OpenSSL: Debug message if requested AES key length is not supported

This makes it clearer why some AES operations fail especially with
BoringSSL where the 192-bit case is not supported.

Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>

diff --git a/src/crypto/crypto_openssl.c b/src/crypto/crypto_openssl.c
index 661f749b1ed18ce0ae7d50e6494b0fb3bde08053..91201ca348bda564a2898a15a90a7c93ffc25c9a 100644 (file)
--- a/src/crypto/crypto_openssl.c
+++ b/src/crypto/crypto_openssl.c
@@ -291,8 +291,11 @@ void * aes_encrypt_init(const u8 *key, size_t len)
                return NULL;
 
        type = aes_get_evp_cipher(len);
-       if (type == NULL)
+       if (!type) {
+               wpa_printf(MSG_INFO, "%s: Unsupported len=%u",
+                          __func__, (unsigned int) len);
                return NULL;
+       }
 
        ctx = EVP_CIPHER_CTX_new();
        if (ctx == NULL)
@@ -345,8 +348,11 @@ void * aes_decrypt_init(const u8 *key, size_t len)
                return NULL;
 
        type = aes_get_evp_cipher(len);
-       if (type == NULL)
+       if (!type) {
+               wpa_printf(MSG_INFO, "%s: Unsupported len=%u",
+                          __func__, (unsigned int) len);
                return NULL;
+       }
 
        ctx = EVP_CIPHER_CTX_new();
        if (ctx == NULL)