On 2010-05-04 05:41 PST, Ramon de Carvalho Valle wrote: >>> SSLTAP shows the ClientKeyExchange message length in client_key_exchange >>> (16) is 130 (0x82) for TLSv1 and 128 (0x80) for SSLv3. >> Yes, that is a difference between the two protocol versions. >> >> TLS encodes the encrypted pre-master secret with an additional explicit >> length. SSL 3.0 does not. That additional explicit length takes 2 bytes. > > Do you know if this additional explicit length should be handled by my > PKCS #11 implementation when SSLv3 protocol is used or if it is handled > by mod_nss/NSS library?
It's all handled by the SSL library. -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
