Hello, There is a bug in tls export keying material for TLS 1.2 version. The digest mask uses for prf function in tls1_export_keying_material, directly passes algorithm2 from structure. Due to this, still the digest mask will come as md5 and sha1 combination which voilates rfc 5246 as digest mask should be based on cipher selected. This may lead to interoperability issues.
The fix is as below: In tls1_export_keying_material function, - rv=tls_PRF(s->s3->tmp.new_cipher->algorithm2, ..... To be changed to + rv=TLS_PRF(ssl_get_algorithm2(s), ... Regards Satish. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org