Re: [Licq-devel] secure channel / ssl broken? also kills remote licq

Sat, 26 Nov 2005 07:27:04 -0800 

On Wed, 5 Oct 2005 07:17:29 +0900 Jon Keating (JK) wrote:

JK> Hmm, I just tested it out and it opened up without any problems. Can
JK> you send me some packet dumps from -d31 when you try to get a
JK> connection with SSL?

Secure channel currently doesn't work for me either. Both hosts run LICQ from
CVS head with SSL enabled, both are NAT'd and packet forwarding works as
expected. The problem seems to be with LICQ or SSL.

Packet dump follows:

16:17:43: [TCP] Sending request for secure channel to XXX (#1).
16:17:43: [TCP] Requesting reverse connection from XXX.
16:17:43: [PKT] Packet (SRVv0, 107 bytes) sent:
                (10.0.0.21:32983 -> 64.12.24.169:5190)
     0000: 2A 02 5A AF 00 65 00 04  00 06 00 00 00 00 00 16   *.Z¯.e..........
     0010: 00 00 00 00 00 00 00 16  00 02 09 33 31 37 33 31   ...........31731
     0020: 39 ?? ?? ?? 00 05 00 43  00 00 00 00 00 00 00 00   9???...C........
     0030: 00 16 09 46 13 44 4C 7F  11 D1 82 22 44 45 53 54   ...F.DL..Ñ."DEST
     0040: 00 00 00 0A 00 02 00 01  00 0F 00 00 27 11 00 1B   ............'...
     0050: 67 66 43 00 54 B3 0B 67  60 EA 00 00 04 60 EA 00   gfC.T³.g`ê...`ê.
     0060: 00 60 EA 00 00 08 00 16  00 00 00                  .`ê........
16:17:44: [PKT] Packet (TCPv0, 48 bytes) received:
                (10.0.0.21:60000 <- 84.179.136.62:42638)
     0000: FF 08 00 2B 00 67 66 43  00 00 00 60 EA 00 00 E4   ÿ..+.gfC...`ê..ä
     0010: E9 E9 12 54 B3 88 3E C0  A8 01 FA 04 60 EA 00 00   éé.T³.>À¨.ú.`ê..
     0020: 10 7F 34 36 50 00 00 00  03 00 00 00 16 00 00 00   ..46P...........  
16:17:44: [PKT] Packet (TCPv0, 4 bytes) sent:
                (10.0.0.21:60000 -> 84.179.136.62:42638)
     0000: 01 00 00 00                                        ....
16:17:44: [PKT] Packet (TCPv0, 48 bytes) sent:
                (10.0.0.21:60000 -> 84.179.136.62:42638)
     0000: FF 08 00 2B 00 E4 E9 E9  12 00 00 60 EA 00 00 67   ÿ..+.äéé...`ê..g
     0010: 66 43 00 54 B3 0B 67 0A  00 00 15 04 60 EA 00 00   fC.T³.g.....`ê..
     0020: 10 7F 34 36 50 00 00 00  03 00 00 00 00 00 00 00   ..46P...........  
16:17:44: [PKT] Packet (TCPv0, 4 bytes) received:
                (10.0.0.21:60000 <- 84.179.136.62:42638)
     0000: 01 00 00 00                                        ....
16:17:44: [PKT] Packet (TCPv0, 33 bytes) sent:
                (10.0.0.21:60000 -> 84.179.136.62:42638)
     0000: 03 0A 00 00 00 01 00 00  00 00 00 00 00 00 00 00   ................
     0010: 00 00 00 00 00 00 00 00  00 00 00 00 00 01 00 04   ................
     0020: 00                                                 .
16:17:44: [PKT] Packet (TCPv0, 33 bytes) received:
                (10.0.0.21:60000 <- 84.179.136.62:42638)
     0000: 03 0A 00 00 00 01 00 00  00 01 00 00 00 00 00 00   ................
     0010: 00 00 00 00 00 01 00 04  00 00 00 00 00 00 00 00   ................
     0020: 00                                                 .
16:17:44: [TCP] Connection from XXX (317319652) [v8].
16:17:44: [PKT] Unencrypted (ICQ) TCP Packet (32 bytes):
     0000: 02 00 00 00 00 EE 07 0E  00 FF FF 00 00 00 00 00   .....î...ÿÿ.....
     0010: 00 00 00 00 00 00 00 EF  00 00 00 10 00 01 00 00   .......ï........  
16:17:44: [PKT] Packet (TCPv8, 32 bytes) sent:
                (10.0.0.21:60000 -> 84.179.136.62:42638)
     0000: 02 82 CF F1 E3 95 AD 34  69 FF FF 00 00 00 00 00   ..Ïñã.­4iÿÿ.....
     0010: 00 00 00 00 00 00 00 EF  00 00 00 10 00 01 00 00   .......ï........  
16:17:45: [PKT] Packet (TCPv8, 31 bytes) received:
                (10.0.0.21:60000 <- 84.179.136.62:42638)
     0000: 02 98 FD F1 D4 F3 61 DB  F2 FF FF 00 00 00 00 00   ..ýñÔóaÛòÿÿ.....
     0010: 00 00 00 00 00 00 00 EF  00 00 00 00 00 00 00      .......ï.......
16:17:45: [PKT] Decrypted (ICQ) TCP Packet (30 bytes):
     0000: 02 98 FD F1 D4 DA 07 0E  00 FF FF 00 00 00 00 00   ..ýñÔÚ...ÿÿ.....
     0010: 00 00 00 00 00 00 00 EF  00 00 00 00 00 00 00      .......ï.......
16:17:45: [TCP] Secure channel response from XXX (317319???).
16:17:45: [TCP] XXX (317319???) does not support OpenSSL.

Attachment: signature.asc
Description: PGP signature

Reply via email to