[openssl-users] 1.1.0b fails to negotiate with an old OpenSSL client
Michael Kocum
michael at dataenter.co.at
Wed Oct 26 20:06:23 UTC 2016
1.1.0b fails to negotiate from an old program that uses OpenSSL.
The same old program can connect to 1.0.2h without any problem.
Here is the debug log of the server. Maybe someone can point me in the right direction what the problem might be.
openssl s_server -debug -state -bugs -serverpref -tlsextdebug -accept 25 -cert selfsigned.pem
Using default temp DH parameters
ACCEPT
SSL_accept:before SSL initialization
read from 0x14fffe0 [0x1509b53] (5 bytes => 5 (0x5))
0000 - 80 c8 01 03 01 .....
read from 0x14fffe0 [0x1509b58] (197 bytes => 197 (0xC5))
0000 - 00 9f 00 00 00 20 00 c0-14 00 c0 0a 00 00 39 00 ..... ........9.
0010 - 00 38 00 c0 0f 00 c0 05-00 00 35 00 00 88 00 00 .8........5.....
0020 - 87 00 00 84 00 c0 12 00-c0 08 00 00 16 00 00 13 ................
0030 - 00 c0 0d 00 c0 03 00 00-0a 07 00 c0 00 c0 13 00 ................
0040 - c0 09 00 00 33 00 00 32-00 c0 0e 00 c0 04 00 00 ....3..2........
0050 - 2f 00 00 9a 00 00 99 00-00 45 00 00 44 00 00 96 /........E..D...
0060 - 00 00 41 00 00 07 05 00-80 03 00 80 00 c0 11 00 ..A.............
0070 - c0 07 00 c0 0c 00 c0 02-00 00 05 00 00 04 01 00 ................
0080 - 80 00 00 15 00 00 12 00-00 09 06 00 40 00 00 14 ............ at ...
0090 - 00 00 11 00 00 08 00 00-06 04 00 80 00 00 03 02 ................
00a0 - 00 80 00 00 ff 30 16 85-97 e0 9f e3 aa b1 07 47 .....0.........G
00b0 - 99 a5 7c 38 20 cd 51 39-a1 14 2f 60 50 87 26 62 ..|8 .Q9../`P.&b
00c0 - 0e c8 73 53 86 ..sS.
SSL_accept:before SSL initialization
SSL_accept:SSLv3/TLS read client hello
SSL_accept:SSLv3/TLS write server hello
SSL_accept:SSLv3/TLS write certificate
SSL_accept:SSLv3/TLS write key exchange
write to 0x14fffe0 [0x1512d58] (1281 bytes => 1281 (0x501))
0000 - 16 03 01 00 51 02 00 00-4d 03 01 2c 21 40 97 a5 ....Q...M..,!@..
0010 - 67 b2 a4 a7 63 cc f0 58-af 24 a4 ca 61 d8 fa bf g...c..X.$..a...
0020 - a8 50 84 29 20 54 70 1e-f5 8e c2 20 bf ad ba d7 .P.) Tp.... ....
0030 - fa 23 5b 77 eb 0f 30 a2-49 61 f9 ca 9f 28 3f 14 .#[w..0.Ia...(?.
0040 - bb d7 cd cf 5c 1b 69 d8-6b db 0e f7 c0 14 00 00 ....\.i.k.......
0050 - 05 ff 01 00 01 00 16 03-01 03 6e 0b 00 03 6a 00 ..........n...j.
0060 - 03 67 00 03 64 30 82 03-60 30 82 02 48 02 09 00 .g..d0..`0..H...
0070 - c0 99 99 49 38 26 56 04-30 0d 06 09 2a 86 48 86 ...I8&V.0...*.H.
0080 - f7 0d 01 01 05 05 00 30-72 31 0b 30 09 06 03 55 .......0r1.0...U
0090 - 04 06 13 02 41 54 31 0b-30 09 06 03 55 04 08 13 ....AT1.0...U...
00a0 - 02 41 54 31 0b 30 09 06-03 55 04 07 13 02 41 54 .AT1.0...U....AT
00b0 - 31 0d 30 0b 06 03 55 04-0a 13 04 54 45 53 54 31 1.0...U....TEST1
00c0 - 0d 30 0b 06 03 55 04 0b-13 04 54 45 53 54 31 0d .0...U....TEST1.
00d0 - 30 0b 06 03 55 04 03 13-04 54 45 53 54 31 1c 30 0...U....TEST1.0
00e0 - 1a 06 09 2a 86 48 86 f7-0d 01 09 01 16 0d 74 65 ...*.H........te
00f0 - 73 74 40 74 65 73 74 2e-63 6f 6d 30 1e 17 0d 31 st at test.com0...1
0100 - 33 30 31 31 30 31 37 31-38 34 33 5a 17 0d 31 37 30110171843Z..17
0110 - 30 31 30 39 31 37 31 38-34 33 5a 30 72 31 0b 30 0109171843Z0r1.0
0120 - 09 06 03 55 04 06 13 02-41 54 31 0b 30 09 06 03 ...U....AT1.0...
0130 - 55 04 08 13 02 41 54 31-0b 30 09 06 03 55 04 07 U....AT1.0...U..
0140 - 13 02 41 54 31 0d 30 0b-06 03 55 04 0a 13 04 54 ..AT1.0...U....T
0150 - 45 53 54 31 0d 30 0b 06-03 55 04 0b 13 04 54 45 EST1.0...U....TE
0160 - 53 54 31 0d 30 0b 06 03-55 04 03 13 04 54 45 53 ST1.0...U....TES
0170 - 54 31 1c 30 1a 06 09 2a-86 48 86 f7 0d 01 09 01 T1.0...*.H......
0180 - 16 0d 74 65 73 74 40 74-65 73 74 2e 63 6f 6d 30 ..test at test.com0
0190 - 82 01 22 30 0d 06 09 2a-86 48 86 f7 0d 01 01 01 .."0...*.H......
01a0 - 05 00 03 82 01 0f 00 30-82 01 0a 02 82 01 01 00 .......0........
01b0 - d3 32 55 70 37 65 9c 8d-63 cf 8c 65 fb ac cf 44 .2Up7e..c..e...D
01c0 - 70 33 64 ae 9c db e6 3a-1d c5 be 66 f1 9a d0 79 p3d....:...f...y
01d0 - c3 6b 54 23 0e 3a 62 56-75 b2 c5 73 38 7c 02 4f .kT#.:bVu..s8|.O
01e0 - ee 54 e3 99 e9 23 23 c8-ed f9 56 ea 0d 58 4f c0 .T...##...V..XO.
01f0 - 39 ea 55 57 7d e4 6a 24-25 c3 50 f0 49 79 f7 8a 9.UW}.j$%.P.Iy..
0200 - 3d f1 a4 dc 5f 0f 3f e4-1c 1c 24 0b 7c 8a 70 ef =..._.?...$.|.p.
0210 - 22 80 bd 63 1d 3f 59 fd-aa 38 1d d4 9b be e8 f8 "..c.?Y..8......
0220 - b3 6b cd 4f 0b 6f f4 91-db 3c 0a 57 c1 d4 78 f7 .k.O.o...<.W..x.
0230 - 55 b1 f5 d4 f8 e6 27 6e-a6 24 8d d5 b0 59 ad 57 U.....'n.$...Y.W
0240 - 74 78 16 cf 96 4f f3 1b-0f f7 00 2e f2 10 78 a1 tx...O........x.
0250 - 46 2a 70 00 f1 17 ae 9f-c8 79 5f 2c e9 fd bb 93 F*p......y_,....
0260 - 1d e1 61 08 35 e7 8a 8a-93 16 70 ea d7 34 33 41 ..a.5.....p..43A
0270 - 60 74 ab 9d 0c f3 19 a0-e5 0b 89 54 6f eb e7 de `t.........To...
0280 - 6e 09 b3 fd 8e e7 c4 6c-91 1b a7 c6 d4 72 39 09 n......l.....r9.
0290 - 74 f4 8c c5 6a 44 01 8a-e0 68 44 55 ea 7d 4e 13 t...jD...hDU.}N.
02a0 - 9f 2f ac fc 8a 39 e7 ee-d4 ce 04 00 10 cf 50 6b ./...9........Pk
02b0 - 02 03 01 00 01 30 0d 06-09 2a 86 48 86 f7 0d 01 .....0...*.H....
02c0 - 01 05 05 00 03 82 01 01-00 01 5e a3 08 b1 67 4f ..........^...gO
02d0 - bc 31 ae 14 3f bf c2 25-5f b3 e2 78 56 60 34 f7 .1..?..%_..xV`4.
02e0 - de ae ad 16 cb a0 b9 3d-66 50 98 e6 33 75 09 63 .......=fP..3u.c
02f0 - 43 02 fd d9 d0 ad 6d 32-8e 54 ef 62 fe cb 05 58 C.....m2.T.b...X
0300 - 3d 85 75 88 80 db 5e 8b-14 36 eb a6 a0 a1 c7 18 =.u...^..6......
0310 - 8b 87 77 a0 9e dc 6d ca-12 77 2a 8e d6 17 5c 02 ..w...m..w*...\.
0320 - 30 c7 e8 06 fe 2c f9 a5-86 37 84 3d ff f0 ae 48 0....,...7.=...H
0330 - a0 42 5a a0 a3 0e ef fd-49 dc 4d e5 20 91 6b d5 .BZ.....I.M. .k.
0340 - 77 b0 74 61 9f 52 7b 85-26 e1 31 fa 97 b2 17 1b w.ta.R{.&.1.....
0350 - 93 25 8d 78 ed 45 03 95-04 9f 61 73 7a 34 06 14 .%.x.E....asz4..
0360 - 91 aa 40 1f 3d 99 ec 05-d0 c7 25 a0 26 3d 0d 58 .. at .=.....%.&=.X
0370 - 0f 95 d8 e2 6d 96 5c fc-20 16 03 43 14 54 7a dc ....m.\. ..C.Tz.
0380 - 8d ca 9f 62 86 b1 f0 4a-fc 5b 0e 56 fb 97 6d 43 ...b...J.[.V..mC
0390 - d9 68 66 47 53 7c 63 d4-61 51 05 ba 9f 2b 8d 8a .hfGS|c.aQ...+..
03a0 - c1 61 51 33 e2 ed 7f db-52 ce 47 0f 84 33 b8 12 .aQ3....R.G..3..
03b0 - 0c c7 fe 75 9c b2 ab 6a-01 39 05 62 9d 77 d4 f4 ...u...j.9.b.w..
03c0 - fd 38 89 a4 11 1b 02 e4-e7 16 03 01 01 2a 0c 00 .8...........*..
03d0 - 01 26 03 00 1d 20 4f b4-34 86 a8 a0 0a 45 5b 80 .&... O.4....E[.
03e0 - b0 79 9e bf 4b 91 ed ae-2c b7 ee 64 ff 39 78 c8 .y..K...,..d.9x.
03f0 - a0 e7 37 e6 a5 13 01 00-1a 9f 48 8e 91 73 55 3e ..7.......H..sU>
0400 - 86 16 04 7e a9 b2 49 16-d6 f6 b3 c2 17 d1 4e 11 ...~..I.......N.
0410 - c4 67 7c 81 e6 49 a2 04-d7 bc 42 04 8c 2a 0f da .g|..I....B..*..
0420 - a0 75 7d 80 98 5b 1a 0f-e2 48 55 06 95 38 0d a6 .u}..[...HU..8..
0430 - 84 f0 42 37 6b ee ca e9-e5 7e 13 11 d7 f9 3e f4 ..B7k....~....>.
0440 - b2 ae f1 01 e6 56 ab 7b-46 3b bd 66 de aa ad d7 .....V.{F;.f....
0450 - 41 59 2b 80 2d 76 98 a0-82 c8 d1 00 05 e8 11 da AY+.-v..........
0460 - c3 4b c5 15 23 c0 ba 66-8c 9b fc 80 33 c4 e8 f9 .K..#..f....3...
0470 - 1f c7 82 ba b1 58 0c 87-54 42 b4 ce ed 66 4e 4e .....X..TB...fNN
0480 - 3e 51 d4 9f 5f 1e 20 18-b1 5e 6a b9 bb e7 6c b2 >Q.._. ..^j...l.
0490 - 2d 27 52 90 70 9f b0 97-cb 6d 23 0b 9d 1c e6 9d -'R.p....m#.....
04a0 - 71 2a ab 9b a9 42 c9 16-ce a1 86 63 96 fe b2 b6 q*...B.....c....
04b0 - 49 69 5c 80 7b 9d 3d 40-a8 4a 70 51 0a a1 99 a8 Ii\.{.=@.JpQ....
04c0 - b8 72 52 39 6b 8c c6 91-13 36 fb d5 fe 7d 2b db .rR9k....6...}+.
04d0 - 45 3d 73 d9 be de fd 40-19 ed ec 41 84 d5 17 a7 E=s.... at ...A....
04e0 - 6e 32 05 51 5b e6 56 44-40 2b e8 54 d9 36 cc bb n2.Q[.VD at +.T.6..
04f0 - 77 17 cd f3 7c e7 00 60-16 03 01 00 04 0e w...|..`......
0501 - <SPACES/NULS>
SSL_accept:SSLv3/TLS write server done
read from 0x14fffe0 [0x1509b53] (5 bytes => 5 (0x5))
0000 - 15 03 01 00 02 .....
read from 0x14fffe0 [0x1509b58] (2 bytes => 2 (0x2))
0000 - 02 50 .P
SSL3 alert read:fatal:internal error
SSL_accept:error in SSLv3/TLS write server done
ERROR
0:error:14094438:SSL routines:ssl3_read_bytes:tlsv1 alert internal error:ssl\record\rec_layer_s3.c:1382:SSL alert number 80
shutting down SSL
CONNECTION CLOSED
--
Michael Kocum [DataEnter]
michael at dataenter.co.at
More information about the openssl-users
mailing list