Hello Jan,
Op vr 15 mrt. 2019 om 18:19 schreef Jan Just Keijser <janj...@nikhef.nl>: > who says it is transmitted before the encrypted data? where in the source > is that specified? If you look at crypto.c routines openvpn_encrypt_aead vs > openvpn_encrypt_v1 you will find that the HMAC part seems to be added at > the end (e.g. look for > hmac_start = BEND(&work); > https://build.openvpn.net/doxygen/group__data__crypto.html under crypto packet formats: [ opcode ] [ - packet ID - ] [ TAG ] [ * packet payload * ] [ - opcode/peer-id - ] [ - packet ID - ] [ TAG ] [ * packet payload * ] This was also discussed in the original email exchange, though there was no answer to Steffan's question: https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg09879.html Kind regards, Pieter Hulshoff
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
