[gnutls-help] gnutls-3.3.12 problems with Apple Push Notifications

Nikos Mavrogiannopoulos nmav at gnutls.org
Wed Jan 28 00:09:35 CET 2015

On Wed, 2015-01-28 at 10:26 +1300, Matt Harvey wrote:
> I was wondering if anyone has used gnutls for Apple Push
> Notifications?
> I am trying to use gnutls-cli to establish a connection with
> gateway.sandbox.push.apple.com:2195 but am encountering the following
> error:
> openssl connection info:
>New, TLSv1/SSLv3, Cipher is AES256-SHA

Judging from the ciphers, and the protocol version, that must be very
old openssl, or the server is very limited.

> And here's a subset of gnutls-cli output with debugging on:
>|<5>| REC[0xa1d7e60]: SSL 3.1 Alert packet received. Epoch 0, length: 2

Unfortunately you quote the error only, and that is in no way sufficient
to understand why is that error there. All the previous dump would be
needed to see what could have been wrong. You could also try using
conservative priority strings, such as NORMAL:%COMPAT.

> gnutls-cli-debug --port=2195 gateway.sandbox.push.apple.com
> Warning: getservbyport() failed. Using port number as service.
> GnuTLS debug client 3.3.12
> Checking gateway.sandbox.push.apple.com:2195

gnutls-cli-debug wouldn't work because the server requires a certificate
to complete the handshake.


More information about the Gnutls-help mailing list