[Help-gnutls] handshaking gnuTLS 0.2.90
Florent Jugla
fjugla at easter-eggs.com
Tue Dec 11 11:40:51 CET 2001
Hi,
I try to use the GnuTLS library.
In a first time, I was using the 0.2.2 version - I had just one problem
when doing client authentication : the certificate of a client was
accepted, but the server did not know the CA of the client ??
So, I decided to upgrade the library version and to use the last 0.2.90
one. I had a lot of problems because a lot of function names changed
from one version to the other. Anyway, I could achieve my compilation ;
but now, nothing is working. When I just do a server authentication
(i.e, just the server has a certificate), the handshake do not complete.
On the server side, everything seems fine, but on the client side,
there's a problem.
I join to this e-mail the end of the logs for the client and the server.
Any idea ? Thank you
Florent
-----------------------------------
end of server.log
GNUTLS_ASSERT: gnutls_buffers.c:729
GNUTLS_ASSERT: gnutls_buffers.c:747
GNUTLS_ASSERT: gnutls_buffers.c:639
GNUTLS Error: send Finished (-28)
GNUTLS_ASSERT: gnutls_handshake.c:1619
GNUTLS_ASSERT: gnutls_buffers.c:673
Record: Sending Packet[1] Handshake(22) with length: 16
WRITE: Restoring old write. (7 bytes to send)
WRITE: Will write 7 bytes to 5.
WRITE: wrote 7 bytes to 5. Left 0 bytes. Total 7 bytes.
0000 - c4 60 6a dd 20 22 6f
WRITE FLUSH: 157 [buffer: 0]
Record: Sent Packet[1] Handshake(22) with length: 157
HANDSHAKE_FLUSH: written[1] 16 bytes
HASH BUFFER: Cleared Data from buffer
12/10/2001 22:07:19 <source fd 5> handshake was completed
12/10/2001 22:07:19 <source fd 5> printInfo : entree fonction
12/10/2001 22:07:19 <source fd 5> Version: TLS 1.0
12/10/2001 22:07:19 <source fd 5> Key Exchange: X509PKI_RSA
12/10/2001 22:07:19 <source fd 5> Compression: NULL
12/10/2001 22:07:19 <source fd 5> Cipher: 3DES_CBC
12/10/2001 22:07:19 <source fd 5> MAC: SHA
12/10/2001 22:07:19 <source fd 5> printInfo : sortie fonction
12/10/2001 22:07:19 <source fd 4> server got connection from
127.0.0.1:1220
12/10/2001 22:07:19 <source 127.0.0.1:1220 fd 5> entree nbRead
READ: -1 returned from 5, errno=11
GNUTLS_ASSERT: gnutls_buffers.c:213
12/10/2001 22:07:19 <source 127.0.0.1:1220 fd 5> server read 0 bytes of
header
12/10/2001 22:07:19 <source 127.0.0.1:1220 fd 5> entree nbRead
READ: -1 returned from 5, errno=11
GNUTLS_ASSERT: gnutls_buffers.c:213
12/10/2001 22:07:19 <source 127.0.0.1:1220 fd 5> server read 0 bytes of
header
12/10/2001 22:07:19 <source 127.0.0.1:1220 fd 5> entree nbRead
READ: Got 0 bytes from 5
READ: read 0 bytes from 5
0000 -
GNUTLS_ASSERT: gnutls_buffers.c:433
GNUTLS_ASSERT: gnutls_record.c:747
Error from source <127.0.0.1:1220, fd -1>:
-----------------------------------
end of client.log
READ: Got 1 bytes from 4
READ: Got 1 bytes from 4
READ: Got 1 bytes from 4
READ: Got 1 bytes from 4
READ: Got 1 bytes from 4
READ: Got 1 bytes from 4
READ: -1 returned from 4, errno=11
READ: returning 8 bytes from 4
READ: read 8 bytes from 4
0000 - b6 11 c4 60 6a dd 20 22
RB: Have 148 bytes into buffer. Adding 8 bytes.
RB: Requested 157 bytes
GNUTLS_ASSERT: gnutls_buffers.c:441
GNUTLS_ASSERT: gnutls_buffers.c:832
GNUTLS_ASSERT: gnutls_handshake.c:698
GNUTLS_ASSERT: gnutls_handshake.c:808
GNUTLS Error: recv finished int (-28)
GNUTLS_ASSERT: gnutls_handshake.c:448
GNUTLS Error: recv finished (-28)
GNUTLS_ASSERT: gnutls_handshake.c:1672
Record: Expected Packet[0] Handshake(22) with length: 1
Record: Received Packet[0] Handshake(22) with length: 152
READ: Got 1 bytes from 4
READ: read 1 bytes from 4
0000 - 6f
RB: Have 156 bytes into buffer. Adding 1 bytes.
RB: Requested 157 bytes
Record: Decrypted Packet[0] Handshake(22) with length: 16
HANDSHAKE BUFFER: Inserted 16 bytes of Data(22)
HANDSHAKE BUFFER: Read 1 bytes of Data(22)
HANDSHAKE BUFFER: Read 3 bytes of Data(22)
Handshake: FINISHED was received [16 bytes]
HASH BUFFER: Inserted 4 bytes of Data
HANDSHAKE BUFFER: Read 12 bytes of Data(22)
HASH BUFFER: Inserted 12 bytes of Data
HASH BUFFER: Read 811 bytes of Data
HASH BUFFER: Cleared Data from buffer
Error from source <localhost:23456, fd -1>:
--
Florent Jugla / Easter-Eggs Spécialiste GNU/Linux
44-46 rue de l'Ouest - 75014 Paris - France - Métro Gaité
Phone: +33 (0) 1 43 35 00 37 - Fax: +33 (0) 1 43 35 00 76
mailto:fjugla at easter-eggs.com - http://www.easter-eggs.com
More information about the Gnutls-help
mailing list