Hi,
I have some questions about rehandshake/renegotiation/resume handshake,
which are below. I would be greatful if someone could advise.
* On a SSL session resumption, partial handshake hashes ( calculated in
openssl's ssl3_finish_mac(..) function) doesnot include the handshake
messages from the prior full handshake. Is this true?
* Suppose that a renegotiation/rehandshake occurs after a full handshake.
Does the handshake hash for the renegotiation/rehandshake have to include
the handshake messages of the prior full handshake?
* What if another renegotiation/rehandshake occurs? Does the handshake hash
include both the prior full handshake and renegotiation/rehandshake?
* Same question when a renegotiation/rehandshake occurs after a resume. Does
the renegotiation/rehandshake then include the handshake messages from the
prior resume? What if another one happens?
Thanks,
Imran Badr.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
