET_ENDPOINT_UID	_IOR(CAP_IOCTL_BASE, 0, struct cap_ioc_get_endpoint_uid)
71#define CAP_IOC_GET_IMS_CERTIFICATE	_IOWR(CAP_IOCTL_BASE, 1, struct cap_ioc_get_ims_certificate)
72#define CAP_IOC_AUTHENTICATE		_IOWR(CAP_IOCTL_BASE, 2, struct cap_ioc_authenticate)
73
74#endif /* __GREYBUS_AUTHENTICATION_USER_H */
75