# Copyright 2017 syzkaller project authors. All rights reserved.
# Use of this source code is governed by Apache 2 LICENSE that can be found in the LICENSE file.

# AF_KEY support.

include <linux/socket.h>
include <linux/net.h>
include <linux/pfkeyv2.h>
include <linux/ipsec.h>

resource sock_key[sock]

socket$key(domain const[AF_KEY], type const[SOCK_RAW], proto const[PF_KEY_V2]) sock_key

openat$pfkey(fd const[AT_FDCWD], file ptr[in, string["/proc/self/net/pfkey"]], flags flags[open_flags], mode const[0]) fd

sendmsg$key(fd sock_key, msg ptr[in, send_msghdr_key], f flags[send_flags])

send_msghdr_key {
	msg_name	const[0, intptr]
	msg_namelen	const[0, int32]
	msg_iov		ptr[in, iovec_sadb_msg]
	msg_iovlen	const[1, intptr]
	msg_control	const[0, intptr]
	msg_controllen	const[0, intptr]
	msg_flags	const[0, int32]
}

iovec_sadb_msg {
	addr	ptr[in, sadb_msg]
	len	bytesize[addr, intptr]
}

sadb_msg {
	sadb_msg_version	const[PF_KEY_V2, int8]
	sadb_msg_type		int8[SADB_RESERVED:SADB_MAX]
	sadb_msg_errno		int8
	sadb_msg_satype		flags[sadb_satype, int8]
	sadb_msg_len		bytesize8[parent, int16]
	sadb_msg_reserved	const[0, int16]
	sadb_msg_seq		netlink_seq
	sadb_msg_pid		netlink_port_id
	ext_headers		array[sadb_ext_hdr]
} [packed]

sadb_ext_hdr [
	sadb_sa			sadb_sa
	sadb_lifetime		sadb_lifetime
	sadb_address		sadb_address
	sadb_key		sadb_key
	sadb_ident		sadb_ident
	sadb_spirange		sadb_spirange
	sadb_x_policy		sadb_x_policy
	sadb_x_sa2		sadb_x_sa2
	sadb_x_nat_t_type	sadb_x_nat_t_type
	sadb_x_nat_t_port	sadb_x_nat_t_port
	sadb_x_sec_ctx		sadb_x_sec_ctx
	sadb_x_kmaddress	sadb_x_kmaddress
	sadb_x_filter		sadb_x_filter
] [varlen]

sadb_sa {
	sadb_len	bytesize8[parent, int16]
	sadb_exttype	const[SADB_EXT_SA, int16]
	sadb_sa_spi	xfrm_spi
	sadb_sa_replay	int8
	sadb_sa_state	int8
	sadb_sa_auth	int8[SADB_AALG_NONE:SADB_AALG_MAX]
	sadb_sa_encrypt	int8[SADB_X_CALG_NONE:SADB_X_CALG_MAX]
	sadb_sa_flags	flags[sadb_sa_flags, int32]
} [packed, align_8]

sadb_sa_flags = SADB_SAFLAGS_PFS, SADB_SAFLAGS_NOPMTUDISC, SADB_SAFLAGS_DECAP_DSCP, SADB_SAFLAGS_NOECN

sadb_lifetime {
	sadb_len			bytesize8[parent, int16]
	sadb_exttype			flags[sadb_lifetime_type, int16]
	sadb_lifetime_allocations	int32
	sadb_lifetime_bytes		int64
	sadb_lifetime_addtime		int64
	sadb_lifetime_usetime		int64
} [packed, align_8]

sadb_address {
	sadb_len		bytesize8[parent, int16]
	sadb_exttype		flags[sadb_address_type, int16]
	sadb_address_proto	flags[xfrm_proto, int8]
	sadb_address_prefixlen	flags[xfrm_prefixlens, int8]
	sadb_address_reserved	const[0, int16]
	addr			sadb_address_addr
} [packed, align_8]

sadb_address_addr [
	in	sockaddr_in
	in6	sockaddr_in6
] [varlen]

sadb_key {
	sadb_len		bytesize8[parent, int16]
	sadb_exttype		flags[sadb_key_type, int16]
	sadb_key_bits		bitsize[key, int16]
	sadb_key_reserved	const[0, int16]
	key			array[int8]
} [packed, align_8]

sadb_ident {
	sadb_len		bytesize8[parent, int16]
	sadb_exttype		flags[sadb_ident_type, int16]
	sadb_ident_type		int16
	sadb_ident_reserved	const[0, int16]
	sadb_ident_id		int64
} [packed, align_8]

sadb_spirange {
	sadb_len		bytesize8[parent, int16]
	sadb_exttype		const[SADB_EXT_SPIRANGE, int16]
	sadb_spirange_min	xfrm_spi
	sadb_spirange_max	xfrm_spi
	sadb_spirange_reserved	const[0, int32]
} [packed, align_8]

sadb_x_policy {
	sadb_len		bytesize8[parent, int16]
	sadb_exttype		const[SADB_X_EXT_POLICY, int16]
	sadb_x_policy_type	int16[IPSEC_POLICY_DISCARD:IPSEC_POLICY_BYPASS]
	sadb_x_policy_dir	flags[ipsec_policy_dir, int8]
	sadb_x_policy_reserved	const[0, int8]
	sadb_x_policy_id	xfrm_policy_index
	sadb_x_policy_priority	int32
	policy			sadb_x_ipsecrequest
} [packed, align_8]

sadb_x_ipsecrequest {
	sadb_x_ipsecrequest_len		bytesize8[parent, int16]
	sadb_x_ipsecrequest_proto	flags[xfrm_proto, int16]
	sadb_x_ipsecrequest_mode	int8
	sadb_x_ipsecrequest_level	int8
	sadb_x_ipsecrequest_reserved1	const[0, int16]
	sadb_x_ipsecrequest_reqid	int32
	sadb_x_ipsecrequest_reserved2	const[0, int32]
	saddr				sadb_filter_addr
	daddr				sadb_filter_addr
} [packed, align_8]

sadb_x_sa2 {
	sadb_len		bytesize8[parent, int16]
	sadb_exttype		const[SADB_X_EXT_SA2, int16]
	sadb_x_sa2_mode		int8
	sadb_x_sa2_reserved1	const[0, int8]
	sadb_x_sa2_reserved2	const[0, int16]
	sadb_x_sa2_sequence	netlink_seq
	sadb_x_sa2_reqid	xfrm_req_id
} [packed, align_8]

sadb_x_nat_t_type {
	sadb_len			bytesize8[parent, int16]
	sadb_exttype			const[SADB_X_EXT_NAT_T_TYPE, int16]
	sadb_x_nat_t_type_type		int8
	sadb_x_nat_t_type_reserved	array[const[0, int8], 3]
} [packed, align_8]

sadb_x_nat_t_port {
	sadb_len			bytesize8[parent, int16]
	sadb_exttype			flags[sadb_nat_port_type, int16]
	sadb_x_nat_t_port_port		sock_port
	sadb_x_nat_t_port_reserved	const[0, int16]
} [packed, align_8]

sadb_x_sec_ctx {
	sadb_len	bytesize8[parent, int16]
	sadb_exttype	const[SADB_X_EXT_SEC_CTX, int16]
	sadb_x_ctx_alg	int8
	sadb_x_ctx_doi	int8
	sadb_x_ctx_len	bytesize[ctx, int16]
	ctx		array[int8]
} [packed, align_8]

sadb_x_kmaddress {
	sadb_len			bytesize8[parent, int16]
	sadb_exttype			const[SADB_X_EXT_KMADDRESS, int16]
	sadb_x_kmaddress_reserved	const[0, int32]
	src				sadb_address_addr
	dst				sadb_address_addr
} [packed, align_8]

sadb_x_filter {
	sadb_len		bytesize8[parent, int16]
	sadb_exttype		const[SADB_X_EXT_FILTER, int16]
	sadb_x_filter_saddr	sadb_filter_addr
	sadb_x_filter_daddr	sadb_filter_addr
	sadb_x_filter_family	flags[socket_domain, int16]
	sadb_x_filter_splen	flags[sadb_filter_addr_len, int8]
	sadb_x_filter_dplen	flags[sadb_filter_addr_len, int8]
} [packed, align_8]

sadb_filter_addr [
	in	ipv4_addr
	in6	ipv6_addr
]

sadb_satype = SADB_SATYPE_UNSPEC, SADB_SATYPE_AH, SADB_SATYPE_ESP, SADB_SATYPE_RSVP, SADB_SATYPE_OSPFV2, SADB_SATYPE_RIPV2, SADB_SATYPE_MIP, SADB_X_SATYPE_IPCOMP, SADB_SATYPE_MAX
sadb_lifetime_type = SADB_EXT_LIFETIME_CURRENT, SADB_EXT_LIFETIME_HARD, SADB_EXT_LIFETIME_SOFT
sadb_address_type = SADB_EXT_ADDRESS_SRC, SADB_EXT_ADDRESS_DST, SADB_EXT_ADDRESS_PROXY, SADB_X_EXT_NAT_T_OA
sadb_key_type = SADB_EXT_KEY_AUTH, SADB_EXT_KEY_ENCRYPT
sadb_ident_type = SADB_EXT_IDENTITY_SRC, SADB_EXT_IDENTITY_DST
sadb_nat_port_type = SADB_X_EXT_NAT_T_SPORT, SADB_X_EXT_NAT_T_DPORT
ipsec_policy_dir = IPSEC_DIR_ANY, IPSEC_DIR_INBOUND, IPSEC_DIR_OUTBOUND, IPSEC_DIR_FWD, IPSEC_DIR_MAX
sadb_filter_addr_len = 4, 16