Hi,
Take a look at function get_client_master_key in the file s2_srv.c, and
specifically at the line where a call to ssl_rsa_private_decrypt is made
: in it, the decision to use RSA_PKCS1_PADDING or RSA_SSLV23_PADDING is
made depending on the value of the member ssl2_rollback of the
ssl2_state_st structure. This member is set in the function
ssl23_get_client_hello in the file s23_srv, depending on the options of
the SSL options.
Cheers,
--
Mounir IDRASSI
IDRIX
http://www.idrix.fr
barcaroller wrote:
"Michael S. Zick" wrote in message
The padding is added to the **plain text**
After decryption, the server can determine the padding present.
I'm writing a server and I usually just call RSA_private_decrypt(...,
RSA_PKCS1_PADDING). Everything works fine most of the time but sometimes I
get that error. In your last sentence, did you mean that the server can
determine the padding mode? If so, how?
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
