UserWarning: Verification of GCM tag failed: MAC check failed #163
Comments
7 tasks
krizhanovsky
added a commit
to tempesta-tech/tempesta-test
that referenced
this issue
Dec 7, 2020
(tintinweb/scapy-ssl_tls#163). RFC 5246 6.2.3.3 requires the explicit nonce (most usually sequence number) in the additional authenticated data (AAD), however crypto_data.sequence, used for the AAD creation in EAEADCryptoContainer, wasn't initialized with the explicit_nonce.
|
We encountered the problem (tempesta-tech/tempesta#1310) as well and fixed it with tempesta-tech/tempesta-test@51f2680 . I didn't open a pull request for this original repo since it's unsupported any more, but I hope the fix will be useful for other people facing the problem. |
krizhanovsky
added a commit
to tempesta-tech/tempesta-test
that referenced
this issue
Dec 11, 2020
(tintinweb/scapy-ssl_tls#163). RFC 5246 6.2.3.3 requires the explicit nonce (most usually sequence number) in the additional authenticated data (AAD), however crypto_data.sequence, used for the AAD creation in EAEADCryptoContainer, wasn't initialized with the explicit_nonce.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I am seeing this warning:
Firs I do a "do_handshake" on a TLSSoket, the handshake is successful and after that I do do_round_trip(TLSPlaintext(data=)). After the round trip the warning is printed. The program works fine I just want to know if the warning can be ignored or otherwise how to fix it.
Thanks in advance and for the great work you are doing with this module.
The text was updated successfully, but these errors were encountered: