New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Enable support for IWD in NM and kernel #1258
Comments
I've done the The kernel has most of the options enabled. Once the NetworkManager change is available, we can test whether additional kernel changes are needed. From my checks, only |
Great, thank you. I built NM myself and can confirm that WPA2 PSK networks work. Enterprise networks (EAP-TLS at least) do not work though. I didn't get past loading my private key. This makes me think the PKCS7/8 options were not enabled, nor was there a module available on the default clear installation. I do think API_AEAD is needed for TLS though, so that might have to be turned on. Anyways, I'll wait till NM goes live and try it out again. |
@ahkok, looks like we are good to go. Just verified IWD works as expected. Thanks for getting this in. |
can you advise on what CONFIG_CRYPTO_USER_API_AEAD is needed for? I think we can just enable it, but, it would help if we had a good reason. |
ELL appears to use it as a bulk encryption algorithm option for TLS: https://git.kernel.org/pub/scm/libs/ell/ell.git/tree/ell/tls-suites.c#n1097 |
@miguelinux can you enable |
Close when done. |
The change is already in the |
* Random Number Generation - Pseudo Random Number Generation for Cryptographic modules - NIST SP800-90A DRBG - User-space interface for random number generator algorithms - User-space interface for AEAD cipher algorithms * Hardware crypto devices - Support for VIA PadLock ACE resolve clearlinux/distribution#1258
* Random Number Generation - Pseudo Random Number Generation for Cryptographic modules - NIST SP800-90A DRBG - User-space interface for random number generator algorithms - User-space interface for AEAD cipher algorithms * Hardware crypto devices - Support for VIA PadLock ACE resolve clearlinux/distribution#1258
* Random Number Generation - Pseudo Random Number Generation for Cryptographic modules - NIST SP800-90A DRBG - User-space interface for random number generator algorithms - User-space interface for AEAD cipher algorithms * Hardware crypto devices - Support for VIA PadLock ACE resolve clearlinux/distribution#1258
The |
Please enable for all kernels. It's user API. |
The IWD package was added to clear recently, but in order for it to work with NetworkManager, NM must be built using the
--with-iwd
flag. This will not enable IWD as the default wifi daemon, the user will still need to set the wifi backend in NetworkManager.conf.For 'full' IWD support the kernel also requires some additional features:
Some of these may already be enabled in clear, this is just IWD's complete list of required kernel features. This will enable IWD features such as WPS and Enterprise networks among others.
The text was updated successfully, but these errors were encountered: