Re: [openssl.org #3400] ccs received early

Sat, 14 Jun 2014 11:42:07 -0700 

On Sat, Jun 14, 2014 at 07:12:06PM +0200, Kurt Roeckx via RT wrote:

> So it's 0.9.8o (+patches) (server, sending data) talking to
> OpenSSL_1_0_1-stable (client).  After some data transfer I see:
> s->c: Hello Request
> c->s: Client Hello
> s->c: Server Hello, Certificate, Server Hello Done
> c->s: Client Key Exchange, Change Cipher Spec, Finished
> s->c: Change Cipher Spec, Finished
> c->s: Alert (Fatal, Unexpected Message)

When I build 1.0.1h and trigger a server-initiated renegotiation
via s_server by typing "r<RETURN>" after the connection is established,

  # Client is 1.0.1 (similar to report):
  $ openssl s_client -CAfile server.pem -msg -connect 127.0.0.1:12345

  # Server is 1.0.1 (should not matter from client's perspective)
  $ openssl s_server -cert server.pem -accept 12345 \
        -tls1 -no_dhe -no_ecdhe -no_ticket -no_cache

I get:

New, TLSv1/SSLv3, Cipher is AES256-SHA
Server public key is 1024 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
SSL-Session:
    Protocol  : TLSv1
    Cipher    : AES256-SHA
    Session-ID:
    Session-ID-ctx:
    Master-Key: 
78E63A22515E23E467774EB92C270055987B8CA0A4AFB462BAA0237F213BFC926D58587A707E3081E29E03CF2FC08B85
    Key-Arg   : None
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    Start Time: 1402770873
    Timeout   : 300 (sec)
    Verify return code: 0 (ok)
---
<<< TLS 1.0 Handshake [length 0004], HelloRequest
>>> TLS 1.0 Handshake [length 014f], ClientHello
<<< TLS 1.0 Handshake [length 004e], ServerHello
<<< TLS 1.0 Handshake [length 0214], Certificate
<<< TLS 1.0 Handshake [length 0004], ServerHelloDone
>>> TLS 1.0 Handshake [length 0086], ClientKeyExchange
>>> TLS 1.0 ChangeCipherSpec [length 0001]
>>> TLS 1.0 Handshake [length 0010], Finished
<<< TLS 1.0 ChangeCipherSpec [length 0001]
<<< TLS 1.0 Handshake [length 0010], Finished
read R BLOCK

Is there anything materially different about the problem configuration?
Protocol?  Cipher-suite?  Differences from 1.0.1h on the client?

-- 
        Viktor.
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       [email protected]
Automated List Manager                           [email protected]

Reply via email to