Interoperability issue with The Bat (Debian Bug #316522)
Simon Josefsson
simon at josefsson.org
Fri Jan 4 20:29:25 CET 2008
Simon Josefsson <simon at josefsson.org> writes:
>> It might be possible (judging from
>> https://www.ritlabs.com/bt/view.php?id=5785) that The Bat by default
>> refuses to talk TLS to a server presenting a self-signed certificate.
>
> I also note that it is possible to download trial versions of TheBat.
> If we can get a recipe to reproduce the problem using it, that would
> help a lot.
TheBat works under Wine, so I downloaded it and debugged this... FWIW, I
can reproduce the problem:
2008-01-04 19:03:02 TLS error on connection from xxx.bredband.comhem.se (mocca.local) [x.y.z.q] (gnutls_handshake): An error was encountered at the TLS Finished packet calculation.
Using gnutls-serv, I get the connection debug log [1] below. TheBat
complains that the CA is untrusted, and I have to click continue. Then
it fails with the TLS Finished packet calculation error.
However, if I start gnutls-serv with --disable-client-cert I get the
debug log [2] which is a successful TLS handshake!
Even though the TLS handshake is successful TheBat doesn't send the
e-mail though, and I don't know why, it may be because it expects CRLF
and I only sent LF.
Running openssl works, see debug log [3]. I also cannot TheBat to send
the e-mail, possibly due to the same CRLF issue.
I don't know why it works with openssl but not gnutls. It needs more
debugging. Given that we don't have source for TheBat, this is somewhat
difficult. I would want to instrument it to print some information
about the TLS Finished computation, to see what it is using.
/Simon
Debug log [1]:
jas at mocca:~$ ~/bin/gnutls-serv -p 5870 -d 4711 --x509keyfile ~/src/www-gnutls/test-credentials/x509-server-key.pem --x509certfile ~/src/www-gnutls/test-credentials/x509-server.pem --x509cafile ~/src/www-gnutls/test-credentials/x509-ca.pem
Set static Diffie Hellman parameters, consider --dhparams.
Processed 1 CA certificate(s).
Echo Server ready. Listening to port '5870'.
|<7>| READ: Got 5 bytes from 5
|<7>| READ: read 5 bytes from 5
|<7>| 0000 - 16 03 01 00 33
|<7>| RB: Have 0 bytes into buffer. Adding 5 bytes.
|<7>| RB: Requested 5 bytes
|<4>| REC[8076e00]: Expected Packet[0] Handshake(22) with length: 1
|<4>| REC[8076e00]: Received Packet[0] Handshake(22) with length: 51
|<7>| READ: Got 51 bytes from 5
|<7>| READ: read 51 bytes from 5
|<7>| 0000 - 01 00 00 2f 03 01 47 7e 7f ea 38 35 d5 07 47 e2
|<7>| 0001 - ea 58 fd 1c 39 87 57 76 ad a6 bc 0b a6 41 63 35
|<7>| 0002 - e9 18 0f 44 5a 31 00 00 08 00 35 00 2f 00 05 00
|<7>| 0003 - 0a 01 00
|<7>| RB: Have 5 bytes into buffer. Adding 51 bytes.
|<7>| RB: Requested 56 bytes
|<4>| REC[8076e00]: Decrypted Packet[0] Handshake(22) with length: 51
|<6>| BUF[HSK]: Inserted 51 bytes of Data(22)
|<6>| BUF[REC][HD]: Read 1 bytes of Data(22)
|<6>| BUF[REC][HD]: Read 3 bytes of Data(22)
|<3>| HSK[8076e00]: CLIENT HELLO was received [51 bytes]
|<6>| BUF[REC][HD]: Read 47 bytes of Data(22)
|<6>| BUF[HSK]: Peeked 0 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<6>| BUF[HSK]: Inserted 4 bytes of Data
|<6>| BUF[HSK]: Inserted 47 bytes of Data
|<3>| HSK[8076e00]: Client's version: 3.1
|<2>| ASSERT: gnutls_db.c:327
|<2>| ASSERT: gnutls_db.c:247
|<2>| ASSERT: gnutls_extensions.c:159
|<3>| HSK[8076e00]: Removing ciphersuite: PSK_SHA_ARCFOUR_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: PSK_SHA_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: PSK_SHA_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: PSK_SHA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_PSK_SHA_ARCFOUR_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_PSK_SHA_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_PSK_SHA_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_PSK_SHA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_DSS_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_RSA_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_DSS_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_RSA_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_DSS_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_RSA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_DSS_ARCFOUR_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_DSS_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_DSS_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_DSS_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_DSS_CAMELLIA_128_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_DSS_CAMELLIA_256_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: DHE_RSA_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: DHE_RSA_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: DHE_RSA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: DHE_RSA_CAMELLIA_128_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: DHE_RSA_CAMELLIA_256_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: RSA_ARCFOUR_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: RSA_ARCFOUR_MD5
|<3>| HSK[8076e00]: Keeping ciphersuite: RSA_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: RSA_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: RSA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: RSA_CAMELLIA_128_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: RSA_CAMELLIA_256_CBC_SHA1
|<3>| HSK[8076e00]: Selected cipher suite: RSA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Selected Compression Method: NULL
|<3>| HSK[8076e00]: SessionID: 674c898acd6cf0febb26777b94beeb83e1fcb9899a30b7cad5eb93dc2713681a
|<3>| HSK[8076e00]: SERVER HELLO was send [74 bytes]
|<6>| BUF[HSK]: Peeked 51 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<4>| REC[8076e00]: Sending Packet[0] Handshake(22) with length: 74
|<7>| WRITE: Will write 79 bytes to 5.
|<7>| WRITE: wrote 79 bytes to 5. Left 0 bytes. Total 79 bytes.
|<7>| 0000 - 16 03 01 00 4a 02 00 00 46 03 01 47 7e 7f ea c0
|<7>| 0001 - fd 53 26 e1 f9 2f e2 e4 c6 8f 0f 35 ef e7 83 24
|<7>| 0002 - a3 5c da a1 04 7c 22 09 a5 2e c0 20 67 4c 89 8a
|<7>| 0003 - cd 6c f0 fe bb 26 77 7b 94 be eb 83 e1 fc b9 89
|<7>| 0004 - 9a 30 b7 ca d5 eb 93 dc 27 13 68 1a 00 35 00
|<4>| REC[8076e00]: Sent Packet[1] Handshake(22) with length: 79
|<3>| HSK[8076e00]: CERTIFICATE was send [612 bytes]
|<6>| BUF[HSK]: Peeked 0 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<4>| REC[8076e00]: Sending Packet[1] Handshake(22) with length: 612
|<7>| WRITE: Will write 617 bytes to 5.
|<7>| WRITE: wrote 617 bytes to 5. Left 0 bytes. Total 617 bytes.
|<7>| 0000 - 16 03 01 02 64 0b 00 02 60 00 02 5d 00 02 5a 30
|<7>| 0001 - 82 02 56 30 82 01 c1 a0 03 02 01 02 02 04 46 26
|<7>| 0002 - 1d 31 30 0b 06 09 2a 86 48 86 f7 0d 01 01 05 30
|<7>| 0003 - 19 31 17 30 15 06 03 55 04 03 13 0e 47 6e 75 54
|<7>| 0004 - 4c 53 20 74 65 73 74 20 43 41 30 1e 17 0d 30 37
|<7>| 0005 - 30 34 31 38 31 33 32 39 32 31 5a 17 0d 30 38 30
|<7>| 0006 - 34 31 37 31 33 32 39 32 31 5a 30 37 31 1b 30 19
|<7>| 0007 - 06 03 55 04 0a 13 12 47 6e 75 54 4c 53 20 74 65
|<7>| 0008 - 73 74 20 73 65 72 76 65 72 31 18 30 16 06 03 55
|<7>| 0009 - 04 03 13 0f 74 65 73 74 2e 67 6e 75 74 6c 73 2e
|<7>| 000a - 6f 72 67 30 81 9c 30 0b 06 09 2a 86 48 86 f7 0d
|<7>| 000b - 01 01 01 03 81 8c 00 30 81 88 02 81 80 d7 ba 5c
|<7>| 000c - af a3 0c f0 2e a9 27 56 aa 53 8e a8 eb 7f 81 75
|<7>| 000d - 4c 6b 98 be 4a ea b7 1e f8 4b c3 6a c4 da 0d 00
|<7>| 000e - b8 ea 4c 13 1f 36 16 93 de 72 ef c6 a4 5e b2 6e
|<7>| 000f - b6 ca 0a 88 55 75 90 96 ed a6 57 bc 0c 3b 76 0d
|<7>| 0010 - 97 1e bd e9 ec 7f d3 a9 ec fb 85 64 a0 6b a0 48
|<7>| 0011 - ce 77 7e 73 9c 31 13 ff 3d c8 ae a5 60 6e d9 b6
|<7>| 0012 - 8c 5a 9a 6f b6 be 9f 6a bd a7 f0 a0 33 27 f5 b7
|<7>| 0013 - 1d 92 e5 96 9c 73 52 d6 9f d6 c8 8e b1 02 03 01
|<7>| 0014 - 00 01 a3 81 93 30 81 90 30 0c 06 03 55 1d 13 01
|<7>| 0015 - 01 ff 04 02 30 00 30 1a 06 03 55 1d 11 04 13 30
|<7>| 0016 - 11 82 0f 74 65 73 74 2e 67 6e 75 74 6c 73 2e 6f
|<7>| 0017 - 72 67 30 13 06 03 55 1d 25 04 0c 30 0a 06 08 2b
|<7>| 0018 - 06 01 05 05 07 03 01 30 0f 06 03 55 1d 0f 01 01
|<7>| 0019 - ff 04 05 03 03 07 a0 00 30 1d 06 03 55 1d 0e 04
|<7>| 001a - 16 04 14 eb c7 45 6e e5 f8 25 ca 8c 8d 83 0d 74
|<7>| 001b - e9 86 d4 dd 55 b4 75 30 1f 06 03 55 1d 23 04 18
|<7>| 001c - 30 16 80 14 e9 3c 1c fb ad 92 6e e6 06 a4 56 2c
|<7>| 001d - a2 e1 c0 53 27 c8 f2 95 30 0b 06 09 2a 86 48 86
|<7>| 001e - f7 0d 01 01 05 03 81 81 00 68 51 0f 4e df bb 6f
|<7>| 001f - 3b c1 b8 e7 fb f9 09 9e 41 c9 f6 f6 44 fa 06 cc
|<7>| 0020 - a1 d5 11 c9 5d ff 0a 4e 4e 50 45 fc 29 ea 88 1b
|<7>| 0021 - a7 de 09 41 67 0d 43 f4 bb 60 31 47 82 50 f5 03
|<7>| 0022 - 05 0d 05 15 f0 77 7a e2 52 c3 27 b3 18 1e 48 3c
|<7>| 0023 - 58 05 f2 58 6c 32 de a2 13 41 b2 a6 8f 0c 96 fb
|<7>| 0024 - 5d a8 a5 59 b3 10 29 f0 1b 15 0f 1c 9c ec 60 ac
|<7>| 0025 - e2 8b 51 04 56 27 42 b7 1f 25 d1 32 16 ea 8d d2
|<7>| 0026 - c8 69 08 82 bd 02 ee 8b 3a
|<4>| REC[8076e00]: Sent Packet[2] Handshake(22) with length: 617
|<3>| HSK[8076e00]: CERTIFICATE REQUEST was send [38 bytes]
|<6>| BUF[HSK]: Peeked 0 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<4>| REC[8076e00]: Sending Packet[2] Handshake(22) with length: 38
|<7>| WRITE: Will write 43 bytes to 5.
|<7>| WRITE: wrote 43 bytes to 5. Left 0 bytes. Total 43 bytes.
|<7>| 0000 - 16 03 01 00 26 0d 00 00 22 02 01 02 00 1d 00 1b
|<7>| 0001 - 30 19 31 17 30 15 06 03 55 04 03 13 0e 47 6e 75
|<7>| 0002 - 54 4c 53 20 74 65 73 74 20 43 41
|<4>| REC[8076e00]: Sent Packet[3] Handshake(22) with length: 43
|<3>| HSK[8076e00]: SERVER HELLO DONE was send [4 bytes]
|<6>| BUF[HSK]: Peeked 0 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<4>| REC[8076e00]: Sending Packet[3] Handshake(22) with length: 4
|<7>| WRITE: Will write 9 bytes to 5.
|<7>| WRITE: wrote 9 bytes to 5. Left 0 bytes. Total 9 bytes.
|<7>| 0000 - 16 03 01 00 04 0e 00 00 00
|<4>| REC[8076e00]: Sent Packet[4] Handshake(22) with length: 9
|<7>| READ: -1 returned from 5, errno=11 gerrno=0
|<2>| ASSERT: gnutls_buffers.c:360
|<2>| ASSERT: gnutls_buffers.c:1152
|<2>| ASSERT: gnutls_handshake.c:1012
|<7>| READ: Got 5 bytes from 5
|<7>| READ: read 5 bytes from 5
|<7>| 0000 - 16 03 01 00 07
|<7>| RB: Have 0 bytes into buffer. Adding 5 bytes.
|<7>| RB: Requested 5 bytes
|<4>| REC[8076e00]: Expected Packet[1] Handshake(22) with length: 1
|<4>| REC[8076e00]: Received Packet[1] Handshake(22) with length: 7
|<7>| READ: Got 7 bytes from 5
|<7>| READ: read 7 bytes from 5
|<7>| 0000 - 0b 00 00 03 00 00 00
|<7>| RB: Have 5 bytes into buffer. Adding 7 bytes.
|<7>| RB: Requested 12 bytes
|<4>| REC[8076e00]: Decrypted Packet[1] Handshake(22) with length: 7
|<6>| BUF[HSK]: Inserted 7 bytes of Data(22)
|<6>| BUF[REC][HD]: Read 1 bytes of Data(22)
|<6>| BUF[REC][HD]: Read 3 bytes of Data(22)
|<3>| HSK[8076e00]: CERTIFICATE was received [7 bytes]
|<6>| BUF[REC][HD]: Read 3 bytes of Data(22)
|<6>| BUF[HSK]: Peeked 0 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<6>| BUF[HSK]: Inserted 4 bytes of Data
|<6>| BUF[HSK]: Inserted 3 bytes of Data
|<2>| ASSERT: auth_cert.c:877
|<7>| READ: -1 returned from 5, errno=11 gerrno=0
|<2>| ASSERT: gnutls_buffers.c:360
|<2>| ASSERT: gnutls_buffers.c:1152
|<2>| ASSERT: gnutls_handshake.c:1012
|<7>| READ: Got 5 bytes from 5
|<7>| READ: read 5 bytes from 5
|<7>| 0000 - 16 03 01 00 86
|<7>| RB: Have 0 bytes into buffer. Adding 5 bytes.
|<7>| RB: Requested 5 bytes
|<4>| REC[8076e00]: Expected Packet[2] Handshake(22) with length: 1
|<4>| REC[8076e00]: Received Packet[2] Handshake(22) with length: 134
|<7>| READ: Got 134 bytes from 5
|<7>| READ: read 134 bytes from 5
|<7>| 0000 - 10 00 00 82 00 80 00 4a d8 ba 15 cc c7 3d 07 2d
|<7>| 0001 - 24 b3 6a 8b 1a 3f 6d aa d9 63 65 dd 05 e1 71 24
|<7>| 0002 - 84 7b 54 a2 15 b1 90 1d 08 16 bf 7c c4 f8 c0 a6
|<7>| 0003 - 3b 44 80 f4 32 dd 4d 83 72 73 82 b2 4c 26 3d 6e
|<7>| 0004 - ef f1 f7 85 32 9b c1 e7 44 80 79 f0 16 fe 1b 63
|<7>| 0005 - 05 1d 0d 9e 7b 9a bd 93 63 12 81 7c 2d e5 cb 70
|<7>| 0006 - 8b ea 33 dc fa dd dd ec 7d b6 09 e2 bd 55 a9 dc
|<7>| 0007 - 43 b7 92 57 35 f8 3f ea 9c 9b aa 71 a3 f4 3c 9e
|<7>| 0008 - 0e 66 f7 84 fc 1c
|<7>| RB: Have 5 bytes into buffer. Adding 134 bytes.
|<7>| RB: Requested 139 bytes
|<4>| REC[8076e00]: Decrypted Packet[2] Handshake(22) with length: 134
|<6>| BUF[HSK]: Inserted 134 bytes of Data(22)
|<6>| BUF[REC][HD]: Read 1 bytes of Data(22)
|<6>| BUF[REC][HD]: Read 3 bytes of Data(22)
|<3>| HSK[8076e00]: CLIENT KEY EXCHANGE was received [134 bytes]
|<6>| BUF[REC][HD]: Read 130 bytes of Data(22)
|<6>| BUF[HSK]: Peeked 7 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<6>| BUF[HSK]: Inserted 4 bytes of Data
|<6>| BUF[HSK]: Inserted 130 bytes of Data
|<7>| READ: Got 5 bytes from 5
|<7>| READ: read 5 bytes from 5
|<7>| 0000 - 14 03 01 00 01
|<7>| RB: Have 0 bytes into buffer. Adding 5 bytes.
|<7>| RB: Requested 5 bytes
|<4>| REC[8076e00]: Expected Packet[3] Change Cipher Spec(20) with length: 1
|<4>| REC[8076e00]: Received Packet[3] Change Cipher Spec(20) with length: 1
|<7>| READ: Got 1 bytes from 5
|<7>| READ: read 1 bytes from 5
|<7>| 0000 - 01
|<7>| RB: Have 5 bytes into buffer. Adding 1 bytes.
|<7>| RB: Requested 6 bytes
|<4>| REC[8076e00]: ChangeCipherSpec Packet was received
|<9>| INT: PREMASTER SECRET[48]: 0301098e27eb8e6550ec38ef93f166867e960aae7ddb720c8639c6ad1671190ce312bb7404f79a8e2c94079be95d5df2
|<9>| INT: CLIENT RANDOM[32]: 477e7fea3835d50747e2ea58fd1c39875776ada6bc0ba6416335e9180f445a31
|<9>| INT: SERVER RANDOM[32]: 477e7feac0fd5326e1f92fe2e4c68f0f35efe78324a35cdaa1047c2209a52ec0
|<9>| INT: MASTER SECRET: d3cd83cf9a7d93e1e29c412d25d22b76db818b4f698dd409d0fd2ab660a421366bc616c0c99fd6371ac12ffefb14e23b
|<9>| INT: KEY BLOCK[136]: 02595fa908cf516d7d6ba341e267caeef9a8462e523dd785a40d67c1f2073e11
|<9>| INT: CLIENT WRITE KEY [32]: 0ee1fe93e37314f57e66d59819a600efe8f3735aed5ce459b5b7a18246911b30
|<9>| INT: SERVER WRITE KEY [32]: d9e86b6714ec5f79e612b26f3769b6b1b14ebc14c5cab779b8974c41ac0566e5
|<3>| HSK[8076e00]: Cipher Suite: RSA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Initializing internal [read] cipher sessions
|<7>| READ: Got 5 bytes from 5
|<7>| READ: read 5 bytes from 5
|<7>| 0000 - 16 03 01 00 30
|<7>| RB: Have 0 bytes into buffer. Adding 5 bytes.
|<7>| RB: Requested 5 bytes
|<4>| REC[8076e00]: Expected Packet[0] Handshake(22) with length: 1
|<4>| REC[8076e00]: Received Packet[0] Handshake(22) with length: 48
|<7>| READ: Got 48 bytes from 5
|<7>| READ: read 48 bytes from 5
|<7>| 0000 - 7a 84 a5 1a b6 35 01 c4 db 5b 5e 33 9c 5f db aa
|<7>| 0001 - 80 e1 31 05 46 ce 43 01 68 03 39 79 68 3b e9 d3
|<7>| 0002 - ea 6f 41 3c 43 35 b4 03 ed 41 04 d6 aa 45 65 49
|<7>| 0003 -
|<7>| RB: Have 5 bytes into buffer. Adding 48 bytes.
|<7>| RB: Requested 53 bytes
|<4>| REC[8076e00]: Decrypted Packet[0] Handshake(22) with length: 16
|<6>| BUF[HSK]: Inserted 16 bytes of Data(22)
|<6>| BUF[REC][HD]: Read 1 bytes of Data(22)
|<6>| BUF[REC][HD]: Read 3 bytes of Data(22)
|<3>| HSK[8076e00]: FINISHED was received [16 bytes]
|<6>| BUF[REC][HD]: Read 12 bytes of Data(22)
|<6>| BUF[HSK]: Peeked 134 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<6>| BUF[HSK]: Inserted 4 bytes of Data
|<6>| BUF[HSK]: Inserted 12 bytes of Data
|<2>| ASSERT: gnutls_handshake.c:620
|<2>| ASSERT: gnutls_handshake.c:2502
|<2>| ASSERT: gnutls_handshake.c:2634
|<6>| BUF[HSK]: Cleared Data from buffer
Error in handshake
Error: An error was encountered at the TLS Finished packet calculation.
|<4>| REC: Sending Alert[2|80] - Internal error
|<4>| REC[8076e00]: Sending Packet[4] Alert(21) with length: 2
|<7>| WRITE: Will write 7 bytes to 5.
|<7>| WRITE: wrote 7 bytes to 5. Left 0 bytes. Total 7 bytes.
|<7>| 0000 - 15 03 01 00 02 02 50
|<4>| REC[8076e00]: Sent Packet[5] Alert(21) with length: 7
|<2>| ASSERT: gnutls_record.c:260
Debug log [2]:
jas at mocca:~$ ~/bin/gnutls-serv -p 5870 -d 4711 --x509keyfile ~/src/www-gnutls/test-credentials/x509-server-key.pem --x509certfile ~/src/www-gnutls/test-credentials/x509-server.pem --x509cafile ~/src/www-gnutls/test-credentials/x509-ca.pem --disable-client-cert
Set static Diffie Hellman parameters, consider --dhparams.
Processed 1 CA certificate(s).
Echo Server ready. Listening to port '5870'.
|<7>| READ: Got 5 bytes from 5
|<7>| READ: read 5 bytes from 5
|<7>| 0000 - 16 03 01 00 33
|<7>| RB: Have 0 bytes into buffer. Adding 5 bytes.
|<7>| RB: Requested 5 bytes
|<4>| REC[8076e00]: Expected Packet[0] Handshake(22) with length: 1
|<4>| REC[8076e00]: Received Packet[0] Handshake(22) with length: 51
|<7>| READ: Got 51 bytes from 5
|<7>| READ: read 51 bytes from 5
|<7>| 0000 - 01 00 00 2f 03 01 47 7e 81 22 69 9e b4 30 84 03
|<7>| 0001 - ac a9 40 27 eb 83 a9 55 a4 60 e1 82 51 ee 2c b0
|<7>| 0002 - 8b a1 ea a9 43 6b 00 00 08 00 35 00 2f 00 05 00
|<7>| 0003 - 0a 01 00
|<7>| RB: Have 5 bytes into buffer. Adding 51 bytes.
|<7>| RB: Requested 56 bytes
|<4>| REC[8076e00]: Decrypted Packet[0] Handshake(22) with length: 51
|<6>| BUF[HSK]: Inserted 51 bytes of Data(22)
|<6>| BUF[REC][HD]: Read 1 bytes of Data(22)
|<6>| BUF[REC][HD]: Read 3 bytes of Data(22)
|<3>| HSK[8076e00]: CLIENT HELLO was received [51 bytes]
|<6>| BUF[REC][HD]: Read 47 bytes of Data(22)
|<6>| BUF[HSK]: Peeked 0 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<6>| BUF[HSK]: Inserted 4 bytes of Data
|<6>| BUF[HSK]: Inserted 47 bytes of Data
|<3>| HSK[8076e00]: Client's version: 3.1
|<2>| ASSERT: gnutls_db.c:327
|<2>| ASSERT: gnutls_db.c:247
|<2>| ASSERT: gnutls_extensions.c:159
|<3>| HSK[8076e00]: Removing ciphersuite: PSK_SHA_ARCFOUR_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: PSK_SHA_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: PSK_SHA_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: PSK_SHA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_PSK_SHA_ARCFOUR_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_PSK_SHA_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_PSK_SHA_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_PSK_SHA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_DSS_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_RSA_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_DSS_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_RSA_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_DSS_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: SRP_SHA_RSA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_DSS_ARCFOUR_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_DSS_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_DSS_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_DSS_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_DSS_CAMELLIA_128_CBC_SHA1
|<3>| HSK[8076e00]: Removing ciphersuite: DHE_DSS_CAMELLIA_256_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: DHE_RSA_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: DHE_RSA_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: DHE_RSA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: DHE_RSA_CAMELLIA_128_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: DHE_RSA_CAMELLIA_256_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: RSA_ARCFOUR_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: RSA_ARCFOUR_MD5
|<3>| HSK[8076e00]: Keeping ciphersuite: RSA_3DES_EDE_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: RSA_AES_128_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: RSA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: RSA_CAMELLIA_128_CBC_SHA1
|<3>| HSK[8076e00]: Keeping ciphersuite: RSA_CAMELLIA_256_CBC_SHA1
|<3>| HSK[8076e00]: Selected cipher suite: RSA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Selected Compression Method: NULL
|<3>| HSK[8076e00]: SessionID: ee4e9fb607619b26881520e2db07a39ed2371ab4551ec8974cb8d359ddc5c8d5
|<3>| HSK[8076e00]: SERVER HELLO was send [74 bytes]
|<6>| BUF[HSK]: Peeked 51 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<4>| REC[8076e00]: Sending Packet[0] Handshake(22) with length: 74
|<7>| WRITE: Will write 79 bytes to 5.
|<7>| WRITE: wrote 79 bytes to 5. Left 0 bytes. Total 79 bytes.
|<7>| 0000 - 16 03 01 00 4a 02 00 00 46 03 01 47 7e 81 22 b9
|<7>| 0001 - 96 81 9c ac 8b aa ec 38 3e 0a de 6b d6 dd e1 3e
|<7>| 0002 - dc 55 2d ee 84 49 c4 0a 98 db 41 20 ee 4e 9f b6
|<7>| 0003 - 07 61 9b 26 88 15 20 e2 db 07 a3 9e d2 37 1a b4
|<7>| 0004 - 55 1e c8 97 4c b8 d3 59 dd c5 c8 d5 00 35 00
|<4>| REC[8076e00]: Sent Packet[1] Handshake(22) with length: 79
|<3>| HSK[8076e00]: CERTIFICATE was send [612 bytes]
|<6>| BUF[HSK]: Peeked 0 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<4>| REC[8076e00]: Sending Packet[1] Handshake(22) with length: 612
|<7>| WRITE: Will write 617 bytes to 5.
|<7>| WRITE: wrote 617 bytes to 5. Left 0 bytes. Total 617 bytes.
|<7>| 0000 - 16 03 01 02 64 0b 00 02 60 00 02 5d 00 02 5a 30
|<7>| 0001 - 82 02 56 30 82 01 c1 a0 03 02 01 02 02 04 46 26
|<7>| 0002 - 1d 31 30 0b 06 09 2a 86 48 86 f7 0d 01 01 05 30
|<7>| 0003 - 19 31 17 30 15 06 03 55 04 03 13 0e 47 6e 75 54
|<7>| 0004 - 4c 53 20 74 65 73 74 20 43 41 30 1e 17 0d 30 37
|<7>| 0005 - 30 34 31 38 31 33 32 39 32 31 5a 17 0d 30 38 30
|<7>| 0006 - 34 31 37 31 33 32 39 32 31 5a 30 37 31 1b 30 19
|<7>| 0007 - 06 03 55 04 0a 13 12 47 6e 75 54 4c 53 20 74 65
|<7>| 0008 - 73 74 20 73 65 72 76 65 72 31 18 30 16 06 03 55
|<7>| 0009 - 04 03 13 0f 74 65 73 74 2e 67 6e 75 74 6c 73 2e
|<7>| 000a - 6f 72 67 30 81 9c 30 0b 06 09 2a 86 48 86 f7 0d
|<7>| 000b - 01 01 01 03 81 8c 00 30 81 88 02 81 80 d7 ba 5c
|<7>| 000c - af a3 0c f0 2e a9 27 56 aa 53 8e a8 eb 7f 81 75
|<7>| 000d - 4c 6b 98 be 4a ea b7 1e f8 4b c3 6a c4 da 0d 00
|<7>| 000e - b8 ea 4c 13 1f 36 16 93 de 72 ef c6 a4 5e b2 6e
|<7>| 000f - b6 ca 0a 88 55 75 90 96 ed a6 57 bc 0c 3b 76 0d
|<7>| 0010 - 97 1e bd e9 ec 7f d3 a9 ec fb 85 64 a0 6b a0 48
|<7>| 0011 - ce 77 7e 73 9c 31 13 ff 3d c8 ae a5 60 6e d9 b6
|<7>| 0012 - 8c 5a 9a 6f b6 be 9f 6a bd a7 f0 a0 33 27 f5 b7
|<7>| 0013 - 1d 92 e5 96 9c 73 52 d6 9f d6 c8 8e b1 02 03 01
|<7>| 0014 - 00 01 a3 81 93 30 81 90 30 0c 06 03 55 1d 13 01
|<7>| 0015 - 01 ff 04 02 30 00 30 1a 06 03 55 1d 11 04 13 30
|<7>| 0016 - 11 82 0f 74 65 73 74 2e 67 6e 75 74 6c 73 2e 6f
|<7>| 0017 - 72 67 30 13 06 03 55 1d 25 04 0c 30 0a 06 08 2b
|<7>| 0018 - 06 01 05 05 07 03 01 30 0f 06 03 55 1d 0f 01 01
|<7>| 0019 - ff 04 05 03 03 07 a0 00 30 1d 06 03 55 1d 0e 04
|<7>| 001a - 16 04 14 eb c7 45 6e e5 f8 25 ca 8c 8d 83 0d 74
|<7>| 001b - e9 86 d4 dd 55 b4 75 30 1f 06 03 55 1d 23 04 18
|<7>| 001c - 30 16 80 14 e9 3c 1c fb ad 92 6e e6 06 a4 56 2c
|<7>| 001d - a2 e1 c0 53 27 c8 f2 95 30 0b 06 09 2a 86 48 86
|<7>| 001e - f7 0d 01 01 05 03 81 81 00 68 51 0f 4e df bb 6f
|<7>| 001f - 3b c1 b8 e7 fb f9 09 9e 41 c9 f6 f6 44 fa 06 cc
|<7>| 0020 - a1 d5 11 c9 5d ff 0a 4e 4e 50 45 fc 29 ea 88 1b
|<7>| 0021 - a7 de 09 41 67 0d 43 f4 bb 60 31 47 82 50 f5 03
|<7>| 0022 - 05 0d 05 15 f0 77 7a e2 52 c3 27 b3 18 1e 48 3c
|<7>| 0023 - 58 05 f2 58 6c 32 de a2 13 41 b2 a6 8f 0c 96 fb
|<7>| 0024 - 5d a8 a5 59 b3 10 29 f0 1b 15 0f 1c 9c ec 60 ac
|<7>| 0025 - e2 8b 51 04 56 27 42 b7 1f 25 d1 32 16 ea 8d d2
|<7>| 0026 - c8 69 08 82 bd 02 ee 8b 3a
|<4>| REC[8076e00]: Sent Packet[2] Handshake(22) with length: 617
|<3>| HSK[8076e00]: SERVER HELLO DONE was send [4 bytes]
|<6>| BUF[HSK]: Peeked 0 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<4>| REC[8076e00]: Sending Packet[2] Handshake(22) with length: 4
|<7>| WRITE: Will write 9 bytes to 5.
|<7>| WRITE: wrote 9 bytes to 5. Left 0 bytes. Total 9 bytes.
|<7>| 0000 - 16 03 01 00 04 0e 00 00 00
|<4>| REC[8076e00]: Sent Packet[3] Handshake(22) with length: 9
|<7>| READ: -1 returned from 5, errno=11 gerrno=0
|<2>| ASSERT: gnutls_buffers.c:360
|<2>| ASSERT: gnutls_buffers.c:1152
|<2>| ASSERT: gnutls_handshake.c:1012
|<7>| READ: Got 5 bytes from 5
|<7>| READ: read 5 bytes from 5
|<7>| 0000 - 16 03 01 00 86
|<7>| RB: Have 0 bytes into buffer. Adding 5 bytes.
|<7>| RB: Requested 5 bytes
|<4>| REC[8076e00]: Expected Packet[1] Handshake(22) with length: 1
|<4>| REC[8076e00]: Received Packet[1] Handshake(22) with length: 134
|<7>| READ: Got 134 bytes from 5
|<7>| READ: read 134 bytes from 5
|<7>| 0000 - 10 00 00 82 00 80 c4 49 53 90 12 3a d4 4c 40 e0
|<7>| 0001 - 1a 70 e1 21 ae 0b 43 4b 26 dd 00 2a 48 b9 70 43
|<7>| 0002 - 7f 75 55 a6 5b 27 05 80 b8 fc 27 81 64 dd 04 28
|<7>| 0003 - 19 b2 1b 64 5f 8e 13 90 a2 cd 31 b6 c5 1a fe 6f
|<7>| 0004 - 77 fc a0 d0 9d e0 48 24 93 07 52 31 79 c8 54 77
|<7>| 0005 - 81 6e 36 09 72 04 3e 21 5c 15 6a d2 8c 72 65 c6
|<7>| 0006 - d1 a3 a2 4c e6 44 6f 82 ef b4 34 58 3f f9 3f 72
|<7>| 0007 - 22 99 6b 8a 62 23 46 0c e6 ac b4 83 50 0a 36 9b
|<7>| 0008 - 0e 59 6f bf a2 04
|<7>| RB: Have 5 bytes into buffer. Adding 134 bytes.
|<7>| RB: Requested 139 bytes
|<4>| REC[8076e00]: Decrypted Packet[1] Handshake(22) with length: 134
|<6>| BUF[HSK]: Inserted 134 bytes of Data(22)
|<6>| BUF[REC][HD]: Read 1 bytes of Data(22)
|<6>| BUF[REC][HD]: Read 3 bytes of Data(22)
|<3>| HSK[8076e00]: CLIENT KEY EXCHANGE was received [134 bytes]
|<6>| BUF[REC][HD]: Read 130 bytes of Data(22)
|<6>| BUF[HSK]: Peeked 0 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<6>| BUF[HSK]: Inserted 4 bytes of Data
|<6>| BUF[HSK]: Inserted 130 bytes of Data
|<7>| READ: Got 5 bytes from 5
|<7>| READ: read 5 bytes from 5
|<7>| 0000 - 14 03 01 00 01
|<7>| RB: Have 0 bytes into buffer. Adding 5 bytes.
|<7>| RB: Requested 5 bytes
|<4>| REC[8076e00]: Expected Packet[2] Change Cipher Spec(20) with length: 1
|<4>| REC[8076e00]: Received Packet[2] Change Cipher Spec(20) with length: 1
|<7>| READ: Got 1 bytes from 5
|<7>| READ: read 1 bytes from 5
|<7>| 0000 - 01
|<7>| RB: Have 5 bytes into buffer. Adding 1 bytes.
|<7>| RB: Requested 6 bytes
|<4>| REC[8076e00]: ChangeCipherSpec Packet was received
|<9>| INT: PREMASTER SECRET[48]: 0301b8adc0c631d4c0b78173285fdf3dd79a8e2a54eedafb47803d4c99f2bffe25d778fe7b7a18a2cb861cd52e70d516
|<9>| INT: CLIENT RANDOM[32]: 477e8122699eb4308403aca94027eb83a955a460e18251ee2cb08ba1eaa9436b
|<9>| INT: SERVER RANDOM[32]: 477e8122b996819cac8baaec383e0ade6bd6dde13edc552dee8449c40a98db41
|<9>| INT: MASTER SECRET: 72cb3bd4090aa2280752dd8826ed6c99da143b90071400871e8e00411fe4ae8cf7d5d8847d83b8cb9b8bc04b15b6d4c0
|<9>| INT: KEY BLOCK[136]: e0ed77336974428c9eaa005d4c3f275a982310570200419029264e70437669a6
|<9>| INT: CLIENT WRITE KEY [32]: 2321d92c1e7235b6e570c4c87775d1bc53f4613d4bc954b13c49979c6cd2e670
|<9>| INT: SERVER WRITE KEY [32]: 79579b995d7163b918dbcf1c323785240c628178869214f97193dc643b3acb0a
|<3>| HSK[8076e00]: Cipher Suite: RSA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Initializing internal [read] cipher sessions
|<7>| READ: Got 5 bytes from 5
|<7>| READ: read 5 bytes from 5
|<7>| 0000 - 16 03 01 00 30
|<7>| RB: Have 0 bytes into buffer. Adding 5 bytes.
|<7>| RB: Requested 5 bytes
|<4>| REC[8076e00]: Expected Packet[0] Handshake(22) with length: 1
|<4>| REC[8076e00]: Received Packet[0] Handshake(22) with length: 48
|<7>| READ: Got 48 bytes from 5
|<7>| READ: read 48 bytes from 5
|<7>| 0000 - 41 d1 0a e3 00 c5 bd 5a f4 f7 b0 dc 97 f8 9e ad
|<7>| 0001 - d6 3b 74 c6 1b 67 1b 69 2c 2b ab 3b 18 41 5a 77
|<7>| 0002 - 29 f4 85 d0 df 06 e7 c2 a1 69 08 ed 6b 58 bf 89
|<7>| 0003 -
|<7>| RB: Have 5 bytes into buffer. Adding 48 bytes.
|<7>| RB: Requested 53 bytes
|<4>| REC[8076e00]: Decrypted Packet[0] Handshake(22) with length: 16
|<6>| BUF[HSK]: Inserted 16 bytes of Data(22)
|<6>| BUF[REC][HD]: Read 1 bytes of Data(22)
|<6>| BUF[REC][HD]: Read 3 bytes of Data(22)
|<3>| HSK[8076e00]: FINISHED was received [16 bytes]
|<6>| BUF[REC][HD]: Read 12 bytes of Data(22)
|<6>| BUF[HSK]: Peeked 134 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<6>| BUF[HSK]: Inserted 4 bytes of Data
|<6>| BUF[HSK]: Inserted 12 bytes of Data
|<3>| REC[8076e00]: Sent ChangeCipherSpec
|<4>| REC[8076e00]: Sending Packet[3] Change Cipher Spec(20) with length: 1
|<7>| WRITE: Will write 6 bytes to 5.
|<7>| WRITE: wrote 6 bytes to 5. Left 0 bytes. Total 6 bytes.
|<7>| 0000 - 14 03 01 00 01 01
|<4>| REC[8076e00]: Sent Packet[4] Change Cipher Spec(20) with length: 6
|<3>| HSK[8076e00]: Cipher Suite: RSA_AES_256_CBC_SHA1
|<3>| HSK[8076e00]: Initializing internal [write] cipher sessions
|<6>| BUF[HSK]: Peeked 16 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<3>| HSK[8076e00]: FINISHED was send [16 bytes]
|<6>| BUF[HSK]: Peeked 0 bytes of Data
|<6>| BUF[HSK]: Emptied buffer
|<4>| REC[8076e00]: Sending Packet[0] Handshake(22) with length: 16
|<7>| WRITE: Will write 53 bytes to 5.
|<7>| WRITE: wrote 53 bytes to 5. Left 0 bytes. Total 53 bytes.
|<7>| 0000 - 16 03 01 00 30 ed 01 52 ea 14 a6 8b 80 21 a4 74
|<7>| 0001 - 5c 4e f8 56 e0 94 d6 a9 52 c4 17 37 19 bd 69 45
|<7>| 0002 - c3 64 b5 d4 21 64 8e 17 4e 5c 21 a4 ab 9d 56 16
|<7>| 0003 - 5c ba fc 6d 43
|<4>| REC[8076e00]: Sent Packet[1] Handshake(22) with length: 53
|<6>| BUF[HSK]: Cleared Data from buffer
* connection from ::ffff:192.168.1.9, port 43206
- Server has requested a certificate.
- Certificate type: X.509
No certificates found!
- Peer did not send any certificate.
- Version: TLS1.0
- Key Exchange: RSA
- Cipher: AES-256-CBC
- MAC: SHA1
- Compression: NULL
|<7>| READ: -1 returned from 5, errno=11 gerrno=0
|<2>| ASSERT: gnutls_buffers.c:360
Debug log [3]:
jas at mocca:~/src/openssl-0.9.8g/apps$ ./openssl s_server -accept 5870 -cert /home/jas/src/www-gnutls/test-credentials/x509-server.pem -key ~/src/www-gnutls/test-credentials/x509-server-key.pem -CAfile ~/src/www-gnutls/test-credentials/x509-ca.pem -debug -msg -chain -verify 0
verify depth is 0
Using default temp DH parameters
Using default temp ECDH parameters
ACCEPT
read from 0x81c56a0 [0x81cad28] (11 bytes => 11 (0xB))
0000 - 16 03 01 00 33 01 00 00-2f 03 01 ....3.../..
read from 0x81c56a0 [0x81cad33] (45 bytes => 45 (0x2D))
0000 - 47 7e 88 09 ff e1 e6 1c-f0 13 10 e7 e6 05 19 eb G~..............
0010 - 7a 1d ee 66 e4 35 50 06-63 75 9f 55 89 ad 36 0f z..f.5P.cu.U..6.
0020 - 00 00 08 00 35 00 2f 00-05 00 0a 01 ....5./.....
002d - <SPACES/NULS>
<<< TLS 1.0 Handshake [length 0033], ClientHello
01 00 00 2f 03 01 47 7e 88 09 ff e1 e6 1c f0 13
10 e7 e6 05 19 eb 7a 1d ee 66 e4 35 50 06 63 75
9f 55 89 ad 36 0f 00 00 08 00 35 00 2f 00 05 00
0a 01 00
>>> TLS 1.0 Handshake [length 004a], ServerHello
02 00 00 46 03 01 47 7e 88 09 04 ac 62 00 c0 bf
8e a1 10 57 60 3f 86 d4 52 f1 98 6f 74 a2 88 45
9e 3f d9 ed 60 5e 20 17 d5 3f ef 40 42 25 39 e1
37 5f 45 7f 62 11 5a 55 a8 38 9f 15 00 e9 cb d6
10 46 bf 61 6d 77 af 00 35 00
write to 0x81c56a0 [0x81d4ef0] (79 bytes => 79 (0x4F))
0000 - 16 03 01 00 4a 02 00 00-46 03 01 47 7e 88 09 04 ....J...F..G~...
0010 - ac 62 00 c0 bf 8e a1 10-57 60 3f 86 d4 52 f1 98 .b......W`?..R..
0020 - 6f 74 a2 88 45 9e 3f d9-ed 60 5e 20 17 d5 3f ef ot..E.?..`^ ..?.
0030 - 40 42 25 39 e1 37 5f 45-7f 62 11 5a 55 a8 38 9f @B%9.7_E.b.ZU.8.
0040 - 15 00 e9 cb d6 10 46 bf-61 6d 77 af 00 35 ......F.amw..5
004f - <SPACES/NULS>
>>> TLS 1.0 Handshake [length 0452], Certificate
0b 00 04 4e 00 04 4b 00 02 5a 30 82 02 56 30 82
01 c1 a0 03 02 01 02 02 04 46 26 1d 31 30 0b 06
09 2a 86 48 86 f7 0d 01 01 05 30 19 31 17 30 15
06 03 55 04 03 13 0e 47 6e 75 54 4c 53 20 74 65
73 74 20 43 41 30 1e 17 0d 30 37 30 34 31 38 31
33 32 39 32 31 5a 17 0d 30 38 30 34 31 37 31 33
32 39 32 31 5a 30 37 31 1b 30 19 06 03 55 04 0a
13 12 47 6e 75 54 4c 53 20 74 65 73 74 20 73 65
72 76 65 72 31 18 30 16 06 03 55 04 03 13 0f 74
65 73 74 2e 67 6e 75 74 6c 73 2e 6f 72 67 30 81
9c 30 0b 06 09 2a 86 48 86 f7 0d 01 01 01 03 81
8c 00 30 81 88 02 81 80 d7 ba 5c af a3 0c f0 2e
a9 27 56 aa 53 8e a8 eb 7f 81 75 4c 6b 98 be 4a
ea b7 1e f8 4b c3 6a c4 da 0d 00 b8 ea 4c 13 1f
36 16 93 de 72 ef c6 a4 5e b2 6e b6 ca 0a 88 55
75 90 96 ed a6 57 bc 0c 3b 76 0d 97 1e bd e9 ec
7f d3 a9 ec fb 85 64 a0 6b a0 48 ce 77 7e 73 9c
31 13 ff 3d c8 ae a5 60 6e d9 b6 8c 5a 9a 6f b6
be 9f 6a bd a7 f0 a0 33 27 f5 b7 1d 92 e5 96 9c
73 52 d6 9f d6 c8 8e b1 02 03 01 00 01 a3 81 93
30 81 90 30 0c 06 03 55 1d 13 01 01 ff 04 02 30
00 30 1a 06 03 55 1d 11 04 13 30 11 82 0f 74 65
73 74 2e 67 6e 75 74 6c 73 2e 6f 72 67 30 13 06
03 55 1d 25 04 0c 30 0a 06 08 2b 06 01 05 05 07
03 01 30 0f 06 03 55 1d 0f 01 01 ff 04 05 03 03
07 a0 00 30 1d 06 03 55 1d 0e 04 16 04 14 eb c7
45 6e e5 f8 25 ca 8c 8d 83 0d 74 e9 86 d4 dd 55
b4 75 30 1f 06 03 55 1d 23 04 18 30 16 80 14 e9
3c 1c fb ad 92 6e e6 06 a4 56 2c a2 e1 c0 53 27
c8 f2 95 30 0b 06 09 2a 86 48 86 f7 0d 01 01 05
03 81 81 00 68 51 0f 4e df bb 6f 3b c1 b8 e7 fb
f9 09 9e 41 c9 f6 f6 44 fa 06 cc a1 d5 11 c9 5d
ff 0a 4e 4e 50 45 fc 29 ea 88 1b a7 de 09 41 67
0d 43 f4 bb 60 31 47 82 50 f5 03 05 0d 05 15 f0
77 7a e2 52 c3 27 b3 18 1e 48 3c 58 05 f2 58 6c
32 de a2 13 41 b2 a6 8f 0c 96 fb 5d a8 a5 59 b3
10 29 f0 1b 15 0f 1c 9c ec 60 ac e2 8b 51 04 56
27 42 b7 1f 25 d1 32 16 ea 8d d2 c8 69 08 82 bd
02 ee 8b 3a 00 01 eb 30 82 01 e7 30 82 01 52 a0
03 02 01 02 02 04 46 26 1d 27 30 0b 06 09 2a 86
48 86 f7 0d 01 01 05 30 19 31 17 30 15 06 03 55
04 03 13 0e 47 6e 75 54 4c 53 20 74 65 73 74 20
43 41 30 1e 17 0d 30 37 30 34 31 38 31 33 32 39
31 31 5a 17 0d 30 38 30 34 31 37 31 33 32 39 31
31 5a 30 19 31 17 30 15 06 03 55 04 03 13 0e 47
6e 75 54 4c 53 20 74 65 73 74 20 43 41 30 81 9c
30 0b 06 09 2a 86 48 86 f7 0d 01 01 01 03 81 8c
00 30 81 88 02 81 80 be ec 98 7a 1d 6f 7e 6b 25
9e e8 20 78 42 a0 64 05 66 43 99 6d 49 d5 18 ec
7d b9 58 64 b2 80 a3 14 61 9d 0a 4f be 2f f0 2e
fc d2 ab 5c 36 df 53 ec 43 c7 fc de 91 bc 1e 01
a6 b7 6c b2 07 10 2e cb 61 47 75 ca 03 ce 23 6e
38 f1 34 27 1a 1a cd f7 96 f3 b3 f0 0d 67 7f ca
77 84 3f 9c 29 f4 62 91 f6 12 5b 62 5a cc ba ed
08 2e 32 44 26 ac fd 23 ce 53 1b bb f2 87 fe dc
78 93 7c 59 bf a1 75 02 03 01 00 01 a3 43 30 41
30 0f 06 03 55 1d 13 01 01 ff 04 05 30 03 01 01
ff 30 0f 06 03 55 1d 0f 01 01 ff 04 05 03 03 07
04 00 30 1d 06 03 55 1d 0e 04 16 04 14 e9 3c 1c
fb ad 92 6e e6 06 a4 56 2c a2 e1 c0 53 27 c8 f2
95 30 0b 06 09 2a 86 48 86 f7 0d 01 01 05 03 81
81 00 89 a2 11 a8 67 e9 d6 33 e9 35 e5 61 00 12
ba d1 25 34 28 80 32 9e 3b ae ee 41 ea e6 97 94
81 89 fc 25 df 73 37 31 31 04 e1 29 d5 53 a2 a4
6b 1f e8 6e ba a1 00 21 0c 5a 76 a3 cc e4 cf b6
47 ef 5c d1 e0 71 16 2a 85 fa 9f 91 26 9f a0 ef
70 41 ff f6 90 21 9c 6c 4d 1c 90 28 4b b7 33 4c
ab ff 24 36 49 86 4a 87 c7 2a c4 d5 fb 8b b2 0e
50 bf 6e 43 4f 0e fe 3d fa 94 a4 88 73 e4 16 e6
ec 9e
write to 0x81c56a0 [0x81d4ef0] (1111 bytes => 1111 (0x457))
0000 - 16 03 01 04 52 0b 00 04-4e 00 04 4b 00 02 5a 30 ....R...N..K..Z0
0010 - 82 02 56 30 82 01 c1 a0-03 02 01 02 02 04 46 26 ..V0..........F&
0020 - 1d 31 30 0b 06 09 2a 86-48 86 f7 0d 01 01 05 30 .10...*.H......0
0030 - 19 31 17 30 15 06 03 55-04 03 13 0e 47 6e 75 54 .1.0...U....GnuT
0040 - 4c 53 20 74 65 73 74 20-43 41 30 1e 17 0d 30 37 LS test CA0...07
0050 - 30 34 31 38 31 33 32 39-32 31 5a 17 0d 30 38 30 0418132921Z..080
0060 - 34 31 37 31 33 32 39 32-31 5a 30 37 31 1b 30 19 417132921Z071.0.
0070 - 06 03 55 04 0a 13 12 47-6e 75 54 4c 53 20 74 65 ..U....GnuTLS te
0080 - 73 74 20 73 65 72 76 65-72 31 18 30 16 06 03 55 st server1.0...U
0090 - 04 03 13 0f 74 65 73 74-2e 67 6e 75 74 6c 73 2e ....test.gnutls.
00a0 - 6f 72 67 30 81 9c 30 0b-06 09 2a 86 48 86 f7 0d org0..0...*.H...
00b0 - 01 01 01 03 81 8c 00 30-81 88 02 81 80 d7 ba 5c .......0.......\
00c0 - af a3 0c f0 2e a9 27 56-aa 53 8e a8 eb 7f 81 75 ......'V.S.....u
00d0 - 4c 6b 98 be 4a ea b7 1e-f8 4b c3 6a c4 da 0d 00 Lk..J....K.j....
00e0 - b8 ea 4c 13 1f 36 16 93-de 72 ef c6 a4 5e b2 6e ..L..6...r...^.n
00f0 - b6 ca 0a 88 55 75 90 96-ed a6 57 bc 0c 3b 76 0d ....Uu....W..;v.
0100 - 97 1e bd e9 ec 7f d3 a9-ec fb 85 64 a0 6b a0 48 ...........d.k.H
0110 - ce 77 7e 73 9c 31 13 ff-3d c8 ae a5 60 6e d9 b6 .w~s.1..=...`n..
0120 - 8c 5a 9a 6f b6 be 9f 6a-bd a7 f0 a0 33 27 f5 b7 .Z.o...j....3'..
0130 - 1d 92 e5 96 9c 73 52 d6-9f d6 c8 8e b1 02 03 01 .....sR.........
0140 - 00 01 a3 81 93 30 81 90-30 0c 06 03 55 1d 13 01 .....0..0...U...
0150 - 01 ff 04 02 30 00 30 1a-06 03 55 1d 11 04 13 30 ....0.0...U....0
0160 - 11 82 0f 74 65 73 74 2e-67 6e 75 74 6c 73 2e 6f ...test.gnutls.o
0170 - 72 67 30 13 06 03 55 1d-25 04 0c 30 0a 06 08 2b rg0...U.%..0...+
0180 - 06 01 05 05 07 03 01 30-0f 06 03 55 1d 0f 01 01 .......0...U....
0190 - ff 04 05 03 03 07 a0 00-30 1d 06 03 55 1d 0e 04 ........0...U...
01a0 - 16 04 14 eb c7 45 6e e5-f8 25 ca 8c 8d 83 0d 74 .....En..%.....t
01b0 - e9 86 d4 dd 55 b4 75 30-1f 06 03 55 1d 23 04 18 ....U.u0...U.#..
01c0 - 30 16 80 14 e9 3c 1c fb-ad 92 6e e6 06 a4 56 2c 0....<....n...V,
01d0 - a2 e1 c0 53 27 c8 f2 95-30 0b 06 09 2a 86 48 86 ...S'...0...*.H.
01e0 - f7 0d 01 01 05 03 81 81-00 68 51 0f 4e df bb 6f .........hQ.N..o
01f0 - 3b c1 b8 e7 fb f9 09 9e-41 c9 f6 f6 44 fa 06 cc ;.......A...D...
0200 - a1 d5 11 c9 5d ff 0a 4e-4e 50 45 fc 29 ea 88 1b ....]..NNPE.)...
0210 - a7 de 09 41 67 0d 43 f4-bb 60 31 47 82 50 f5 03 ...Ag.C..`1G.P..
0220 - 05 0d 05 15 f0 77 7a e2-52 c3 27 b3 18 1e 48 3c .....wz.R.'...H<
0230 - 58 05 f2 58 6c 32 de a2-13 41 b2 a6 8f 0c 96 fb X..Xl2...A......
0240 - 5d a8 a5 59 b3 10 29 f0-1b 15 0f 1c 9c ec 60 ac ]..Y..).......`.
0250 - e2 8b 51 04 56 27 42 b7-1f 25 d1 32 16 ea 8d d2 ..Q.V'B..%.2....
0260 - c8 69 08 82 bd 02 ee 8b-3a 00 01 eb 30 82 01 e7 .i......:...0...
0270 - 30 82 01 52 a0 03 02 01-02 02 04 46 26 1d 27 30 0..R.......F&.'0
0280 - 0b 06 09 2a 86 48 86 f7-0d 01 01 05 30 19 31 17 ...*.H......0.1.
0290 - 30 15 06 03 55 04 03 13-0e 47 6e 75 54 4c 53 20 0...U....GnuTLS
02a0 - 74 65 73 74 20 43 41 30-1e 17 0d 30 37 30 34 31 test CA0...07041
02b0 - 38 31 33 32 39 31 31 5a-17 0d 30 38 30 34 31 37 8132911Z..080417
02c0 - 31 33 32 39 31 31 5a 30-19 31 17 30 15 06 03 55 132911Z0.1.0...U
02d0 - 04 03 13 0e 47 6e 75 54-4c 53 20 74 65 73 74 20 ....GnuTLS test
02e0 - 43 41 30 81 9c 30 0b 06-09 2a 86 48 86 f7 0d 01 CA0..0...*.H....
02f0 - 01 01 03 81 8c 00 30 81-88 02 81 80 be ec 98 7a ......0........z
0300 - 1d 6f 7e 6b 25 9e e8 20-78 42 a0 64 05 66 43 99 .o~k%.. xB.d.fC.
0310 - 6d 49 d5 18 ec 7d b9 58-64 b2 80 a3 14 61 9d 0a mI...}.Xd....a..
0320 - 4f be 2f f0 2e fc d2 ab-5c 36 df 53 ec 43 c7 fc O./.....\6.S.C..
0330 - de 91 bc 1e 01 a6 b7 6c-b2 07 10 2e cb 61 47 75 .......l.....aGu
0340 - ca 03 ce 23 6e 38 f1 34-27 1a 1a cd f7 96 f3 b3 ...#n8.4'.......
0350 - f0 0d 67 7f ca 77 84 3f-9c 29 f4 62 91 f6 12 5b ..g..w.?.).b...[
0360 - 62 5a cc ba ed 08 2e 32-44 26 ac fd 23 ce 53 1b bZ.....2D&..#.S.
0370 - bb f2 87 fe dc 78 93 7c-59 bf a1 75 02 03 01 00 .....x.|Y..u....
0380 - 01 a3 43 30 41 30 0f 06-03 55 1d 13 01 01 ff 04 ..C0A0...U......
0390 - 05 30 03 01 01 ff 30 0f-06 03 55 1d 0f 01 01 ff .0....0...U.....
03a0 - 04 05 03 03 07 04 00 30-1d 06 03 55 1d 0e 04 16 .......0...U....
03b0 - 04 14 e9 3c 1c fb ad 92-6e e6 06 a4 56 2c a2 e1 ...<....n...V,..
03c0 - c0 53 27 c8 f2 95 30 0b-06 09 2a 86 48 86 f7 0d .S'...0...*.H...
03d0 - 01 01 05 03 81 81 00 89-a2 11 a8 67 e9 d6 33 e9 ...........g..3.
03e0 - 35 e5 61 00 12 ba d1 25-34 28 80 32 9e 3b ae ee 5.a....%4(.2.;..
03f0 - 41 ea e6 97 94 81 89 fc-25 df 73 37 31 31 04 e1 A.......%.s711..
0400 - 29 d5 53 a2 a4 6b 1f e8-6e ba a1 00 21 0c 5a 76 ).S..k..n...!.Zv
0410 - a3 cc e4 cf b6 47 ef 5c-d1 e0 71 16 2a 85 fa 9f .....G.\..q.*...
0420 - 91 26 9f a0 ef 70 41 ff-f6 90 21 9c 6c 4d 1c 90 .&...pA...!.lM..
0430 - 28 4b b7 33 4c ab ff 24-36 49 86 4a 87 c7 2a c4 (K.3L..$6I.J..*.
0440 - d5 fb 8b b2 0e 50 bf 6e-43 4f 0e fe 3d fa 94 a4 .....P.nCO..=...
0450 - 88 73 e4 16 e6 ec 9e .s.....
>>> TLS 1.0 Handshake [length 002b], CertificateRequest
0d 00 00 23 03 01 02 40 00 1d 00 1b 30 19 31 17
30 15 06 03 55 04 03 13 0e 47 6e 75 54 4c 53 20
74 65 73 74 20 43 41 0e 00 00 00
write to 0x81c56a0 [0x81d4ef0] (48 bytes => 48 (0x30))
0000 - 16 03 01 00 2b 0d 00 00-23 03 01 02 40 00 1d 00 ....+...#... at ...
0010 - 1b 30 19 31 17 30 15 06-03 55 04 03 13 0e 47 6e .0.1.0...U....Gn
0020 - 75 54 4c 53 20 74 65 73-74 20 43 41 0e uTLS test CA.
0030 - <SPACES/NULS>
read from 0x81c56a0 [0x81cad28] (5 bytes => 5 (0x5))
0000 - 16 03 01 00 07 .....
read from 0x81c56a0 [0x81cad2d] (7 bytes => 7 (0x7))
0000 - 0b 00 00 03 ....
0007 - <SPACES/NULS>
<<< TLS 1.0 Handshake [length 0007], Certificate
0b 00 00 03 00 00 00
read from 0x81c56a0 [0x81cad28] (5 bytes => 5 (0x5))
0000 - 16 03 01 00 86 .....
read from 0x81c56a0 [0x81cad2d] (134 bytes => 134 (0x86))
0000 - 10 00 00 82 00 80 a6 13-63 71 e6 e0 8e 4d 32 4f ........cq...M2O
0010 - ce f0 37 75 3a aa 80 af-b1 35 8e 79 ba f3 14 1b ..7u:....5.y....
0020 - a3 77 7b d1 4e 1c 7c 96-4c 19 0a 57 f9 44 43 7a .w{.N.|.L..W.DCz
0030 - 7d a2 a8 63 5b 5a 22 e7-46 6b 6b 9c 3e bb 9f 96 }..c[Z".Fkk.>...
0040 - 71 92 32 43 b8 c3 1f 79-54 25 3b 9e 29 83 8d bc q.2C...yT%;.)...
0050 - 9f 07 8e 62 ba 5f d2 bb-83 bf 9d 65 b2 5d 81 bb ...b._.....e.]..
0060 - 2c 46 51 ee 7f 1d da 3c-b4 bc f9 72 fd 02 fd 0f ,FQ....<...r....
0070 - 3b 2f b2 3a 36 12 42 ba-77 05 2e 32 b7 4f f9 d3 ;/.:6.B.w..2.O..
0080 - ef 05 b4 24 6e 95 ...$n.
<<< TLS 1.0 Handshake [length 0086], ClientKeyExchange
10 00 00 82 00 80 a6 13 63 71 e6 e0 8e 4d 32 4f
ce f0 37 75 3a aa 80 af b1 35 8e 79 ba f3 14 1b
a3 77 7b d1 4e 1c 7c 96 4c 19 0a 57 f9 44 43 7a
7d a2 a8 63 5b 5a 22 e7 46 6b 6b 9c 3e bb 9f 96
71 92 32 43 b8 c3 1f 79 54 25 3b 9e 29 83 8d bc
9f 07 8e 62 ba 5f d2 bb 83 bf 9d 65 b2 5d 81 bb
2c 46 51 ee 7f 1d da 3c b4 bc f9 72 fd 02 fd 0f
3b 2f b2 3a 36 12 42 ba 77 05 2e 32 b7 4f f9 d3
ef 05 b4 24 6e 95
read from 0x81c56a0 [0x81cad28] (5 bytes => 5 (0x5))
0000 - 14 03 01 00 01 .....
read from 0x81c56a0 [0x81cad2d] (1 bytes => 1 (0x1))
0000 - 01 .
<<< TLS 1.0 ChangeCipherSpec [length 0001]
01
read from 0x81c56a0 [0x81cad28] (5 bytes => 5 (0x5))
0000 - 16 03 01 00 30 ....0
read from 0x81c56a0 [0x81cad2d] (48 bytes => 48 (0x30))
0000 - de 25 c7 3d 3b db f4 f2-58 c5 d4 de b2 06 5c c4 .%.=;...X.....\.
0010 - ce b6 ec cf 38 c6 73 e2-fa 85 ea fb 6b ee 9d 40 ....8.s.....k..@
0020 - f5 15 b4 da f5 43 fa ca-28 3d 45 c2 dd a3 77 4e .....C..(=E...wN
<<< TLS 1.0 Handshake [length 0010], Finished
14 00 00 0c f7 db c2 09 fd 03 0d 27 79 e2 33 40
>>> TLS 1.0 ChangeCipherSpec [length 0001]
01
write to 0x81c56a0 [0x81d4ef0] (6 bytes => 6 (0x6))
0000 - 14 03 01 00 01 01 ......
>>> TLS 1.0 Handshake [length 0010], Finished
14 00 00 0c 79 a0 30 f7 30 70 8b 5c f3 ca c3 e6
write to 0x81c56a0 [0x81d4ef0] (53 bytes => 53 (0x35))
0000 - 16 03 01 00 30 2f e5 11-51 bd 0e d2 27 bc 65 bb ....0/..Q...'.e.
0010 - 13 2f a3 9a b5 a2 8c e5-c7 e2 c7 77 99 d8 46 f6 ./.........w..F.
0020 - 80 89 ac f4 a2 67 f6 9f-97 3b e0 ff 3b 93 25 d4 .....g...;..;.%.
0030 - d0 a9 ac c5 88 .....
-----BEGIN SSL SESSION PARAMETERS-----
MHUCAQECAgMBBAIANQQgF9U/70BCJTnhN19Ff2IRWlWoOJ8VAOnL1hBGv2Ftd68E
MG8bKoF3TF1ynHAWGcytcmhbVh2eDUcT5Zb4r5UBdazPlfojMQhHlmxFAK2ECpR+
26EGAgRHfogJogQCAgEspAYEBAEAAAA=
-----END SSL SESSION PARAMETERS-----
Shared ciphers:AES256-SHA:AES128-SHA:RC4-SHA:DES-CBC3-SHA
CIPHER is AES256-SHA
More information about the Gnutls-devel
mailing list