> From: [email protected] On Behalf Of nilesh > Sent: Tuesday, 08 November, 2011 01:35
I finally had some time over the holiday to look at this. > I have setup the apache server and capturing packets using Wireshark. > I have a query specific to RC4. With the given server private > key, I am > able to generate master secret and key block correctly. Actually your code is specific to RSA-RC4-MD5 in SSL3 only. > My test code output matches with Wireshark debug logs (i.e. > the master > secret generated and key block generated using pseudo-random > function). <snip: broken down as 16,16,16,16> > Any pointers on why the decryption is failing here? Please > see the test > code attached (please pardon the code formatting). > It appears (from the size) you are trying to decrypt the first AppData record, but that is not the first thing encrypted with the client->server encryption key. You need to decrypt the Finished message first, or since RC4 is a stream cipher (hence no chaining) just decrypt any data the same size as Finished, and then decrypt the first AppData. With that change and using my own data (since I don't have the key for yours) it works correctly. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
