[Ipsec-tools-devel] Does OpenSsl truncate the HMAC_SHA1 to 96 bits

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

Hello All,

  While using the SHA1 based ciphers, does openssl truncate the HMAC calculated to 96 bits from 160 bits. Looking at the code looks like "tls_mac" function in "t1_enc.c" returns 160 bits. However, "tls1_final_finish_mac" function takes a buffer of length 96 bits. I am not sure when "tls_final_finish_mac" function is called.

  Any help is appreciated.

  Thanks,
  Prashant.

 __________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 