Steve Shanks <[EMAIL PROTECTED]>: > We have a situation with a non-openssl server (version 2 of SSL, > SSL_CK_RC4_128_EXPORT40_WITH_MD5) under development interfacing into an > openssl client (I downloaded a windows binary of openssl 0.9.6b). Everything > goes good until the server_finished is sent (which means that we have > successfully sent the server_verify which has been decrypted and > mac-checked, thus verifing all basic functions). > > At this point the mac verification fails. There was one message in the > archives from last year which described the same sort of behaviour but to > which no replies were forthcoming (see archives for message titled "OpenSSL > 0.9.6a handshake problem". > > Any thoughts? Note that the mac failure is before the session id is checked > for length or the message code is checked. > > The prior message, the server_verify was mac'ed as ssl record 1 and this > record, the server_finished was mac'd as ssl record 2. The same logic (using > an Atalla hardware card) was used to encrypt both records. Clearly, the > demonstration of success with the client_finished and the server_verify > demonstrate that both of the session keys have successfully been generated > by both ends of the connection. > > Interestingly, there is no mac error if I change the server to send the > server_finished (mac'ed now as record 1) when it should be sending the > server_finished. Obviously, I get an error about the wrong message type ^^^^^^^^^^^^^^^ You mean "should be sending the server_verify", apparently.
> received, but it gets through the decryption and mac check sucessfully. I > did this to see if it were a data problem or not [called my routine > ssl_send_sv_finished() in place of ssl_send_sv_verify() ]. > > Either there's a problem in the server logic (which I am able to debug) or > the openssl which I am not able to debug. The message length looks okay in your message dump, so as decryption apparently works, I'd guess the server hashes a different sequence number than the OpenSSL client. Are you totally sure that the message number is exactly one more than for the server_verify message? -- Bodo Möller <[EMAIL PROTECTED]> PGP http://www.informatik.tu-darmstadt.de/TI/Mitarbeiter/moeller/0x36d2c658.html * TU Darmstadt, Theoretische Informatik, Alexanderstr. 10, D-64283 Darmstadt * Tel. +49-6151-16-6628, Fax +49-6151-16-6036 ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
