Hello, > > Does this read_mac_secret and write_mac_secret change with > Every md5 hash verification? No, this values are calculated from pre_master_secret and until end or renegotiation stays the same.
> I am not able to locate the code which actually updates this tcp > Seq numbers and so on..what does this hash_update function do? > Wht does it update? This implied SSL packet sequence has no connection with TCP sequence. Every SSL packet read from socket or written has 8-byte counter which is incremented on every read/write (not SSL_read/SSL_write but full SSL packet read/write). Location of this variables you may find in SSL object, in structure s3: read_sequence, write_sequence Code witch updates this variables is located in s3_enc.c as function ssl3_record_sequence_update() On every renegotiation, or more precisely: on every send/recived change_cipher_spec packet, right variable is cleared. Best regards, -- Marek Marcola <[EMAIL PROTECTED]> ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
