Skip to content

Commit 8fd8fe2

Browse files
rado17krish2718
rado17
authored and
krish2718
committed
[nrf noup] modules: hostap: Support Wi-Fi EAP-TLS mode
Support Wi-Fi enterprise mode with NRF_SECURITY. Signed-off-by: Ravi Dondaputi <[email protected]>
1 parent 03cf55d commit 8fd8fe2

File tree

2 files changed

+30
-13
lines changed

2 files changed

+30
-13
lines changed

modules/hostap/CMakeLists.txt

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -526,6 +526,7 @@ zephyr_library_sources_ifdef(CONFIG_WIFI_NM_WPA_SUPPLICANT_DPP
526526
# crypto mbedtls related CRYPTO OR LEGACY_NCS
527527
if(DEFINED CONFIG_WIFI_NM_WPA_SUPPLICANT_CRYPTO OR
528528
DEFINED CONFIG_WIFI_NM_WPA_SUPPLICANT_CRYPTO_LEGACY_NCS OR
529+
DEFINED CONFIG_WIFI_NM_WPA_SUPPLICANT_CRYPTO_ALT_LEGACY_NCS OR
529530
DEFINED CONFIG_WIFI_NM_WPA_SUPPLICANT_CRYPTO_LEGACY_NCS_PSA)
530531
zephyr_library_sources(
531532
${HOSTAP_SRC_BASE}/crypto/crypto_mbedtls-bignum.c

modules/hostap/Kconfig

Lines changed: 29 additions & 13 deletions
Original file line numberDiff line numberDiff line change
@@ -109,7 +109,7 @@ config WIFI_NM_WPA_SUPPLICANT_WEP
109109

110110
choice WIFI_NM_WPA_SUPPLICANT_CRYPTO_BACKEND
111111
prompt "WPA supplicant crypto implementation"
112-
default WIFI_NM_WPA_SUPPLICANT_CRYPTO_LEGACY_NCS
112+
default WIFI_NM_WPA_SUPPLICANT_CRYPTO_ALT
113113
default WIFI_NM_WPA_SUPPLICANT_CRYPTO_LEGACY_NCS_PSA if SOC_SERIES_NRF54LX
114114
help
115115
Select the crypto implementation to use for WPA supplicant.
@@ -141,29 +141,27 @@ config WIFI_NM_WPA_SUPPLICANT_CRYPTO
141141
config WIFI_NM_WPA_SUPPLICANT_CRYPTO_ALT
142142
bool "Crypto Mbedtls alt support for WiFi"
143143
select MBEDTLS
144-
select MBEDTLS_CIPHER_MODE_CTR_ENABLED
145-
select MBEDTLS_CIPHER_MODE_CBC_ENABLED
146-
select MBEDTLS_CIPHER_AES_ENABLED
147-
select MBEDTLS_CIPHER_DES_ENABLED
148-
select MBEDTLS_MD5
149-
select MBEDTLS_SHA1
144+
select NRF_SECURITY
145+
select MBEDTLS_X509_LIBRARY
146+
select MBEDTLS_TLS_LIBRARY
147+
select MBEDTLS_CTR_DRBG_C
148+
select PSA_WANT_AES_KEY_SIZE_256
149+
select MBEDTLS_RSA_C
150+
select MBEDTLS_LEGACY_CRYPTO_C
150151
select MBEDTLS_ENTROPY_C
151152
select MBEDTLS_CIPHER
152153
select MBEDTLS_ECP_C
153-
select MBEDTLS_ECP_ALL_ENABLED
154-
select MBEDTLS_CMAC_C
155154
select MBEDTLS_PKCS5_C
156155
select MBEDTLS_PK_WRITE_C
157156
select MBEDTLS_ECDH_C
158157
select MBEDTLS_ECDSA_C
159-
select MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
160-
select MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED
161158
select MBEDTLS_DHM_C
162159
select MBEDTLS_HKDF_C
163-
select MBEDTLS_SERVER_NAME_INDICATION
164160
select MBEDTLS_X509_CRL_PARSE_C
161+
select MBEDTLS_KEY_EXCHANGE_ALL_ENABLED
162+
select MBEDTLS_MD_C
163+
select MBEDTLS_CIPHER_PADDING_PKCS7
165164
select MBEDTLS_TLS_VERSION_1_2
166-
select MBEDTLS_ECP_DP_SECP256R1_ENABLED
167165

168166
config WIFI_NM_WPA_SUPPLICANT_CRYPTO_LEGACY_NCS
169167
bool "Legacy Crypto support for WiFi using nRF security"
@@ -211,6 +209,24 @@ config WIFI_NM_WPA_SUPPLICANT_CRYPTO_LEGACY_NCS_PSA
211209
select MBEDTLS_PKCS5_C
212210
select MBEDTLS_ECP_DP_SECP256R1_ENABLED
213211

212+
config WIFI_NM_WPA_SUPPLICANT_CRYPTO_ALT_LEGACY_NCS
213+
bool "Legacy Crypto support for WiFi using nRF security"
214+
select MBEDTLS
215+
select NRF_SECURITY
216+
select MBEDTLS_CIPHER_MODE_CBC
217+
select MBEDTLS_CIPHER_MODE_CTR
218+
select MBEDTLS_LEGACY_CRYPTO_C
219+
select MBEDTLS_SHA1_C
220+
select MBEDTLS_ECP_C
221+
select MBEDTLS_CTR_DRBG_C
222+
select MBEDTLS_PK_C
223+
select MBEDTLS_PKCS5_C
224+
select MBEDTLS_PK_PARSE_C
225+
select MBEDTLS_CMAC_C
226+
select MBEDTLS_CIPHER_PADDING_PKCS7
227+
select MBEDTLS_PK_WRITE_C
228+
select MBEDTLS_KEY_EXCHANGE_ALL_ENABLED
229+
214230
config WIFI_NM_WPA_SUPPLICANT_CRYPTO_NONE
215231
bool "No Crypto support for WiFi"
216232

0 commit comments

Comments
 (0)