Home / Browse / IPsec Tools / Mail / Archive

IPsec Tools

Email Archive: ipsec-tools-devel (read-only)

2003:	_Jan	_Feb	_Mar (3)	_Apr (6)	_May	_Jun (14)	_Jul (4)	_Aug (19)	_Sep (27)	_Oct (7)	_Nov (4)	_Dec (3)
2004:	_Jan (58)	_Feb (20)	_Mar (70)	_Apr (93)	_May (102)	_Jun (130)	_Jul (47)	_Aug (61)	_Sep (149)	_Oct (160)	_Nov (243)	_Dec (94)
2005:	_Jan (199)	_Feb (166)	_Mar (276)	_Apr (422)	_May (289)	_Jun (222)	_Jul (306)	_Aug (154)	_Sep (72)	_Oct (163)	_Nov (113)	_Dec (195)
2006:	_Jan (174)	_Feb (94)	_Mar (130)	_Apr (45)	_May (85)	_Jun (115)	_Jul (120)	_Aug (111)	_Sep (210)	_Oct (56)	_Nov (72)	_Dec (30)
2007:	_Jan (56)	_Feb (49)	_Mar (35)	_Apr (58)	_May (83)	_Jun (101)	_Jul (46)	_Aug (58)	_Sep (47)	_Oct (58)	_Nov (55)	_Dec (54)
2008:	_Jan (52)	_Feb (21)	_Mar (20)	_Apr (49)	_May (20)	_Jun (37)	_Jul (101)	_Aug (49)	_Sep (75)	_Oct (152)	_Nov (34)	_Dec (63)
2009:	_Jan (90)	_Feb (12)	_Mar (88)	_Apr (49)	_May (36)	_Jun (36)	_Jul (52)	_Aug (54)	_Sep (19)	_Oct (45)	_Nov (18)	_Dec (34)
2010:	_Jan (12)	_Feb (28)	_Mar (18)	_Apr (19)	_May (14)	_Jun (15)	_Jul (24)	_Aug (45)	_Sep (6)	_Oct (4)	_Nov (21)	_Dec (23)
2011:	_Jan (24)	_Feb (45)	_Mar (56)	_Apr (18)	_May (4)	_Jun (10)	_Jul (15)	_Aug (38)	_Sep (11)	_Oct (48)	_Nov (55)	_Dec (29)
2012:	_Jan (41)	_Feb (15)	_Mar (24)	_Apr (17)	_May (12)	_Jun (17)	_Jul (18)	_Aug (17)	_Sep (17)	_Oct (4)	_Nov (8)	_Dec (13)
2013:	_Jan (9)	_Feb (1)	_Mar (10)	_Apr (18)	_May (14)	_Jun	_Jul	_Aug	_Sep	_Oct	_Nov	_Dec

[Ipsec-tools-devel] NULL Encryption support

From: isshed <isshed.sip@gm...> - 2012-05-17 16:42

Attachments: Message as HTML

Hi All,

I have made one application which works on IPsec on transport mode with
3des/NULL encryption. when I run it with NULL encryption it SA does not
estiblish. Then I tried adding manually using setkey command. But i was not
successful. I guess my linux kernel is not supporting NULL encryption. can
anyone let me know how to debug it? please let me know if anymore info
required.

Thanks,
Harendra

Re: [Ipsec-tools-devel] NULL Encryption support

From: VANHULLEBUS Yvan <vanhu@fr...> - 2012-05-22 15:45

On Thu, May 17, 2012 at 10:12:02PM +0530, isshed wrote:
> Hi All,

Hi.

> I have made one application which works on IPsec on transport mode with
> 3des/NULL encryption. when I run it with NULL encryption it SA does not
> estiblish. Then I tried adding manually using setkey command. But i was not
> successful. I guess my linux kernel is not supporting NULL encryption. can
> anyone let me know how to debug it? please let me know if anymore info
> required.

Using both NULL encryption and no authentication is forbidden by RFC
2406, section 3.2.

This is checked somewhere in the code, probably both in kernel and
userland.


Yvan.