Yeah I'm not entirely pleased with the current layout. I'm tempted to create a second source file JUST for the AES-GCM code. That'll at least keep it contained.

What do you two think about that?

Nit, please consider adding this line after All Rights Reserved. I'd also change the date to 2025.

stupid nit: no space after !

stupid nit" use 'for (int i = 0;... )' here

I like the end marker; am I right that only the last two functions are called from the net80211 code? I was contemplating a /h file with just inline functions but that's likely not great either. If it's just two functions calls we could prefix them with __net80211_ or something so they stay distinct here and will not interfere with TLS or any other crypto and then keep them otherwise private.
I wanted to look how it shows on the CCMP file; if it's the same there we could probably do the same there...

Sorry I know it's not helpful to get this landed but it'll save us. Alternatively we get it in and factor it out if it's inconvenient in the review.

This will be MIC with D49219

ok, wanna go see if that's any better? I can go prefix them too; they're in their own source file now so it's easy to hide the details.

Looks good to me! Thanks for the shuffle.

stupid nit" use 'for (int i = 0;... )' here

It's no longer relevant for this file; the relevant code moved to ieee80211_aes_gcm.c

Empty line?

extra blank line? Is that from upstream?

Do you still need this?

Doubt this file needs this one.

Also not sure about that one? If rijndael needs it it should take care of it itself?

Indentations look weird here and for the next one. Could be Phabricator, can you check?

Do you need this?

I assume this is gone into its own file here?

How does this compile? It's a re-define from crypto_gcm.h

Indent looks weird.

I need to sort my head around what ic_trailer and ic_miclen (or enmimc()) means in net80211 and implies.

In theory this and the above coul go into std. ieee80211_crypto.h and be called ieee80211_crypto_get_XXX_len()

I still think there should be one internal implementation which takes two arguments and these two can be one-line-wrappers.

I wonder why we don't name them PN5,4 and PN3/2/1/0 like gcmp_init_iv does. I wonder if ccmp got this the other way before as well?

Indent looks weird.

And no () either. Should be a bool anyway...

extra empty line

if ((rxs != NULL) && (rxs->c_pktflags & IEEE80211_RX_F_IV_STRIP) != 0)

if ((rxs == NULL) || (rxs->c_pktflags & IEEE80211_RX_F_IV_STRIP) == 0) {

if ((rxs == NULL) || (rxs->c_pktflags & IEEE80211_RX_F_MIC_STRIP) == 0)

if ((rxs == NULL) || (rxs->c_pktflags & IEEE80211_RX_F_IV_STRIP) == 0) {