TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA support
Phani 2004
phani2004 at gmail.com
Fri May 29 07:34:32 UTC 2020
Hi Team,
I am using openssl with dpdk. I try to run s_server and s_client
application. When we use dpdk how do we mention dpdk that we need to use
tls protocol. Is there any flag which indicates this. Because when we use
this cipher suite for tls 1.1 and 1.2 we need to skip the first 16 bytes
for generation auth but should encrypt it with other bytes.
We are using the Mac-then-encrypt.
For example for a typical finish msg will have the following data when
feeding for encryption.
13 bytes AAD
16 bytes of data which will be encrypted only but not used while generating
hmac
16 bytes fin record
20 byte hmac generated using 13 bytes AAD + 16 bytes Fin record
12 bytes padding.
How do we tell dpdk that the protocol used is tls.
Regards
Phani
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mta.openssl.org/pipermail/openssl-users/attachments/20200529/34e0ecea/attachment.html>
More information about the openssl-users
mailing list