Revision - 3d7a9ac - Re-align some comments after running the reformat script. – ENEA Mirror of the Software Heritage archive

Revision 3d7a9aca8c400683d2fb7eca799fa547f70e4832 authored by Matt Caswell on 05 January 2015, 11:30:03 UTC, committed by Matt Caswell on 22 January 2015, 09:46:52 UTC

Re-align some comments after running the reformat script.

This should be a one off operation (subsequent invokation of the
script should not move them)

This commit is for the 1.0.0 changes

Reviewed-by: Tim Hudson <tjh@openssl.org>

1 parent 4bc9913

Files
Changes

Permalinks

sslref.dif

The February 9th, 1995 version of the SSL document differs from
https://www.netscape.com in the following ways.
=====
The key material for generating a SSL_CK_DES_64_CBC_WITH_MD5 key is
KEY-MATERIAL-0 = MD5[MASTER-KEY,"0",CHALLENGE,CONNECTION-ID]
not
KEY-MATERIAL-0 = MD5[MASTER-KEY,CHALLENGE,CONNECTION-ID]
as specified in the documentation.
=====
From the section 2.6 Server Only Protocol Messages

If the SESSION-ID-HIT flag is non-zero then the CERTIFICATE-TYPE,
CERTIFICATE-LENGTH and CIPHER-SPECS-LENGTH fields will be zero. 

This is not true for https://www.netscape.com.  The CERTIFICATE-TYPE
is returned as 1.
=====
I have not tested the following but it is reported by holtzman@mit.edu.

SSLref clients wait to recieve a server-verify before they send a
client-finished.  Besides this not being evident from the examples in
2.2.1, it makes more sense to always send all packets you can before
reading.  SSLeay was waiting in the server to recieve a client-finish
before sending the server-verify :-).  I have changed SSLeay to send a
server-verify before trying to read the client-finished.

Showing with 0 additions and 0 deletions (0 / 0 diffs computed)

Computing file changes ...