-
Notifications
You must be signed in to change notification settings - Fork 426
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
The wireguard_write encryption result is different from the official one #353
Comments
i follow this step . https://www.ntkernel.com/boringtun-based-wireguard-client-for-windows/ |
It could be related to the size of the packet not being 100% Wireguard spec: boringtun/boringtun/src/noise/mod.rs Line 141 in 18eaf59
encrypted_static: &src[40..88], // SIZE u8;32, 88-40 = 48 bytes, seems too big for the spec (32) |
Is there something wrong with my handshake data? How do I deal with this? Thank you for your reply。 |
I am afraid you need to do the analysis yourself. It may be related to handshake field length, but this is for you to find out... |
Hi!
client: windows 10
server : centos 9
I used wireguard.exe and the allowed IP is 8.8.8.8.When I ping 8.8.8.8, I find that the original ICMP packet size is 60bit. 64bit after being encrypted by wireguard.
When I use wireguard_write, I find that it is still 60bit after encryption, and my server is not responding to the package.
My IP packet processing flow:
1.use windivert to get the IP package (60bit)
2. changed the sending address of the IP packet to 10.66.66.2 and recalculated the checksum
3. use wireguard_write to encrypt
4. udp socket send the result of step 3.
Is there anything else I need to do?
The text was updated successfully, but these errors were encountered: