diff options
author | Chuck Lever <chuck.lever@oracle.com> | 2023-04-20 13:56:31 -0400 |
---|---|---|
committer | Chuck Lever <chuck.lever@oracle.com> | 2023-04-27 18:49:24 -0400 |
commit | 9280c577431401544e63dfb489a830a42bee25eb (patch) | |
tree | fbb94ff6e9a3788a85df6f5f8fccb2ca892b56a3 /include | |
parent | b3cbf98e2fdf3cb147a95161560cd25987284330 (diff) | |
download | lwn-9280c577431401544e63dfb489a830a42bee25eb.tar.gz lwn-9280c577431401544e63dfb489a830a42bee25eb.zip |
NFSD: Handle new xprtsec= export option
Enable administrators to require clients to use transport layer
security when accessing particular exports.
Signed-off-by: Chuck Lever <chuck.lever@oracle.com>
Diffstat (limited to 'include')
-rw-r--r-- | include/uapi/linux/nfsd/export.h | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/include/uapi/linux/nfsd/export.h b/include/uapi/linux/nfsd/export.h index 2124ba904779..a73ca3703abb 100644 --- a/include/uapi/linux/nfsd/export.h +++ b/include/uapi/linux/nfsd/export.h @@ -62,5 +62,18 @@ | NFSEXP_ALLSQUASH \ | NFSEXP_INSECURE_PORT) +/* + * Transport layer security policies that are permitted to access + * an export + */ +#define NFSEXP_XPRTSEC_NONE 0x0001 +#define NFSEXP_XPRTSEC_TLS 0x0002 +#define NFSEXP_XPRTSEC_MTLS 0x0004 + +#define NFSEXP_XPRTSEC_NUM (3) + +#define NFSEXP_XPRTSEC_ALL (NFSEXP_XPRTSEC_NONE | \ + NFSEXP_XPRTSEC_TLS | \ + NFSEXP_XPRTSEC_MTLS) #endif /* _UAPINFSD_EXPORT_H */ |