openssl icon indicating copy to clipboard operation
openssl copied to clipboard
verified publisher icon PeterMosmans

DTLS doesn't play nice with CHACHA20-POLY1305 ciphers

Open PeterMosmans opened this issue 10 years ago • 1 comments

It seems impossible to connect a openssl client to an openssl server when using DTLS1(.2) and a CHACHA20-POLY1305 cipher. Investigate what's going on.

Server side: ./openssl s_server -key CA.key -cert CA.crt -accept 4433 -dtls1_2 -cipher ECDHE-RSA-CHACHA20-POLY1305

Client side: ./openssl s_client -connect 127.0.0.1:4433 -dtls1_2 -cipher ECDHE-RSA-CHACHA20-POLY1305 Loading 'screen' into random state - and hangs

PeterMosmans avatar Mar 23 '15 03:03 PeterMosmans

Deferred for now - disabled DTLS for ChaCha20/Poly1305

PeterMosmans avatar Apr 07 '15 02:04 PeterMosmans