Wireshark-bugs: [Wireshark-bugs] [Bug 7951] New: Can't decrypt IKEv1 when certificates are used

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Fri, 2 Nov 2012 06:46:30 -0700 (PDT)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7951

           Summary: Can't decrypt IKEv1 when certificates are used
                    (instead of PSK)
           Product: Wireshark
           Version: 1.8.3
          Platform: x86-64
        OS/Version: Mac OS X 10.6
            Status: NEW
          Severity: Normal
          Priority: Low
         Component: Wireshark
        AssignedTo: bugzilla-admin@xxxxxxxxxxxxx
        ReportedBy: Dominik.Rappaport@xxxxxxxxxxxx


Created attachment 9477
  --> https://bugs.wireshark.org/bugzilla/attachment.cgi?id=9477
Debug files

Build Information:
Version 1.8.3 (SVN Rev 45256 from /trunk-1.8)
--
Hi,

I successfully managed to decrypt IKEv1 packets when using PSK. However, when
switching to certificates, no decryption happens although I kept all other
settings the same (3DES, MD5, etc.).

I also sorted out that the problem is related to packet fragmentation of main
mode message 5 and 6 by using JUMBO frames.

I attach the packet capture and the pluto debug file.

ICOOKIE: fafaeb49382a763c
enc_key: 735be0cb62f82675c4f7bf8fbab9b56834ba76d6ab4fa240

Cheers,
Dominik

-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.