Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > comp.lang.java.programmer > #4345
| From | Stone <phracek2@gmail.com> |
|---|---|
| Newsgroups | comp.lang.java.programmer |
| Subject | Re: SSL client program |
| Date | 2011-05-20 01:56 -0700 |
| Organization | http://groups.google.com |
| Message-ID | <89a1a9f4-6e70-46d8-8f10-8702dca8a55f@f9g2000vbz.googlegroups.com> (permalink) |
| References | (5 earlier) <03ea3315-bf04-48ef-b659-d2175a6d7a45@c26g2000vbq.googlegroups.com> <ce6c02bd-5988-47a0-bd0e-ab18db444593@a26g2000vbo.googlegroups.com> <4dd1b468$0$45428$c30e37c6@exi-reader.telstra.net> <f004fa48-77c4-411f-9082-ed2f5414e62a@n10g2000yqf.googlegroups.com> <4dd5ead5$0$45430$c30e37c6@exi-reader.telstra.net> |
On May 20, 6:15 am, Esmond Pitt <esmond.p...@bigpond.com> wrote:
> On 19/05/2011 6:46 PM, Stone wrote:
>
> > On May 17, 1:33 am, Esmond Pitt<esmond.p...@bigpond.com> wrote:
> >> Can you run the Java client with -Djavax.net.debug=ssl,handshake,record
> >> and post the output here? It should show what alert is being generated.
>
> > What type of problem is this?
>
> Can you do what I asked above?
Here is the output:
main, READ: TLSv1 Handshake, length = 4
*** ServerHelloDone
*** ClientKeyExchange, RSA PreMasterSecret, TLSv1
main, WRITE: TLSv1 Handshake, length = 134
SESSION KEYGEN:
PreMaster Secret:
0000: 03 01 8F 2E E0 03 2C EE 58 8D 1B 88 BB F7 30 9B ......,.X.....
0.
0010: 60 84 6B EC C8 F2 86 D7 13 CB 84 CA 10 8B 84 50
`.k............P
0020: 7E BB DE 1B 7A 1D 59 DE 65 A8 41 C1 D4 9F EE
1A ....z.Y.e.A.....
CONNECTION KEYGEN:
Client Nonce:
0000: 4D D6 2A D7 80 C4 53 B2 32 3E 86 AE A8 9B D3 11 M.*...S.
2>......
0010: 19 DD AB 83 0F 31 33 4E D9 07 ED CB BA 23 66 5F .....
13N.....#f_
Server Nonce:
0000: 4D D6 2E 7E 3B FF A3 24 C3 01 8D 40 30 A9 70 3A M...;..
$...@0.p:
0010: D2 D3 34 FA FE EE E7 DB 33 CE 18 8F FC FA A2 D3 ..
4.....3.......
Master Secret:
0000: 02 14 E4 13 FE B6 05 7E 4C EA F7 C9 6F DC 46
8B ........L...o.F.
0010: E8 96 E2 3A B8 9A 01 6A 02 B4 DC 0D 39 77 2A AB ...:...j....
9w*.
0020: 3C AE CD 0A 35 1E 5A 5D EC 55 08 A2 3E D9 2A 7C <...
5.Z].U..>.*.
Client MAC write Secret:
0000: 6B E9 D3 2A 9B 99 D1 85 1F 8B AE 21 E3 92 9D 83
k..*.......!....
Server MAC write Secret:
0000: FA E1 F8 A2 BE 3A 9F EB E0 1D D1 90 FE EC 85
CB .....:..........
Client write key:
0000: EA 34 4D 65 92 99 8F 46 79 B4 D1 DA 3B B7 93 26 .
4Me...Fy...;..&
Server write key:
0000: 04 91 71 8D 6A 28 3B BD EA 21 01 6E 70 FB 06
EE ..q.j(;..!.np...
... no IV used for this cipher
main, WRITE: TLSv1 Change Cipher Spec, length = 1
*** Finished
verify_data: { 194, 94, 110, 184, 146, 84, 139, 23, 128, 30, 172,
154 }
***
main, WRITE: TLSv1 Handshake, length = 32
main, READ: TLSv1 Change Cipher Spec, length = 1
main, READ: TLSv1 Handshake, length = 32
*** Finished
verify_data: { 221, 84, 99, 182, 94, 229, 245, 49, 239, 9, 242, 116 }
***
%% Cached client session: [Session-1, SSL_RSA_WITH_RC4_128_MD5]
Getting session was done
Peer host is 192.168.0.120
Cipher is SSL_RSA_WITH_RC4_128_MD5
Protocol is TLSv1
Socket class: class com.sun.net.ssl.internal.ssl.SSLSocketImpl
Remote address = /192.168.0.120
Remote port = 5000
Local socket address = /10.7.254.22:2184
Local address = /192.168.0.130
Local port = 2184
Need client authentication = false
Cipher suite = SSL_RSA_WITH_RC4_128_MD5
Protocol = TLSv1
main, READ: TLSv1 Handshake, length = 20
Allow unsafe renegotiation: false
Allow legacy hello messages: true
Is initial handshake: false
Is secure renegotiation: true
*** HelloRequest (empty)
%% Client cached [Session-1, SSL_RSA_WITH_RC4_128_MD5]
%% Try resuming [Session-1, SSL_RSA_WITH_RC4_128_MD5] from port 2184
*** ClientHello, TLSv1
RandomCookie: GMT: 1289103832 bytes = { 65, 48, 233, 162, 111, 170,
145, 44, 19
9, 239, 216, 52, 135, 235, 207, 100, 46, 51, 207, 42, 143, 130, 172,
180, 10, 84
, 41, 182 }
Session ID: {250, 122, 71, 89, 118, 196, 255, 44, 117, 119, 69, 73,
223, 161, 1
26, 19, 49, 161, 129, 40, 140, 144, 141, 116, 217, 98, 244, 232, 131,
214, 79, 1
42}
Cipher Suites: [SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA,
TLS_RSA_WITH
_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA,
TLS_DHE_DSS_WITH_AES_128_CBC
_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA,
SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_
DSS_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_DES_CBC_SHA,
SSL_DHE_RSA_WITH_DES_CBC_SH
A, SSL_DHE_DSS_WITH_DES_CBC_SHA, SSL_RSA_EXPORT_WITH_RC4_40_MD5,
SSL_RSA_EXPORT_
WITH_DES40_CBC_SHA, SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA,
SSL_DHE_DSS_EXPORT_WI
TH_DES40_CBC_SHA]
Compression Methods: { 0 }
Extension renegotiation_info, renegotiated_connection: c2:5e:
6e:b8:92:54:8b:17:8
0:1e:ac:9a
***
main, WRITE: TLSv1 Handshake, length = 140
main, READ: TLSv1 Application Data, length = 106
HELLO_SSL_SERVER_IS_HERE
main, WRITE: TLSv1 Application Data, length = 74
main, READ: TLSv1 Handshake, length = 121
*** ServerHello, TLSv1
RandomCookie: GMT: 1289105023 bytes = { 255, 208, 20, 94, 83, 1, 175,
155, 28,
235, 171, 32, 185, 187, 240, 129, 197, 41, 89, 188, 75, 176, 55, 176,
247, 226,
12, 57 }
Session ID: {250, 122, 71, 89, 118, 196, 255, 44, 117, 119, 69, 73,
223, 161, 1
26, 19, 49, 161, 129, 40, 140, 144, 141, 116, 217, 98, 244, 232, 131,
214, 79, 1
42}
Cipher Suite: SSL_RSA_WITH_RC4_128_MD5
Compression Method: 0
Extension renegotiation_info, renegotiated_connection: c2:5e:
6e:b8:92:54:8b:17:8
0:1e:ac:9a:dd:54:63:b6:5e:e5:f5:31:ef:09:f2:74
***
CONNECTION KEYGEN:
Client Nonce:
0000: 4D D6 2A D8 41 30 E9 A2 6F AA 91 2C C7 EF D8 34
M.*.A0..o..,...4
0010: 87 EB CF 64 2E 33 CF 2A 8F 82 AC B4 0A 54 29 B6 ...d.
3.*.....T).
Server Nonce:
0000: 4D D6 2E 7F FF D0 14 5E 53 01 AF 9B 1C EB AB 20
M......^S......
0010: B9 BB F0 81 C5 29 59 BC 4B B0 37 B0 F7 E2 0C 39 .....)Y.K.
7....9
Master Secret:
0000: 02 14 E4 13 FE B6 05 7E 4C EA F7 C9 6F DC 46
8B ........L...o.F.
0010: E8 96 E2 3A B8 9A 01 6A 02 B4 DC 0D 39 77 2A AB ...:...j....
9w*.
0020: 3C AE CD 0A 35 1E 5A 5D EC 55 08 A2 3E D9 2A 7C <...
5.Z].U..>.*.
Client MAC write Secret:
0000: C0 8D 44 8C EB 61 E5 F1 E6 3D D2 A9 BC 2F 35 4F ..D..a...=.../
5O
Server MAC write Secret:
0000: 9B 82 E2 D4 46 5D 27 87 28 5A B4 29 B9 89 EE 30 ....F]'.
(Z.)...0
Client write key:
0000: 17 3C 40 19 92 BE A2 39 9C E4 DB 21 4F 73 1F 84 .<@....9...!
Os..
Server write key:
0000: 4B 7A 61 1E D2 A0 77 64 E5 F4 CF C6 5A 1C 7C 4A
Kza...wd....Z..J
... no IV used for this cipher
%% Server resumed [Session-1, SSL_RSA_WITH_RC4_128_MD5]
main, READ: TLSv1 Change Cipher Spec, length = 17
main, READ: TLSv1 Handshake, length = 32
*** Finished
verify_data: { 97, 230, 102, 11, 191, 75, 26, 119, 46, 96, 184, 61 }
***
main, WRITE: TLSv1 Change Cipher Spec, length = 17
*** Finished
verify_data: { 202, 55, 36, 163, 185, 216, 10, 77, 62, 152, 71, 69 }
***
main, WRITE: TLSv1 Handshake, length = 32
main, READ: TLSv1 Alert, length = 18
main, RECV TLSv1 ALERT: fatal, unexpected_message
%% Invalidated: [Session-1, SSL_RSA_WITH_RC4_128_MD5]
main, called closeSocket()
main, handling exception: javax.net.ssl.SSLException: Received fatal
alert: unex
pected_message
Back to comp.lang.java.programmer | Previous | Next — Previous in thread | Next in thread | Find similar
SSL client program Stone <phracek2@gmail.com> - 2011-05-13 01:09 -0700
Re: SSL client program Daniele Futtorovic <da.futt.news@laposte-dot-net.invalid> - 2011-05-13 18:39 +0200
Re: SSL client program Daniele Futtorovic <da.futt.news@laposte-dot-net.invalid> - 2011-05-13 18:57 +0200
Re: SSL client program Stone <phracek2@gmail.com> - 2011-05-14 01:54 -0700
Re: SSL client program Daniele Futtorovic <da.futt.news@laposte-dot-net.invalid> - 2011-05-14 17:34 +0200
Re: SSL client program Stone <phracek2@gmail.com> - 2011-05-14 09:45 -0700
Re: SSL client program Stone <phracek2@gmail.com> - 2011-05-14 09:48 -0700
Re: SSL client program Daniele Futtorovic <da.futt.news@laposte-dot-net.invalid> - 2011-05-14 21:23 +0200
Re: SSL client program Stone <phracek2@gmail.com> - 2011-05-14 12:34 -0700
Re: SSL client program Stone <phracek2@gmail.com> - 2011-05-14 11:35 -0700
Re: SSL client program Esmond Pitt <esmond.pitt@bigpond.com> - 2011-05-16 16:54 +1000
Re: SSL client program Stone <phracek2@gmail.com> - 2011-05-16 03:08 -0700
Re: SSL client program Stone <phracek2@gmail.com> - 2011-05-16 05:22 -0700
Re: SSL client program Esmond Pitt <esmond.pitt@bigpond.com> - 2011-05-17 09:33 +1000
Re: SSL client program Stone <phracek2@gmail.com> - 2011-05-19 01:46 -0700
Re: SSL client program Esmond Pitt <esmond.pitt@bigpond.com> - 2011-05-20 14:15 +1000
Re: SSL client program Stone <phracek2@gmail.com> - 2011-05-20 01:56 -0700
Re: SSL client program Stone <phracek2@gmail.com> - 2011-05-20 02:00 -0700
Re: SSL client program Stone <phracek2@gmail.com> - 2011-05-14 01:49 -0700
Re: SSL client program Lothar Kimmeringer <news200709@kimmeringer.de> - 2011-05-15 13:52 +0200
Re: SSL client program Stone <phracek2@gmail.com> - 2011-05-15 11:05 -0700
Re: SSL client program Lothar Kimmeringer <news200709@kimmeringer.de> - 2011-05-16 08:46 +0200
csiph-web