From 442f8021026ccc5f7d7433a357b55af1e05e3875 Mon Sep 17 00:00:00 2001
From: Kapil Gupta <kapil.gupta@espressif.com>
Date: Wed, 1 Nov 2023 17:31:02 +0530
Subject: [PATCH] fix(wpa_supplicant): Correct iv lenght passed in
 mbedtls_cipher_set_iv()

---
 .../esp_supplicant/src/crypto/crypto_mbedtls.c    | 15 +++++++++------
 1 file changed, 9 insertions(+), 6 deletions(-)

diff --git a/components/wpa_supplicant/esp_supplicant/src/crypto/crypto_mbedtls.c b/components/wpa_supplicant/esp_supplicant/src/crypto/crypto_mbedtls.c
index 9790a0b3dd..97b0df675f 100644
--- a/components/wpa_supplicant/esp_supplicant/src/crypto/crypto_mbedtls.c
+++ b/components/wpa_supplicant/esp_supplicant/src/crypto/crypto_mbedtls.c
@@ -506,16 +506,19 @@ static int crypto_init_cipher_ctx(mbedtls_cipher_context_t *ctx,
 		return -1;
 	}
 
-	if (mbedtls_cipher_setkey(ctx, key, key_len * 8, operation) != 0) {
-		wpa_printf(MSG_ERROR, "mbedtls_cipher_setkey returned error");
+	ret = mbedtls_cipher_setkey(ctx, key, key_len * 8, operation);
+	if (ret != 0) {
+		wpa_printf(MSG_ERROR, "mbedtls_cipher_setkey returned error=%d", ret);
 		return -1;
 	}
-	if (mbedtls_cipher_set_iv(ctx, iv, cipher_info->MBEDTLS_PRIVATE(iv_size)) != 0) {
-		wpa_printf(MSG_ERROR, "mbedtls_cipher_set_iv returned error");
+	ret = mbedtls_cipher_set_iv(ctx, iv, cipher_info->MBEDTLS_PRIVATE(iv_size) << MBEDTLS_IV_SIZE_SHIFT);
+	if (ret != 0) {
+		wpa_printf(MSG_ERROR, "mbedtls_cipher_set_iv returned error=%d", ret);
 		return -1;
 	}
-	if (mbedtls_cipher_reset(ctx) != 0) {
-		wpa_printf(MSG_ERROR, "mbedtls_cipher_reset() returned error");
+	ret = mbedtls_cipher_reset(ctx);
+	if (ret != 0) {
+		wpa_printf(MSG_ERROR, "mbedtls_cipher_reset() returned error=%d", ret);
 		return -1;
 	}