diff options
author | Vladimir Ratnikov <vratnikov@netgate.com> | 2022-09-22 08:19:18 +0000 |
---|---|---|
committer | Damjan Marion <dmarion@0xa5.net> | 2022-09-27 15:11:07 +0000 |
commit | 05554c6e98f5bd088543f7b33aabc9b215d55cd0 (patch) | |
tree | f25b77c25e434f31a0fdd4f717eded48e87389ba /src/plugins/srv6-mobile | |
parent | 1834b04d20552e92da11719afddd5497f522273a (diff) |
crypto-openssl: use no padding for encrypt/decrypt
Internaly, vpp uses it's own padding, so all the data
is padded using blocksize in /src/vnet/ipsec/ipsec.c
Openssl should add it's own padding, but the data
is already padded. So on decrypt stage when padding
should be removed, it can't be done. And it produces
error `bad decrypt`
Previous versions of openSSL decrypted data almost
at the beginning of EVP_DecryptUpdate/EVP_DecryptFinal_ex
and produced the same error, but data was already decrypted.
Now it's not, so some algorithms could have some problems
with it
PS. openSSL 3.x.x
Type: fix
Signed-off-by: Vladimir Ratnikov <vratnikov@netgate.com>
Change-Id: If715a80228548b4e588cee222968d9da9024c438
Diffstat (limited to 'src/plugins/srv6-mobile')
0 files changed, 0 insertions, 0 deletions