Yes, it seems to be related to he FINISHED message, which is the first encrypted message.
>From the debug trace I can see the following difference (245 bytes <> 277 >bytes): 1. trace: ... BUF[HSK]: Peeked 0 bytes of Data BUF[HSK]: Emptied buffer HSK[11c03f60]: FINISHED was send [16 bytes] BUF[HSK]: Peeked 0 bytes of Data BUF[HSK]: Emptied buffer REC[11c03f60]: Sending Packet[0] Handshake(22) with length: 16 WRITE: Will write 245 bytes to 250844536. ... 2. trace: ... BUF[HSK]: Peeked 0 bytes of Data BUF[HSK]: Emptied buffer HSK[11c03f60]: FINISHED was send [16 bytes] BUF[HSK]: Peeked 0 bytes of Data BUF[HSK]: Emptied buffer REC[11c03f60]: Sending Packet[0] Handshake(22) with length: 16 WRITE: Will write 277 bytes to 250844536. ... Regards, Kris ----- original Nachricht -------- Betreff: Re: [Help-gnutls] TLS message length differs Gesendet: Di 19 Feb 2008 19:36:54 CET Von: "Nikos Mavrogiannopoulos"<[EMAIL PROTECTED]> > [EMAIL PROTECTED] wrote: > > Hello, > > > > When monitoring the TLS handshake I observed that in the second TLS > handshake message coming from a client the TLS message length always differs > even though the same session parameters are used (each time a new session is > started and completed). > > Does anyone have a good explanation for this? I am using X.509 > certificates for authentication (on client and server side) and the > certificates do not change. > > I don't understand which message you say it is different. Is it an > encrypted message? > > regards, > Nikos > --- original Nachricht Ende ---- Unbegrenzter Speicher, Top-Spamschutz, 120 SMS und eigene E-MailDomain inkl. http://office.freenet.de/dienste/emailoffice/produktuebersicht/power/mail/index.html _______________________________________________ Help-gnutls mailing list [email protected] http://lists.gnu.org/mailman/listinfo/help-gnutls
