2. Running TLS applications

2.1. Prerequisites

  1. Linux booted on Host and DPU

  2. Login to your docker on host and DPU

  3. Bind the pktio and crypto devices to vfio-pci

source dao-env.sh

2.2. DAO Environment Setup

Following step is required to run only once after the first login to docker

~# source /dao-env.sh

2.3. OpenSSL Speed Application

  1. Run speed application without engine

~# cd /usr/lib/cn10k/openssl-1.1.1q/bin
~# export LD_LIBRARY_PATH=/usr/lib/cn10k/openssl-1.1.1q/lib/
~# ./openssl speed -elapsed -async_jobs +24 -evp aes-256-gcm
~# ./openssl speed -elapsed rsa2048

  1. Run speed application with engine

~# OPENSSL_CONF=/opt/openssl.cnf ./openssl speed -elapsed -async_jobs +24 -evp aes-256-gcm
~# OPENSSL_CONF=/opt/openssl.cnf ./openssl speed -elapsed -async_jobs +24 rsa2048

2.4. Openssl server and client

  1. Run openssl s_server on DPU

~# OPENSSL_CONF=/opt/openssl.cnf ./openssl s_server -key certs/server.key.pem -cert certs/server.crt.pem -accept 4433 -tls1_2

  1. Run openssl s_client on x86 host machine

~# openssl s_client -connect <DUT_IP>:4433 -tls1_2

<DUT_IP> is the IP of s_server on DPU