kern/166508: [glxsb] AES 256 encryption does not work with
glxsb driver
Patrick Lamaiziere
patfbsd at davenulle.org
Sun Jun 24 12:50:10 UTC 2012
The following reply was made to PR kern/166508; it has been noted by GNATS.
From: Patrick Lamaiziere <patfbsd at davenulle.org>
To: bug-followup at FreeBSD.org, todd at toddblum.org
Cc:
Subject: Re: kern/166508: [glxsb] AES 256 encryption does not work with
glxsb driver
Date: Sun, 24 Jun 2012 14:33:52 +0200
Hello,
This is a known issue and a problem within the crypto(9) framework. In
the crypto framework we can only specify the algorithm (here aes) to
use but not the size of the key. As glxsb only does aes-128, it fails
when the crypto framework opens a session on it if the key size if
different than 128.
There is a CAVEAT section in the manual page of glxsb(4) for this :
CAVEAT
The crypto(9) framework will fail to open the crypto session on the
device if the AES key's length is != 128 bits. This prevents the
use of the glxsb device driver with AES keys of length != 128 bits.
To make this to work, it need some changes in crypto(9). Sorry.
(we can close this PR I guess, as it will not be solved)
Regards.
More information about the freebsd-bugs
mailing list