Page MenuHomeFreeBSD
Differential D52711

net80211: create accessors for accessing the ieee80211_key key/mic data
Needs RevisionPublic
Actions

Authored by adrian on Wed, Sep 24, 3:35 PM.
Tags
Referenced Files
F132514067: D52711.diff
Fri, Oct 17, 1:44 PM
Unknown Object (File)
Wed, Oct 15, 4:51 AM
Unknown Object (File)
Tue, Oct 14, 6:19 PM
Unknown Object (File)
Tue, Oct 14, 3:31 PM
Unknown Object (File)
Sat, Oct 11, 9:06 PM
Unknown Object (File)
Sat, Oct 11, 6:33 AM
Unknown Object (File)
Sat, Oct 11, 6:33 AM
Unknown Object (File)
Fri, Oct 10, 11:16 PM
View All 18 Files
Subscribers
bz
emaste
glebius
imp
melifaro

Details

Reviewers
thj
bz
Group Reviewers
wireless
Summary

Add some accessors to the key data, key length and MIC data.
Document exactly what these mean.

There's at least a couple of drivers that access the key data field
directly and assume that the TX/RX MIC is available directly after the
data pointer, which bakes in the "key size is 128 bits" in subtle ways.

The goal here is to migrate the drivers and net80211 code to use
these methods rather than accessing wk_key directly and making assumptions
about wk_key and the copied key length (which the ioctl path definitely
does.)

Once that's done, it should be a lot easier to change the key API for
larger keys.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Skipped
Unit
Tests Skipped
Build Status
Buildable 67281
Build 64164: arc lint + arc unit

Event Timeline

adrian created this revision.Wed, Sep 24, 3:35 PM
Herald added subscribers: glebius, melifaro, imp. · View Herald TranscriptWed, Sep 24, 3:35 PM
adrian requested review of this revision.Wed, Sep 24, 3:35 PM
Harbormaster completed remote builds in B67281: Diff 162743.Wed, Sep 24, 3:35 PM
adrian added a parent revision: D52664: iwm: assign sequence numbers even if we ask the firmware to override.Wed, Sep 24, 3:36 PM
adrian added a reviewer: wireless.
adrian added a project: wireless.
adrian added a child revision: D52712: rtwn: migrate to new ieee80211 key data accessors.Wed, Sep 24, 3:43 PM
thj accepted this revision.Tue, Sep 30, 10:22 AM
This revision is now accepted and ready to land.Tue, Sep 30, 10:22 AM
bz requested changes to this revision.Sat, Oct 4, 3:32 PM
bz added a subscriber: bz.
bz added inline comments.
sys/net80211/ieee80211_crypto.h
312

Just commenting on the first entry. So should this happen only during a iv_key_update_begin/end session, and if so should we make sure we can assert this?

This revision now requires changes to proceed.Sat, Oct 4, 3:32 PM
adrian added inline comments.Sun, Oct 12, 3:27 AM
sys/net80211/ieee80211_crypto.h
312

no, this happens during transmit/receive handling. only key alloc / key set happens inside the key update begin/end session.

That said, those should likely get some kind of runtime checks and printing warnings / assertions if they are called outside of it.

bz added inline comments.Sun, Oct 12, 8:52 AM
sys/net80211/ieee80211_crypto.h
312

Oh, sorry, with full offloading key access is only needed during key operations. My fault.

But then your comment isn't all right either as it would require holding the com lock for the keys to not disappear and most transmit routines probably do not want that?

emaste added a subscriber: emaste.Tue, Oct 14, 4:42 PM

Revision Contents
Changeset List

PathSize
sys/
net80211/
105 lines

Diff 162743

View Options

sys/net80211/ieee80211_crypto.h

Loading...