It appears that starting with OpenSSL 1.1.0, it is not possible to disable the Encrypt-Then-MAC (ETM) TLS extension for CBC ciphers. Is there an undocumented method to do this, which would also allow me to use the built-in s_server/s_client test mechanism?
Thanks, -Mike Michael Shirley Senior Test Engineer Office: (512) 498-7038 | Mobile:(512) 965-9004 mshir...@nsslabs.com <http://mshir...@nsslabs.com/> [s_logo_esig2.png]<https://www.nsslabs.com/> [itter_logo_esig_sm.png] <https://twitter.com/nsslabs> [nkedin_logo_esig_sm.png] <https://www.linkedin.com/company/nss-labs> [P Strategic Guidance Learn More]<http://sigstr.nsslabs.com/uc/586d0945825be97367c551f6>
-- openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
