[6/9] handshake: remove hardcoded kek_len for FTE decode

Message ID	20230410220135.373872-7-prestwoj@gmail.com (mailing list archive)
State	New
Headers	show Received: from mail-pj1-f49.google.com (mail-pj1-f49.google.com [209.85.216.49]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 83458848B for <iwd@lists.linux.dev>; Mon, 10 Apr 2023 22:01:45 +0000 (UTC) From: James Prestwood <prestwoj@gmail.com> To: iwd@lists.linux.dev Cc: James Prestwood <prestwoj@gmail.com> Subject: [PATCH 6/9] handshake: remove hardcoded kek_len for FTE decode Date: Mon, 10 Apr 2023 15:01:32 -0700 Message-Id: <20230410220135.373872-7-prestwoj@gmail.com> In-Reply-To: <20230410220135.373872-1-prestwoj@gmail.com> References: <20230410220135.373872-1-prestwoj@gmail.com> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	Support FT-8021X-SHA384 \| expand [0/9] Support FT-8021X-SHA384 [1/9] crypto: modify crypto_derive_pmkid to take the hash/key length [2/9] handshake: include additional sha256 AKMs for PMKID generation [3/9] crypto: add hmac_sha384 support for PMKID derivation [4/9] eapol: add support for FT-8021X-SHA384 [5/9] handshake: support FT-8021X-SHA384 [6/9] handshake: remove hardcoded kek_len for FTE decode [7/9] common: add FT-8021X-SHA384 to AKM_IS_8021X [8/9] wiphy: add FT-8021X-SHA384 to supported AKMs [9/9] auto-t: update testFT-8021x-roam with SHA384 test

Message ID

20230410220135.373872-7-prestwoj@gmail.com (mailing list archive)

State

New

Headers

From: James Prestwood <prestwoj@gmail.com>
To: iwd@lists.linux.dev
Cc: James Prestwood <prestwoj@gmail.com>
Subject: [PATCH 6/9] handshake: remove hardcoded kek_len for FTE decode
Date: Mon, 10 Apr 2023 15:01:32 -0700
Message-Id: <20230410220135.373872-7-prestwoj@gmail.com>
In-Reply-To: <20230410220135.373872-1-prestwoj@gmail.com>
References: <20230410220135.373872-1-prestwoj@gmail.com>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

Support FT-8021X-SHA384 | expand

Comments

Denis Kenzior April 16, 2023, 6:01 p.m. UTC | #1

Hi James,

On 4/10/23 17:01, James Prestwood wrote:
> The KEK length should be obtained with the getter to ensure the
> AKM is taken into account
> ---
>   src/handshake.c | 2 +-
>   1 file changed, 1 insertion(+), 1 deletion(-)
> 

Applied, thanks.

Regards,
-Denis

diff --git a/src/handshake.c b/src/handshake.c
index 362ff58a..70aeda37 100644
--- a/src/handshake.c
+++ b/src/handshake.c
@@ -1035,7 +1035,7 @@  bool handshake_decode_fte_key(struct handshake_state *s, const uint8_t *wrapped,
 				size_t key_len, uint8_t *key_out)
 {
 	const uint8_t *kek;
-	size_t kek_len = 16;
+	size_t kek_len = handshake_state_get_kek_len(s);
 	size_t padded_len = key_len < 16 ? 16 : align_len(key_len, 8);
 
 	if (s->akm_suite & (IE_RSN_AKM_SUITE_FT_OVER_FILS_SHA256 |

[6/9] handshake: remove hardcoded kek_len for FTE decode

Commit Message

Comments

Patch