[Bug 222684] AH hmac-sha2-384 is incompatible with Linux AH hmac(sha384)

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Fri Sep 29 13:51:41 UTC 2017


            Bug ID: 222684
           Summary: AH hmac-sha2-384 is incompatible with Linux AH
           Product: Base System
           Version: 11.1-RELEASE
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: kern
          Assignee: freebsd-bugs at FreeBSD.org
          Reporter: jasonmader at gmail.com

I thought the problem might be because Linux is putting too many bits on the
wire, but it might be a IPv6 padding issue covered here,


FreeBSD side:

add -n ::SRC ::DST ah 0xSPI -m transport -A hmac-sha2-384 0xKEY;

Linux side:

ip xfrm state add src ::SRC dst ::DST proto ah spi 0xSPI auth "hmac(sha384)"
0xKEY mode transport

If the SUSE people are correct about the behavior, FreeBSD IPv6 Authenticated
Header might not be properly padded.

You are receiving this mail because:
You are the assignee for the bug.

More information about the freebsd-bugs mailing list