[gnutls-help] gnutls-cli-debug "|<1>| Received record packet of unknown type 97" / 2
Дилян Палаузов
dilyan.palauzov at aegee.org
Wed Jul 4 23:13:29 CEST 2018
Hello,
here some additional information. The server runs openssl 1.0.2o and
calls
SSL_CTX_set_options(context, SSL_OP_NO_TLSv1) but not
SSL_CTX_set_cipher_list(context, "!TLSv1");
"openssl s_client -msg -connect mail.aegee.org:143 -tls1 -starttls
imap" prints:
CONNECTED(00000003)
>>> ??? [length 0005]
16 03 01 00 c2
>>> TLS 1.0 Handshake [length 00c2], ClientHello
01 00 00 be 03 01 d5 75 8e 8a 53 8f f6 63 46 a9
bc 54 24 5b 18 3c 9d af 51 94 08 67 71 be 35 6d
bd 48 ff 9a cd 25 00 00 64 c0 14 c0 0a 00 39 00
38 00 37 00 36 00 88 00 87 00 86 00 85 c0 0f c0
05 00 35 00 84 c0 13 c0 09 00 33 00 32 00 31 00
30 00 9a 00 99 00 98 00 97 00 45 00 44 00 43 00
42 c0 0e c0 04 00 2f 00 96 00 41 00 07 c0 11 c0
07 c0 0c c0 02 00 05 00 04 c0 12 c0 08 00 16 00
13 00 10 00 0d c0 0d c0 03 00 0a 00 ff 01 00 00
31 00 0b 00 04 03 00 01 02 00 0a 00 1c 00 1a 00
17 00 19 00 1c 00 1b 00 18 00 1a 00 16 00 0e 00
0d 00 0b 00 0c 00 09 00 0a 00 23 00 00 00 0f 00
01 01
<<< ??? [length 0005]
2e 20 4e 4f 20
>>> ??? [length 0005]
15 03 01 00 02
>>> TLS 1.0 Alert [length 0002], fatal protocol_version
02 46
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 834 bytes and written 7 bytes
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
No ALPN negotiated
SSL-Session:
Protocol : TLSv1
Cipher : 0000
Session-ID:
Session-ID-ctx:
Master-Key:
Key-Arg : None
PSK identity: None
PSK identity hint: None
SRP username: None
Start Time: 1530738339
Timeout : 7200 (sec)
Verify return code: 0 (ok)
---
Alert 46 in HEX = 70 in Decimal = protocol_version(70) from enum
AlertDescription (from RFC2246 = The TLS Protocol Version 1.0).
The ciphers are "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM
EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384
EECDH+aRSA+SHA256 EECDH !aN
ULL !eNULL !LOW -3DES !MD5 !EXP !PSK -SRP !DSS !RC4 !EDH" and the
server sets the order.
Regards
Дилян
On Sun, 2018-07-01 at 18:56 +0200, Дилян Палаузов wrote:
> Hello Nikos,
>
> this is one possible explanation. Another possible explanation is,
> that the server answers correctly,, but gnutls does not understand
> the reply. I don't know, that's why I asked here.
>
> Greetings
> Дилян
>
> On July 1, 2018 1:28:37 PM GMT+02:00, Nikos Mavrogiannopoulos <n.mavr
> ogiannopoulos at gmail.com> wrote:
> > On Fri, 2018-06-22 at 21:33 +0000, Дилян Палаузов wrote:
> > > Hello,
> > >
> > > 1) Why is printed "|<1>| Received record packet of unknown type
> > > 97"
> > > below?
> > >
> > > $ gnutls-cli-debug -p 143 --starttls-proto imap mail.aegee.org
> > > GnuTLS debug client 3.5.18
> > > Checking mail.aegee.org:143
> > > > <1>| Received record packet of unknown type 97
> >
> > Most likely the server replies with an invalid message on cases
> > which
> > handshake fails.
> >
> >
> >
> > _______________________________________________
> > Gnutls-help mailing list
> > Gnutls-help at lists.gnutls.org
> > http://lists.gnupg.org/mailman/listinfo/gnutls-help
More information about the Gnutls-help
mailing list