[Click] possible bug in IPsec encryption/decryption
Dimitris Syrivelis
jsyr at inf.uth.gr
Tue May 22 11:42:18 EDT 2012
Hi Øivind,
To my knowledge the AES that is used is a 16-byte block cipher, so it only
works with multiples of 16 bytes. Moreover, i think the code is appropriately
padding packets to be multiple of 16 bytes. Have you removed the padding code,
or there is a bug there?
Regards,
Dimitris
> Hi,
> When using the IPSEC encryption and esp/desp (in click 2.01) packets
> seemed to be corrupted when the packet length was a multiple of 8
> but not 16. I increased the BLKS to 16 ensuring that all packets are
> multiple of 16, which solved the problem. Given that the code
> contains a special logic for the case describe, my guess is a bug,
> but I have not tried to find the possible bug.
> Regards
> Øivind
> _______________________________________________
> click mailing list
> click at amsterdam.lcs.mit.edu
> https://amsterdam.lcs.mit.edu/mailman/listinfo/click
>
More information about the click
mailing list