manual keying with OpenSwan 2.6.18
Hi, I'm using OpenSwan 2.6.18 with kernel 2.6.26.5 on ARM based system and trying to run ipsec session with the following connection(ipsec.conf): conn test type=tunnel authby=secret left=192.168.0.1 # Picks up our dynamic IP leftsubnet=192.167.0.0/16 right=192.168.1.1 # Remote information rightsubnet=192.168.1.0/24 auto=route spi=0x668 esp=3des-sha1 # ESP enc/auth algorithm (3des-md5-96/3des-sha1-96) espenckey=0x01234567_89abcdef_02468ace_13579bdf_12345678_9abcdef0 espauthkey=0x12345678_9abcdef0_2468ace0_2468ace0_13579bdf when I start the ipsec service, the following message appears(refer to spi parameter): can not load config '/etc/ipsec.conf': /etc/ipsec.conf:46: valid keyword, but value is not a number [0x668] Failed to parse config setup portion of ipsec.conf Did I miss something ? Thanks, Eran. -- To unsubscribe from this list: send the line unsubscribe linux-crypto in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html
Re: [PATCH] crypto: add test vectors for skein256/512/1024
* Jeff Garzik | 2008-11-02 20:44:40 [-0500]: Sebastian Andrzej Siewior wrote: I grabed them from http://www.schneier.com/skein.html. The last test vector (3) in every category is currently deactivated because it failed always. It is unlikely that I made a type because I copy+pasted the tables + vim magiced them. So maybe code may missbehave on requests lengths which are not a multiple of 4 or the vectors can not be used due to some other limitations that I've overseen. Okay, that was a false positive :) The untouched reference implementation outputs the same hash. The additional information (tree, ...) is part of the third argument in Skein_XXX_InitExt() which isn't used. So we can safely drop the third test vector. Jeff Sebastian -- To unsubscribe from this list: send the line unsubscribe linux-crypto in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html
