If IV is not required for cipher when we use RC4,does anyone have idea on what might be the problem?
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Marek Marcola Sent: Wednesday, April 18, 2007 1:17 PM To: openssl-users@openssl.org Subject: Re: Open SSL server and JSee client Hello, > But it appears > that your problem is defined by the 'no IV' message. I did a quick > search on it and didn't find much that was helpful. > >... no IV for cipher > >main, WRITE: TLSv1 Change Cipher Spec, length = 1 > >JsseJCE: Using JSSE internal implementation for cipher RC4 > >*** Finished This looks ok because server in server_hello response message: *** ServerHello, TLSv1 RandomCookie: GMT: 1176916541 bytes = { 45, 229, 111, 4, 214, 4, 165, 223, 225, 54, 122, 132, 33, 91, 145, 240, 233, 49, 201, 33, 9, 181, 230, 193, 255, 149, 175, 33 } Session ID: {2, 18, 90, 147, 29, 80, 116, 91, 86, 137, 193, 208, 108, 46, 253, 8, 116, 148, 142, 161, 214, 52, 109, 80, 5, 46, 143, 80, 163, 109, 41, 137} Cipher Suite: SSL_RSA_WITH_RC4_128_SHA Compression Method: 0 selects SSL_RSA_WITH_RC4_128_SHA which means that for symmetric encryption RC4 will be used which is not block cipher (RC4 is stream cipher). IV is used when block cipher in CBC mode is used (like DES or AES) but here server tells client to use RC4 and IV is not needed. Best regards, -- Marek Marcola <[EMAIL PROTECTED]> ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED] This message is for the designated recipient only and may contain privileged, proprietary, or otherwise private information. If you have received it in error, please notify the sender immediately and delete the original. Any other use of the email by you is prohibited. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
