Re: SSL3_GET_RECORD:wrong version number

Marek Marcola Mon, 11 Dec 2006 11:11:36 -0800

Hello,
> On 12/11/06, Marek Marcola <[EMAIL PROTECTED]> wrote:
> > Can you send ssldump with -aAdN options ?
> 
> Certainly. (Certificate details have been obfuscated)
> 
> New TCP connection #8: localhost.localdomain(48429) <->
> localhost.localdomain(5758)
> 8 1  0.0028 (0.0028)  C>S SSLv2 compatible client hello
>   Version 3.1
>   cipher suites
>   Unknown value 0x39
>   Unknown value 0x38
>   Unknown value 0x35
>   TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
>   TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
>   TLS_RSA_WITH_3DES_EDE_CBC_SHA
>   SSL2_CK_3DES
>   Unknown value 0x33
>   Unknown value 0x32
>   Unknown value 0x2f
>   TLS_RSA_WITH_IDEA_CBC_SHA
>   SSL2_CK_IDEA
>   SSL2_CK_RC2
>   TLS_RSA_WITH_RC4_128_SHA
>   TLS_RSA_WITH_RC4_128_MD5
>   SSL2_CK_RC4
>   TLS_DHE_RSA_WITH_DES_CBC_SHA
>   TLS_DHE_DSS_WITH_DES_CBC_SHA
>   TLS_RSA_WITH_DES_CBC_SHA
>   SSL2_CK_DES
>   TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA
>   TLS_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA
>   TLS_RSA_EXPORT_WITH_DES40_CBC_SHA
>   TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5
>   SSL2_CK_RC2_EXPORT40
>   TLS_RSA_EXPORT_WITH_RC4_40_MD5
>   SSL2_CK_RC4_EXPORT40
> 8 2  0.0053 (0.0025)  S>CV3.1(74)  Handshake
>       ServerHello
>         Version 3.1
>         random[32]=
>           45 7d a0 8b 4b e8 ae 91 c7 13 a2 53 cd 21 70 02
>           e6 61 f7 ef 52 12 14 c5 ab 0f 1c b7 59 b3 46 28
>         session_id[32]=
>           c8 c6 12 12 89 c2 01 42 63 24 db e6 83 5f 98 ac
>           23 f6 80 92 ec d0 5d d4 23 6a 47 e7 dc b9 21 4b
>         cipherSuite         Unknown value 0x35
>         compressionMethod                   NULL
> 8 3  0.0053 (0.0000)  S>CV3.1(889)  Handshake
>       Certificate
>         Subject
>           C=US
>           ST=Illinois
>           L=Chicago
>           O=Blah
>           CN=BLAH-SRV-BLAH
>           [EMAIL PROTECTED]
>         Issuer
>           C=US
>           ST=Illinois
>           L=Chicago
>           O=Blah
>           CN=BLAH-SRV-BLAH
>           [EMAIL PROTECTED]
>         Serial         00
>         Extensions
>           Extension: X509v3 Subject Key Identifier
>           Extension: X509v3 Authority Key Identifier
>           Extension: X509v3 Basic Constraints
> 8 4  0.0053 (0.0000)  S>CV3.1(4)  Handshake
>       ServerHelloDone
> 8 5  0.0217 (0.0163)  C>SV3.1(134)  Handshake
>       ClientKeyExchange
> 8 6  0.0611 (0.0393)  C>SV3.1(1)  ChangeCipherSpec
> 8 7  0.0611 (0.0000)  C>SV3.1(48)  Handshake
> 8 8  0.0615 (0.0004)  S>CV3.1(1)  ChangeCipherSpec
> 8 9  0.0615 (0.0000)  S>CV3.1(48)  Handshake
This TLS1 looks good, but sorry I've forget xX options,
so output from "ssldump -aAdNxX" should give more information
(SSL packet dump) with ending error.


Best regards,
-- 
Marek Marcola <[EMAIL PROTECTED]>

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [email protected]
Automated List Manager                           [EMAIL PROTECTED]

Re: SSL3_GET_RECORD:wrong version number

Reply via email to