Date: Mon, 14 Jun 2021 22:57:50 +0530 From: Shamsher singh <meetshamsher@gmail.com> To: freebsd-security@freebsd.org Subject: ntpv4 steps for AES128CMAC authentication Message-ID: <9AEAF58B-22F0-4E8E-AA70-DEB6DCCF4344@gmail.com>
next in thread | raw e-mail | index | archive | help
Hi, I have taken latest NTPv4 from https://www.freshports.org/net/ntp/ = <https://www.freshports.org/net/ntp/>; I am able to test MD5 and SHA authentication. But not able to test = AES128CMAC. For all test used below parts: Added keys for MD5, SHA1 and AES128MAC=20 Ref: used from http://doc.ntp.org/current-stable/keygen.html = <http://doc.ntp.org/current-stable/keygen.html>; Example: 1 MD5 <xyz> 2 SHA1 <Xyz> 3 AES128CMAC <XYZ> ... at /etc/ntp.keys in client and /etc/ntp/keys in server. I am able to see authentication working fine for Md5 and SHA1 using=20 ntpdate -d -a 1 <ntp server ip> --> working fine ntpdate -d -a 2 <ntp server ip> --> working fine ntpdate -d -a 3 <net server ip> --> fails The 1st two passes easily but 3rd one fails for AES128CMAC. It seems i am missing something here to test/validate it. Can you please tell/guide me the steps how can i test it? I am using below NTP version : # ntpd --version ntpd 4.2.8p15@1.3728-o <mailto:4.2.8p15@1.3728-o> Wed Jun 2 11:00:34 = UTC 2021 (1) Thanks & regards Shamsher
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9AEAF58B-22F0-4E8E-AA70-DEB6DCCF4344>