Page MenuHomeFreeBSD

net80211: Add crypto module support for AES-GCMP 128 and 256 bit.
Needs ReviewPublic

Authored by adrian on May 29 2024, 12:49 AM.
Referenced Files
Unknown Object (File)
Sun, Jul 14, 10:42 AM
Unknown Object (File)
Sun, Jul 7, 5:17 AM
Unknown Object (File)
Sat, Jul 6, 8:38 PM
Unknown Object (File)
Sat, Jun 29, 10:17 AM
Unknown Object (File)
Sun, Jun 23, 12:00 AM
Unknown Object (File)
Jun 2 2024, 3:37 AM
Unknown Object (File)
May 31 2024, 7:03 PM


Group Reviewers

This works enough to exchange data with my openwrt ath9k AP
running GCMP-128 and GCMP-256.

The AES-GCMP code is BSD licenced code from hostapd.git .

Note - this is a WIP commit just so the code isn't lost in the sands of time. There is a bunch of clean-up to do and perhaps some code de-duplication with the CCMP crypto module, as well as TODO items in GCMP/CCMP around the AAD header contents.

I'd honestly also prefer the AES-GCM code to be located elsewhere (and the AES-CCM too for that matter), but not necessarily to use the crypto framework. That way other projects wanting to port net80211 can port it without also needing to port the crypto framework just for working AES-GCM.

Test Plan
  • STA mode - ath9k AP, 128 and 256 bit GCMP for PTK.

Diff Detail

rG FreeBSD src repository
Lint Skipped
Tests Skipped
Build Status
Buildable 57986
Build 54874: arc lint + arc unit