[net-next] net/tls: Add support of AES128-CCM based ciphers

Message ID	20190319051234.7827-1-vakul.garg@nxp.com
State	Changes Requested
Delegated to:	David Miller
Headers	show Return-Path: <netdev-owner@vger.kernel.org> From: Vakul Garg <vakul.garg@nxp.com> To: "netdev@vger.kernel.org" <netdev@vger.kernel.org> CC: "borisp@mellanox.com" <borisp@mellanox.com>, "aviadye@mellanox.com" <aviadye@mellanox.com>, "davejwatson@fb.com" <davejwatson@fb.com>, "davem@davemloft.net" <davem@davemloft.net>, "doronrk@fb.com" <doronrk@fb.com>, Vakul Garg <vakul.garg@nxp.com> Subject: [PATCH net-next] net/tls: Add support of AES128-CCM based ciphers Thread-Topic: [PATCH net-next] net/tls: Add support of AES128-CCM based ciphers Thread-Index: AQHU3hK/t4B1BqKqsUaR3+UPX5ZHIg== Date: Tue, 19 Mar 2019 05:15:20 +0000 Message-ID: <20190319051234.7827-1-vakul.garg@nxp.com> Accept-Language: en-US Content-Language: en-US received-spf: None (protection.outlook.com: nxp.com does not designate permitted sender hosts) Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 Sender: netdev-owner@vger.kernel.org Precedence: bulk
Series	[net-next] net/tls: Add support of AES128-CCM based ciphers \| expand [net-next] net/tls: Add support of AES128-CCM based ciphers

Message ID

20190319051234.7827-1-vakul.garg@nxp.com

State

Changes Requested

Delegated to:

David Miller

Headers

From: Vakul Garg <vakul.garg@nxp.com>
To: "netdev@vger.kernel.org" <netdev@vger.kernel.org>
CC: "borisp@mellanox.com" <borisp@mellanox.com>,
	"aviadye@mellanox.com" <aviadye@mellanox.com>,
	"davejwatson@fb.com" <davejwatson@fb.com>,
	"davem@davemloft.net" <davem@davemloft.net>,
	"doronrk@fb.com" <doronrk@fb.com>, Vakul Garg <vakul.garg@nxp.com>
Subject: [PATCH net-next] net/tls: Add support of AES128-CCM based ciphers
Thread-Topic: [PATCH net-next] net/tls: Add support of AES128-CCM based
	ciphers
Thread-Index: AQHU3hK/t4B1BqKqsUaR3+UPX5ZHIg==
Date: Tue, 19 Mar 2019 05:15:20 +0000
Message-ID: <20190319051234.7827-1-vakul.garg@nxp.com>
Accept-Language: en-US
Content-Language: en-US
x-ms-exchange-messagesentrepresentingtype: 1
x-mailer: git-send-email 2.13.6
x-originating-ip: [92.120.1.70]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: e18eac73-51d3-4c5a-e29f-08d6ac29e1f9
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0;
	RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600127)(711020)(4605104)(4618075)(2017052603328)(7153060)(7193020);
	SRVR:DB7PR04MB3977; 
x-ms-traffictypediagnostic: DB7PR04MB3977:
x-microsoft-antispam-prvs: <DB7PR04MB3977D4BD7FC09FBD9000D3858B400@DB7PR04MB3977.eurprd04.prod.outlook.com>
x-forefront-prvs: 0981815F2F
x-forefront-antispam-report: SFV:NSPM;
	SFS:(10009020)(136003)(396003)(346002)(366004)(39860400002)(376002)(199004)(189003)(44832011)(6436002)(6116002)(54906003)(2906002)(386003)(316002)(6506007)(3846002)(4326008)(478600001)(486006)(99286004)(1076003)(256004)(6916009)(186003)(102836004)(26005)(71200400001)(2616005)(6486002)(86362001)(14444005)(71190400001)(476003)(66066001)(305945005)(36756003)(5660300002)(7736002)(68736007)(53936002)(6512007)(2351001)(5640700003)(105586002)(106356001)(8936002)(25786009)(52116002)(2501003)(50226002)(1730700003)(81166006)(81156014)(14454004)(97736004)(8676002);
	DIR:OUT; SFP:1101; SCL:1; SRVR:DB7PR04MB3977;
	H:DB7PR04MB4252.eurprd04.prod.outlook.com; FPR:; SPF:None;
	LANG:en; PTR:InfoNoRecords; A:1; MX:1; 
received-spf: None (protection.outlook.com: nxp.com does not designate
	permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: qu+FprXCW4KEBRL60i3JS4SFcIK0gPauhGwkIhDI4wzPnuc4mQJDhh9u26s7oDzQW3jhYREC1gBJHhavKwAKVxvYex8bXfUR5rYsAYA9zgW+7BoIPWrZZORRvk/f35SoOxDy+aCtwsJchtiZIwKOCWLqZAqM1RAuseYogMUjL625k0S9Ui477nW7lE2QT5gZUcxpJ2fbwTOp/7NVMVNWgd+TEeCBZ/kznT8yxIss+EFk1g2QQ1PhYlEvFYSZfp+XUZ0ZbhSsJV+Ehp70geMPsHT3sbzeMTSBG+lqdmAwqxqiQI8VKs0idU3I/prgcf/+2o2yJB7BAoNCbpvItUzOz8LCUEPqiNjj47xzfjkeawxQUPqjPn8fb1AQC6/BW/46dEElcZpUGGQSkjci1DNrTFTr4YMG0Izw0lh9yDZZaJU=
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: nxp.com
X-MS-Exchange-CrossTenant-Network-Message-Id: e18eac73-51d3-4c5a-e29f-08d6ac29e1f9
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Mar 2019 05:15:20.6792
	(UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 686ea1d3-bc2b-4c6f-a92c-d99c5c301635
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB7PR04MB3977
Sender: netdev-owner@vger.kernel.org
Precedence: bulk
List-ID: <netdev.vger.kernel.org>
X-Mailing-List: netdev@vger.kernel.org

Series

[net-next] net/tls: Add support of AES128-CCM based ciphers | expand

Commit Message

Vakul Garg March 19, 2019, 5:15 a.m. UTC

Added support for AES128-CCM based record encryption. AES128-CCM is
similar to AES128-GCM. Both of them have same salt/iv/mac size. The
notable difference between the two is that while invoking AES128-CCM
operation, the salt||nonce (which is passed as IV) has to be prefixed
with a hardcoded value '2'. Further, CCM implementation in kernel
requires IV passed in crypto_aead_request() to be full '16' bytes.
Therefore, the record structure 'struct tls_rec' has been modified to
reserve '16' bytes for IV. This works for both GCM and CCM based cipher.

Signed-off-by: Vakul Garg <vakul.garg@nxp.com>
---
 include/net/tls.h        |  6 +++--
 include/uapi/linux/tls.h | 15 +++++++++++
 net/tls/tls_main.c       | 31 ++++++++++++----------
 net/tls/tls_sw.c         | 67 ++++++++++++++++++++++++++++++++++++------------
 4 files changed, 88 insertions(+), 31 deletions(-)

Comments

Boris Pismenny March 19, 2019, 5:06 p.m. UTC | #1

On 3/19/2019 7:15 AM, Vakul Garg wrote:
> Added support for AES128-CCM based record encryption. AES128-CCM is
> similar to AES128-GCM. Both of them have same salt/iv/mac size. The
> notable difference between the two is that while invoking AES128-CCM
> operation, the salt||nonce (which is passed as IV) has to be prefixed
> with a hardcoded value '2'. Further, CCM implementation in kernel
> requires IV passed in crypto_aead_request() to be full '16' bytes.
> Therefore, the record structure 'struct tls_rec' has been modified to
> reserve '16' bytes for IV. This works for both GCM and CCM based cipher.
> 

Can you explain what is the source of the hardcoded '2'? e.g. Why do we 
need a hardcoded constant?

Vakul Garg March 19, 2019, 5:35 p.m. UTC | #2

> -----Original Message-----
> From: Boris Pismenny <borisp@mellanox.com>
> Sent: Tuesday, March 19, 2019 10:36 PM
> To: Vakul Garg <vakul.garg@nxp.com>; netdev@vger.kernel.org
> Cc: Aviad Yehezkel <aviadye@mellanox.com>; davejwatson@fb.com;
> davem@davemloft.net; doronrk@fb.com
> Subject: Re: [PATCH net-next] net/tls: Add support of AES128-CCM based
> ciphers
> 
> 
> On 3/19/2019 7:15 AM, Vakul Garg wrote:
> > Added support for AES128-CCM based record encryption. AES128-CCM is
> > similar to AES128-GCM. Both of them have same salt/iv/mac size. The
> > notable difference between the two is that while invoking AES128-CCM
> > operation, the salt||nonce (which is passed as IV) has to be prefixed
> > with a hardcoded value '2'. Further, CCM implementation in kernel
> > requires IV passed in crypto_aead_request() to be full '16' bytes.
> > Therefore, the record structure 'struct tls_rec' has been modified to
> > reserve '16' bytes for IV. This works for both GCM and CCM based cipher.
> >
> 
> Can you explain what is the source of the hardcoded '2'? e.g. Why do we
> need a hardcoded constant?

The first bytes of IV is called B0 byte. It encodes width of 'length' field in CCM-IV.
(which defines length of payload that can be encrypted). In this case, width of 'length' field = 3 bytes.

IV[16 bytes] = B0 (1byte) || Fixed implicit Salt (4 bytes) || Explicit IV (8 bytes) || length field (3 bytes)

The 'length' field, is encoded as 'length field width - 1' in B0.
Hence B0 contains '2'.

David Miller March 19, 2019, 8:50 p.m. UTC | #3

From: Vakul Garg <vakul.garg@nxp.com>
Date: Tue, 19 Mar 2019 05:15:20 +0000

> @@ -479,11 +477,18 @@ static int tls_do_encryption(struct sock *sk,
>  	struct tls_rec *rec = ctx->open_rec;
>  	struct sk_msg *msg_en = &rec->msg_encrypted;
>  	struct scatterlist *sge = sk_msg_elem(msg_en, start);
> -	int rc;
> +	int rc, iv_offset = 0;
> +
> +	/* For CCM based ciphers, first byte of nonce+iv is always '2' */
> +	if (prot->cipher_type == TLS_CIPHER_AES_CCM_128) {
> +		rec->iv_data[0] = 2;
> +		iv_offset = 1;
> +	}
 ...
>  	iv = aad + prot->aad_size;
>  
> +	/* For CCM based ciphers, first byte of nonce+iv is always '2' */
> +	if (prot->cipher_type == TLS_CIPHER_AES_CCM_128) {
> +		iv[0] = 2;
> +		iv_offset = 1;
> +	}

Your explanation to Stephen about this '2' is great but belongs in the code
somehow so that the next person reading this will understand too.

Why not make a CPP macro for this value of '2', and explain it in a big
comment about the macro's definition?

diff --git a/include/net/tls.h b/include/net/tls.h
index a5a938583295..8d62f2e483dd 100644
--- a/include/net/tls.h
+++ b/include/net/tls.h
@@ -60,6 +60,8 @@ 
 #define TLS_AAD_SPACE_SIZE		13
 #define TLS_DEVICE_NAME_MAX		32
 
+#define MAX_IV_SIZE			16
+
 /*
  * This structure defines the routines for Inline TLS driver.
  * The following routines are optional and filled with a
@@ -123,8 +125,7 @@  struct tls_rec {
 	struct scatterlist sg_content_type;
 
 	char aad_space[TLS_AAD_SPACE_SIZE];
-	u8 iv_data[TLS_CIPHER_AES_GCM_128_IV_SIZE +
-		   TLS_CIPHER_AES_GCM_128_SALT_SIZE];
+	u8 iv_data[MAX_IV_SIZE];
 	struct aead_request aead_req;
 	u8 aead_req_ctx[];
 };
@@ -219,6 +220,7 @@  struct tls_prot_info {
 	u16 tag_size;
 	u16 overhead_size;
 	u16 iv_size;
+	u16 salt_size;
 	u16 rec_seq_size;
 	u16 aad_size;
 	u16 tail_size;
diff --git a/include/uapi/linux/tls.h b/include/uapi/linux/tls.h
index 401d6f01de6a..5b9c26753e46 100644
--- a/include/uapi/linux/tls.h
+++ b/include/uapi/linux/tls.h
@@ -70,6 +70,13 @@ 
 #define TLS_CIPHER_AES_GCM_256_TAG_SIZE		16
 #define TLS_CIPHER_AES_GCM_256_REC_SEQ_SIZE		8
 
+#define TLS_CIPHER_AES_CCM_128				53
+#define TLS_CIPHER_AES_CCM_128_IV_SIZE			8
+#define TLS_CIPHER_AES_CCM_128_KEY_SIZE		16
+#define TLS_CIPHER_AES_CCM_128_SALT_SIZE		4
+#define TLS_CIPHER_AES_CCM_128_TAG_SIZE		16
+#define TLS_CIPHER_AES_CCM_128_REC_SEQ_SIZE		8
+
 #define TLS_SET_RECORD_TYPE	1
 #define TLS_GET_RECORD_TYPE	2
 
@@ -94,4 +101,12 @@  struct tls12_crypto_info_aes_gcm_256 {
 	unsigned char rec_seq[TLS_CIPHER_AES_GCM_256_REC_SEQ_SIZE];
 };
 
+struct tls12_crypto_info_aes_ccm_128 {
+	struct tls_crypto_info info;
+	unsigned char iv[TLS_CIPHER_AES_CCM_128_IV_SIZE];
+	unsigned char key[TLS_CIPHER_AES_CCM_128_KEY_SIZE];
+	unsigned char salt[TLS_CIPHER_AES_CCM_128_SALT_SIZE];
+	unsigned char rec_seq[TLS_CIPHER_AES_CCM_128_REC_SEQ_SIZE];
+};
+
 #endif /* _UAPI_LINUX_TLS_H */
diff --git a/net/tls/tls_main.c b/net/tls/tls_main.c
index df921a2904b9..0e24edab2535 100644
--- a/net/tls/tls_main.c
+++ b/net/tls/tls_main.c
@@ -469,27 +469,32 @@  static int do_tls_setsockopt_conf(struct sock *sk, char __user *optval,
 
 	switch (crypto_info->cipher_type) {
 	case TLS_CIPHER_AES_GCM_128:
+		optsize = sizeof(struct tls12_crypto_info_aes_gcm_128);
+		break;
 	case TLS_CIPHER_AES_GCM_256: {
-		optsize = crypto_info->cipher_type == TLS_CIPHER_AES_GCM_128 ?
-			sizeof(struct tls12_crypto_info_aes_gcm_128) :
-			sizeof(struct tls12_crypto_info_aes_gcm_256);
-		if (optlen != optsize) {
-			rc = -EINVAL;
-			goto err_crypto_info;
-		}
-		rc = copy_from_user(crypto_info + 1, optval + sizeof(*crypto_info),
-				    optlen - sizeof(*crypto_info));
-		if (rc) {
-			rc = -EFAULT;
-			goto err_crypto_info;
-		}
+		optsize = sizeof(struct tls12_crypto_info_aes_gcm_256);
 		break;
 	}
+	case TLS_CIPHER_AES_CCM_128:
+		optsize = sizeof(struct tls12_crypto_info_aes_ccm_128);
+		break;
 	default:
 		rc = -EINVAL;
 		goto err_crypto_info;
 	}
 
+	if (optlen != optsize) {
+		rc = -EINVAL;
+		goto err_crypto_info;
+	}
+
+	rc = copy_from_user(crypto_info + 1, optval + sizeof(*crypto_info),
+			    optlen - sizeof(*crypto_info));
+	if (rc) {
+		rc = -EFAULT;
+		goto err_crypto_info;
+	}
+
 	if (tx) {
 #ifdef CONFIG_TLS_DEVICE
 		rc = tls_set_device_offload(sk, ctx);
diff --git a/net/tls/tls_sw.c b/net/tls/tls_sw.c
index 425351ac2a9b..fed27349a0f9 100644
--- a/net/tls/tls_sw.c
+++ b/net/tls/tls_sw.c
@@ -42,8 +42,6 @@ 
 #include <net/strparser.h>
 #include <net/tls.h>
 
-#define MAX_IV_SIZE	TLS_CIPHER_AES_GCM_128_IV_SIZE
-
 static int __skb_nsg(struct sk_buff *skb, int offset, int len,
                      unsigned int recursion_level)
 {
@@ -479,11 +477,18 @@  static int tls_do_encryption(struct sock *sk,
 	struct tls_rec *rec = ctx->open_rec;
 	struct sk_msg *msg_en = &rec->msg_encrypted;
 	struct scatterlist *sge = sk_msg_elem(msg_en, start);
-	int rc;
+	int rc, iv_offset = 0;
+
+	/* For CCM based ciphers, first byte of nonce+iv is always '2' */
+	if (prot->cipher_type == TLS_CIPHER_AES_CCM_128) {
+		rec->iv_data[0] = 2;
+		iv_offset = 1;
+	}
+
+	memcpy(&rec->iv_data[iv_offset], tls_ctx->tx.iv,
+	       prot->iv_size + prot->salt_size);
 
-	memcpy(rec->iv_data, tls_ctx->tx.iv, sizeof(rec->iv_data));
-	xor_iv_with_seq(prot->version, rec->iv_data,
-			tls_ctx->tx.rec_seq);
+	xor_iv_with_seq(prot->version, rec->iv_data, tls_ctx->tx.rec_seq);
 
 	sge->offset += prot->prepend_size;
 	sge->length -= prot->prepend_size;
@@ -1344,6 +1349,7 @@  static int decrypt_internal(struct sock *sk, struct sk_buff *skb,
 	struct scatterlist *sgout = NULL;
 	const int data_len = rxm->full_len - prot->overhead_size +
 			     prot->tail_size;
+	int iv_offset = 0;
 
 	if (*zc && (out_iov || out_sg)) {
 		if (out_iov)
@@ -1386,18 +1392,25 @@  static int decrypt_internal(struct sock *sk, struct sk_buff *skb,
 	aad = (u8 *)(sgout + n_sgout);
 	iv = aad + prot->aad_size;
 
+	/* For CCM based ciphers, first byte of nonce+iv is always '2' */
+	if (prot->cipher_type == TLS_CIPHER_AES_CCM_128) {
+		iv[0] = 2;
+		iv_offset = 1;
+	}
+
 	/* Prepare IV */
 	err = skb_copy_bits(skb, rxm->offset + TLS_HEADER_SIZE,
-			    iv + TLS_CIPHER_AES_GCM_128_SALT_SIZE,
+			    iv + iv_offset + prot->salt_size,
 			    prot->iv_size);
 	if (err < 0) {
 		kfree(mem);
 		return err;
 	}
 	if (prot->version == TLS_1_3_VERSION)
-		memcpy(iv, tls_ctx->rx.iv, crypto_aead_ivsize(ctx->aead_recv));
+		memcpy(iv + iv_offset, tls_ctx->rx.iv,
+		       crypto_aead_ivsize(ctx->aead_recv));
 	else
-		memcpy(iv, tls_ctx->rx.iv, TLS_CIPHER_AES_GCM_128_SALT_SIZE);
+		memcpy(iv + iv_offset, tls_ctx->rx.iv, prot->salt_size);
 
 	xor_iv_with_seq(prot->version, iv, tls_ctx->rx.rec_seq);
 
@@ -2152,14 +2165,15 @@  int tls_set_sw_offload(struct sock *sk, struct tls_context *ctx, int tx)
 	struct tls_crypto_info *crypto_info;
 	struct tls12_crypto_info_aes_gcm_128 *gcm_128_info;
 	struct tls12_crypto_info_aes_gcm_256 *gcm_256_info;
+	struct tls12_crypto_info_aes_ccm_128 *ccm_128_info;
 	struct tls_sw_context_tx *sw_ctx_tx = NULL;
 	struct tls_sw_context_rx *sw_ctx_rx = NULL;
 	struct cipher_context *cctx;
 	struct crypto_aead **aead;
 	struct strp_callbacks cb;
-	u16 nonce_size, tag_size, iv_size, rec_seq_size;
+	u16 nonce_size, tag_size, iv_size, rec_seq_size, salt_size;
 	struct crypto_tfm *tfm;
-	char *iv, *rec_seq, *key, *salt;
+	char *iv, *rec_seq, *key, *salt, *cipher_name;
 	size_t keysize;
 	int rc = 0;
 
@@ -2224,6 +2238,8 @@  int tls_set_sw_offload(struct sock *sk, struct tls_context *ctx, int tx)
 		keysize = TLS_CIPHER_AES_GCM_128_KEY_SIZE;
 		key = gcm_128_info->key;
 		salt = gcm_128_info->salt;
+		salt_size = TLS_CIPHER_AES_GCM_128_SALT_SIZE;
+		cipher_name = "gcm(aes)";
 		break;
 	}
 	case TLS_CIPHER_AES_GCM_256: {
@@ -2239,6 +2255,25 @@  int tls_set_sw_offload(struct sock *sk, struct tls_context *ctx, int tx)
 		keysize = TLS_CIPHER_AES_GCM_256_KEY_SIZE;
 		key = gcm_256_info->key;
 		salt = gcm_256_info->salt;
+		salt_size = TLS_CIPHER_AES_GCM_256_SALT_SIZE;
+		cipher_name = "gcm(aes)";
+		break;
+	}
+	case TLS_CIPHER_AES_CCM_128: {
+		nonce_size = TLS_CIPHER_AES_CCM_128_IV_SIZE;
+		tag_size = TLS_CIPHER_AES_CCM_128_TAG_SIZE;
+		iv_size = TLS_CIPHER_AES_CCM_128_IV_SIZE;
+		iv = ((struct tls12_crypto_info_aes_ccm_128 *)crypto_info)->iv;
+		rec_seq_size = TLS_CIPHER_AES_CCM_128_REC_SEQ_SIZE;
+		rec_seq =
+		((struct tls12_crypto_info_aes_ccm_128 *)crypto_info)->rec_seq;
+		ccm_128_info =
+		(struct tls12_crypto_info_aes_ccm_128 *)crypto_info;
+		keysize = TLS_CIPHER_AES_CCM_128_KEY_SIZE;
+		key = ccm_128_info->key;
+		salt = ccm_128_info->salt;
+		salt_size = TLS_CIPHER_AES_CCM_128_SALT_SIZE;
+		cipher_name = "ccm(aes)";
 		break;
 	}
 	default:
@@ -2268,16 +2303,16 @@  int tls_set_sw_offload(struct sock *sk, struct tls_context *ctx, int tx)
 	prot->overhead_size = prot->prepend_size +
 			      prot->tag_size + prot->tail_size;
 	prot->iv_size = iv_size;
-	cctx->iv = kmalloc(iv_size + TLS_CIPHER_AES_GCM_128_SALT_SIZE,
-			   GFP_KERNEL);
+	prot->salt_size = salt_size;
+	cctx->iv = kmalloc(iv_size + salt_size, GFP_KERNEL);
 	if (!cctx->iv) {
 		rc = -ENOMEM;
 		goto free_priv;
 	}
 	/* Note: 128 & 256 bit salt are the same size */
-	memcpy(cctx->iv, salt, TLS_CIPHER_AES_GCM_128_SALT_SIZE);
-	memcpy(cctx->iv + TLS_CIPHER_AES_GCM_128_SALT_SIZE, iv, iv_size);
 	prot->rec_seq_size = rec_seq_size;
+	memcpy(cctx->iv, salt, salt_size);
+	memcpy(cctx->iv + salt_size, iv, iv_size);
 	cctx->rec_seq = kmemdup(rec_seq, rec_seq_size, GFP_KERNEL);
 	if (!cctx->rec_seq) {
 		rc = -ENOMEM;
@@ -2285,7 +2320,7 @@  int tls_set_sw_offload(struct sock *sk, struct tls_context *ctx, int tx)
 	}
 
 	if (!*aead) {
-		*aead = crypto_alloc_aead("gcm(aes)", 0, 0);
+		*aead = crypto_alloc_aead(cipher_name, 0, 0);
 		if (IS_ERR(*aead)) {
 			rc = PTR_ERR(*aead);
 			*aead = NULL;

[net-next] net/tls: Add support of AES128-CCM based ciphers

Commit Message

Comments

Patch