1 (edited by muralid2 2018-04-12 05:20:01)

Topic: regarding activation of TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256

what steps needs to done to activate the  cipher suite TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256 and how to check this fucntionality after enable this  ?since i can see in the wolfssl source code is supporting this cipher suite.
Kindly someone explain me  ?

Share

Re: regarding activation of TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256

muralid2,

To activate this cipher suite configure with:

./configure CFLAGS=-DWOLFSSL_STATIC_DH

wolfSSL disabled static cipher suites a long time ago. Our README now states:

# Notes - Please read

## Note 1
```
wolfSSL as of 3.6.6 no longer enables SSLv3 by default.  wolfSSL also no
longer supports static key cipher suites with PSK, RSA, or ECDH.  This means
if you plan to use TLS cipher suites you must enable DH (DH is on by default),
or enable ECC (ECC is on by default on 64bit systems), or you must enable static
key cipher suites with
    WOLFSSL_STATIC_DH
    WOLFSSL_STATIC_RSA
    or
    WOLFSSL_STATIC_PSK

Let us know if you have any further questions!


Warm Regards,

Kaleb