Gayathri Sundar wrote:
> Thanks jimmy..I realised that much, the update is happening from ssl3_mac
> defined in s3_enc.c, some "s2n" of the length is called, followed by a
> digestupdate(md, 2)..in case of READ, md is an empty array..why do we copy
> the ssl record length into a temp var "p" and then do a s2n followed by an
> digest update?
>
> Thanks
> --Gayathri
>
s2n() converts the length to network order so that it can be mac'd. In
case of read, you must form the mac in the area pointed to by md, then
compare that with the mac at the end of the packet.
i think the use of 'p' must be obvious when u know what s2n() does :-)
-jb
--
mathematician, n.:
Some one who believes imaginary things appear right before your i's.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
