Nicolas George wrote: > > --9jxsPFA5p3P2qPhR > Content-Type: text/plain; charset=iso-8859-1 > Content-Disposition: inline > Content-Transfer-Encoding: quoted-printable > > Le tridi 3 messidor, an CCXXIV, Dan Purgert a =E9crit=A0: >> Because the TCP "stream" is still encapsulated in IP packets / Ethernet >> frames, and you cannot simply "break" an encrypted block at some >> arbitrary point in order to make it fit nicely in the packet / frame. > > Actually, this is exactly how it happens, you have to refresh your knowledge > of TCP and the socket API. TCP offers applications a stream interface, the > splitting into IP packets is done by the network and is invisible[*] to the > application or, in our case the TLS implementation, and it can happen > anywhere, including in the middle of cipher blocks.
Apparently, since I've never seen that one can split a cipher block in that manner. Have a link to the source? > [snip] > Also, just to correct you all the way, note that the block size of most > current block ciphers is 16 octets, not 64. Knew it was one of the two, so much for 50/50 chances :) -- |_|O|_| Registered Linux user #585947 |_|_|O| Github: https://github.com/dpurgert |O|O|O|