along with this program; if not, write to the Free Software
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
- $Id: net.c,v 1.35.4.95 2001/02/25 16:04:00 guus Exp $
+ $Id: net.c,v 1.35.4.96 2001/02/25 16:34:17 guus Exp $
*/
#include "config.h"
cp
outpkt.len = inpkt->len;
- /* Encrypt the packet. FIXME: we should use CBC, not CFB. */
+ /* Encrypt the packet. */
EVP_EncryptInit(&ctx, cl->cipher_pkttype, cl->cipher_pktkey, cl->cipher_pktkey + cl->cipher_pkttype->key_len);
EVP_EncryptUpdate(&ctx, outpkt.data, &outlen, inpkt->data, inpkt->len);
cp
/* Generate packet encryption key */
- myself->cipher_pkttype = EVP_bf_cfb();
+ myself->cipher_pkttype = EVP_bf_cbc();
myself->cipher_pktkeylength = myself->cipher_pkttype->key_len + myself->cipher_pkttype->iv_len;
along with this program; if not, write to the Free Software
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
- $Id: protocol.c,v 1.28.4.79 2001/02/25 11:09:29 guus Exp $
+ $Id: protocol.c,v 1.28.4.80 2001/02/25 16:34:19 guus Exp $
*/
#include "config.h"
cl->status.active = 1;
cl->status.decryptin = 1;
cl->nexthop = cl;
- cl->cipher_pkttype = EVP_bf_cfb();
+ cl->cipher_pkttype = EVP_bf_cbc();
cl->cipher_pktkeylength = cl->cipher_pkttype->key_len + cl->cipher_pkttype->iv_len;
if(debug_lvl >= DEBUG_CONNECTIONS)
new->nexthop = cl;
new->status.active = 1;
- new->cipher_pkttype = EVP_bf_cfb();
+ new->cipher_pkttype = EVP_bf_cbc();
new->cipher_pktkeylength = cl->cipher_pkttype->key_len + cl->cipher_pkttype->iv_len;
cp
return 0;
projects / tinc / commitdiff