-----BEGIN PGP SIGNED MESSAGE-----
It appears that we get the decoding rather wrong.
We do not remove the trailing authentication data before doing the
next header/pad processing. The result is garbage.
Since I'm hacking on this code, and it appears that nobody has come across
this problem before (well, it would have worked with the RFC transforms), I'm
going to
1) introduce a set of new transform names for the new RFCs.
2) make it all table driven.
3) take a "secret" starting with "0x" to mean a hex string.
The -R flag will become obsolete.
] ON HUMILITY: to err is human. To moo, bovine. | firewalls [
] Michael Richardson, Sandelman Software Works, Ottawa, ON |net architect[
] [EMAIL PROTECTED] http://www.sandelman.ottawa.on.ca/ |device driver[
] panic("Just another NetBSD/notebook using, kernel hacking, security guy"); [
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: latin1
Comment: Finger me for keys
iQCVAwUBO8rMqYqHRg3pndX9AQHRJgP/Sk9259xo4+vMBpLQjzvfd/fCJ28XMXki
HIDG/r67AG18FiKcZDtapU591PZAM/69UT8oxPi2hO83WEGAvGTvi/awYMCQ91kt
DS0A6SxGtearI0ePaWR2qpYccIQjUjDDfcsqDpjQ2rrAmFxwGb00FzNeN1zsKy8p
wpNxGVNc6PY=
=EOIQ
-----END PGP SIGNATURE-----
-
This is the TCPDUMP workers list. It is archived at
http://www.tcpdump.org/lists/workers/index.html
To unsubscribe use mailto:[EMAIL PROTECTED]?body=unsubscribe
