gnutls_ia_extract_inner_secret (3) - Linux Manuals

gnutls_ia_extract_inner_secret: API function


gnutls_ia_extract_inner_secret - API function


#include <gnutls/extra.h>

void gnutls_ia_extract_inner_secret(gnutls_session_t session, char * buffer);


gnutls_session_t session
is a gnutls_session_t structure.
char * buffer
pre-allocated buffer to hold 48 bytes of inner secret.


Copy the 48 bytes large inner secret into the specified buffer

This function is typically used after the TLS/IA handshake has concluded. The TLS/IA inner secret can be used as input to a PRF to derive session keys. Do not use the inner secret directly as a session key, because for a resumed session that does not include an application phase, the inner secret will be identical to the inner secret in the original session. It is important to include, for example, the client and server randomness when deriving a sesssion key from the inner secret.


Report bugs to <bug-gnutls [at]>. GnuTLS home page: General help using GNU software:


Copyright © 2008 Free Software Foundation.
Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.


The full documentation for gnutls is maintained as a Texinfo manual. If the info and gnutls programs are properly installed at your site, the command
info gnutls

should give you access to the complete manual.