Different PRF with --disable-legacy-protocol?
Guus Sliepen
guus at tinc-vpn.org
Sun Jul 5 23:08:47 CEST 2015
On Sun, Jul 05, 2015 at 09:02:55PM +0200, Benjamin Richter wrote:
> I'm struggling with setting up an SPTPS connection between two of my
> machines. I attached the patch that I used to analyze this. Apparently
> different keys are derived depending on the crypto backend. Is this
> intentional?
No, this is not intentional, it's a bug in the hmac_sha512
implementation in nolegacy/prf.c. I'll fix this.
--
Met vriendelijke groet / with kind regards,
Guus Sliepen <guus at tinc-vpn.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <http://www.tinc-vpn.org/pipermail/tinc-devel/attachments/20150705/6163eacf/attachment.sig>
More information about the tinc-devel
mailing list