What's up with our MAC support?
Hal Murray
hmurray at megapathdsl.net
Sat Feb 2 11:43:49 UTC 2019
> # 1, the packet is a crypto-NAK; if 3, the packet is
> # authenticated with DES; if 5, the packet is authenticated
The DES stuff is news to me.
NTP classic had stand alone code for MD5 and SHA1. We carried that along
until we decided to require libcrypto.
> I don't know how that relates to the set of MAC lengths implied by
> libcrypto's support list. I didn;t find good search hits for that.
If you pick an algorithm with a digest length bigger than 20 bytes, it gets
truncated.
I'm not sure what happens if you pick one with a digest length less than 16
bytes.
attic/digest-find is your friend for things like this. I should add DES and
DES3.
--
These are my opinions. I hate spam.
More information about the devel
mailing list