Verification of the message MAC failed

mathieubordere · January 11, 2019, 12:38pm

mbed TLS version used = 2.8.0

I have adapted ssl_server.c to run on my development board. It sets up a TCP server that listens on port 4433 and is reachable through the local ip 192.168.2.2

I run the ssl_client.c from my development machine with ip 192.168.2.1, so client and server are not on the same host.

When the first encrypted message is sent by the client, I get a bad mac error on the server. I don’t know why this is happening, the master key and derived data are the same. I have attached the debug logs, would be great if someone could shed a light on this issue.

Server log

ssl_tls.c:6659: => handshake
ssl_srv.c:3976: server state: 0
ssl_tls.c:2454: => flush output
ssl_tls.c:2466: <= flush output
ssl_srv.c:3976: server state: 1
ssl_tls.c:2454: => flush output
ssl_tls.c:2466: <= flush output
ssl_srv.c:1198: => parse client hello
ssl_tls.c:2246: => fetch input
ssl_tls.c:2404: in_left: 0, nb_want: 5
ssl_tls.c:2428: in_left: 0, nb_want: 5
ssl_tls.c:2429: ssl->f_recv(_timeout)() returned 5 (-0xfffffffb)
ssl_tls.c:2441: <= fetch input
ssl_srv.c:1230: dumping ‘record header’ (5 bytes)
ssl_srv.c:1230: 0000: 16 03 01 01 8f …
ssl_srv.c:1242: client hello v3, message type: 22
ssl_srv.c:1251: client hello v3, message len.: 399
ssl_srv.c:1254: client hello v3, protocol version: [3:1]
ssl_tls.c:2246: => fetch input
ssl_tls.c:2404: in_left: 5, nb_want: 404
ssl_tls.c:2428: in_left: 5, nb_want: 404
ssl_tls.c:2429: ssl->f_recv(_timeout)() returned 399 (-0xfffffe71)
ssl_tls.c:2441: <= fetch input
ssl_srv.c:1336: dumping ‘record contents’ (399 bytes)
ssl_srv.c:1336: 0000: 01 00 01 8b 03 03 5c 38 71 1a 96 98 f0 55 f1 35 …\8q…U.5
ssl_srv.c:1336: 0010: 1f cc b5 c3 4e 78 2b 6e 71 e9 d2 89 6e 03 b2 38 …Nx+nq…n…8
ssl_srv.c:1336: 0020: 8e 7f 8f eb 39 bf 00 01 06 c0 2c c0 30 00 9f c0 …9…,.0…
ssl_srv.c:1336: 0030: ad c0 9f c0 24 c0 28 00 6b c0 0a c0 14 00 39 c0 …$.(.k…9.
ssl_srv.c:1336: 0040: af c0 a3 c0 87 c0 8b c0 7d c0 73 c0 77 00 c4 00 …}.s.w…
ssl_srv.c:1336: 0050: 88 c0 2b c0 2f 00 9e c0 ac c0 9e c0 23 c0 27 00 …+./…#.'.
ssl_srv.c:1336: 0060: 67 c0 09 c0 13 00 33 c0 ae c0 a2 c0 86 c0 8a c0 g…3…
ssl_srv.c:1336: 0070: 7c c0 72 c0 76 00 be 00 45 c0 08 c0 12 00 16 00 |.r.v…E…
ssl_srv.c:1337: 0080: ab c0 a7 c0 38 00 b3 c0 36 00 91 c0 91 c0 9b c0 …8…6…
ssl_srv.c:1336: 0090: 97 c0 ab 00 aa c0 a6 c0 37 00 b2 c0 35 00 90 c0 …7…5…
ssl_srv.c:1336: 00a0: 90 c0 96 c0 9a c0 aa c0 34 00 8f 00 9d c0 9d 00 …4…
ssl_srv.c:1336: 00b0: 3d 00 35 c0 32 c0 2a c0 0f c0 2e c0 26 c0 05 c0 =.5.2.…&…
ssl_srv.c:1336: 00c0: a1 c0 7b 00 c0 00 84 c0 8d c0 79 c0 89 c0 75 00 …{…y…u.
ssl_srv.c:1336: 00d0: 9c c0 9c 00 3c 00 2f c0 31 c0 29 c0 0e c0 2d c0 …<./.1.)…-.
ssl_srv.c:1336: 00e0: 25 c0 04 c0 a0 c0 7a 00 ba 00 41 c0 8c c0 78 c0 %…z…A…x.
ssl_srv.c:1336: 00f0: 88 c0 74 00 0a c0 0d c0 03 00 ad 00 b7 00 95 c0 …t…
ssl_srv.c:1336: 0100: 93 c0 99 00 ac 00 b6 00 94 c0 92 c0 98 00 93 00 …
ssl_srv.c:1336: 0110: a9 c0 a5 00 af 00 8d c0 8f c0 95 c0 a9 00 a8 c0 …
ssl_srv.c:1336: 0120: a4 00 ae 00 8c c0 8e c0 94 c0 a8 00 8b 00 ff 01 …
ssl_srv.c:1336: 0130: 00 00 5c 00 00 00 10 00 0e 00 00 0b 31 39 32 2e ….…192.
ssl_srv.c:1336: 0140: 31 36 38 2e 32 2e 32 00 0d 00 16 00 14 06 03 06 168.2.2…
ssl_srv.c:1336: 0150: 01 05 03 05 01 04 03 04 01 03 03 03 01 02 03 02 …
ssl_srv.c:1336: 0160: 01 00 0a 00 18 00 16 00 19 00 1c 00 18 00 1b 00 …
ssl_srv.c:1336: 0170: 17 00 16 00 1a 00 15 00 14 00 13 00 12 00 0b 00 …
ssl_srv.c:1336: 0180: 02 01 00 00 16 00 00 00 17 00 00 00 23 00 00 …#…
ssl_srv.c:1354: client hello v3, handshake type: 1
ssl_srv.c:1363: client hello v3, handshake len.: 395
ssl_srv.c:1452: dumping ‘client hello, version’ (2 bytes)
ssl_srv.c:1452: 0000: 03 03 …
ssl_srv.c:1483: dumping ‘client hello, random bytes’ (32 bytes)
ssl_srv.c:1483: 0000: 5c 38 71 1a 96 98 f0 55 f1 35 1f cc b5 c3 4e 78 \8q…U.5…Nx
ssl_srv.c:1483: 0010: 2b 6e 71 e9 d2 89 6e 03 b2 38 8e 7f 8f eb 39 bf +nq…n…8…9.
ssl_srv.c:1501: dumping ‘client hello, session id’ (0 bytes)
ssl_srv.c:1586: dumping ‘client hello, ciphersuitelist’ (262 bytes)
ssl_srv.c:1586: 0000: c0 2c c0 30 00 9f c0 ad c0 9f c0 24 c0 28 00 6b .,.0…$.(.k
ssl_srv.c:1586: 0010: c0 0a c0 14 00 39 c0 af c0 a3 c0 87 c0 8b c0 7d …9…}
ssl_srv.c:1586: 0020: c0 73 c0 77 00 c4 00 88 c0 2b c0 2f 00 9e c0 ac .s.w…+./…
ssl_srv.c:1586: 0030: c0 9e c0 23 c0 27 00 67 c0 09 c0 13 00 33 c0 ae …#.'.g…3…
ssl_srv.c:1586: 0040: c0 a2 c0 86 c0 8a c0 7c c0 72 c0 76 00 be 00 45 …|.r.v…E
ssl_srv.c:1586: 0050: c0 08 c0 12 00 16 00 ab c0 a7 c0 38 00 b3 c0 36 …8…6
ssl_srv.c:1586: 0060: 00 91 c0 91 c0 9b c0 97 c0 ab 00 aa c0 a6 c0 37 …7
ssl_srv.c:1586: 0070: 00 b2 c0 35 00 90 c0 90 c0 96 c0 9a c0 aa c0 34 …5…4
ssl_srv.c:1586: 0080: 00 8f 00 9d c0 9d 00 3d 00 35 c0 32 c0 2a c0 0f …=.5.2.…
ssl_srv.c:1586: 0090: c0 2e c0 26 c0 05 c0 a1 c0 7b 00 c0 00 84 c0 8d …&…{…
ssl_srv.c:1586: 00a0: c0 79 c0 89 c0 75 00 9c c0 9c 00 3c 00 2f c0 31 .y…u…<./.1
ssl_srv.c:1586: 00b0: c0 29 c0 0e c0 2d c0 25 c0 04 c0 a0 c0 7a 00 ba .)…-.%…z…
ssl_srv.c:1586: 00c0: 00 41 c0 8c c0 78 c0 88 c0 74 00 0a c0 0d c0 03 .A…x…t…
ssl_srv.c:1586: 00d0: 00 ad 00 b7 00 95 c0 93 c0 99 00 ac 00 b6 00 94 …
ssl_srv.c:1586: 00e0: c0 92 c0 98 00 93 00 a9 c0 a5 00 af 00 8d c0 8f …
ssl_srv.c:1586: 00f0: c0 95 c0 a9 00 a8 c0 a4 00 ae 00 8c c0 8e c0 94 …
ssl_srv.c:1586: 0100: c0 a8 00 8b 00 ff …
ssl_srv.c:1606: dumping ‘client hello, compression’ (1 bytes)
ssl_srv.c:1606: 0000: 00 .
ssl_srv.c:1661: dumping ‘client hello extensions’ (92 bytes)
ssl_srv.c:1661: 0000: 00 00 00 10 00 0e 00 00 0b 31 39 32 2e 31 36 38 …192.168
ssl_srv.c:1661: 0010: 2e 32 2e 32 00 0d 00 16 00 14 06 03 06 01 05 03 .2.2…
ssl_srv.c:1661: 0020: 05 01 04 03 04 01 03 03 03 01 02 03 02 01 00 0a …
ssl_srv.c:1661: 0030: 00 18 00 16 00 19 00 1c 00 18 00 1b 00 17 00 16 …
ssl_srv.c:1661: 0040: 00 1a 00 15 00 14 00 13 00 12 00 0b 00 02 01 00 …
ssl_srv.c:1661: 0050: 00 16 00 00 00 17 00 00 00 23 00 00 …#…
ssl_srv.c:1681: found ServerName extension
ssl_srv.c:1705: found signature_algorithms extension
ssl_srv.c: 258: client hello v3, signature_algorithm ext: match sig 4 and hash 8
ssl_srv.c: 258: client hello v3, signature_algorithm ext: match sig 1 and hash 8
ssl_srv.c: 258: client hello v3, signature_algorithm ext: match sig 4 and hash 7
ssl_srv.c: 258: client hello v3, signature_algorithm ext: match sig 1 and hash 7
ssl_srv.c: 258: client hello v3, signature_algorithm ext: match sig 4 and hash 6
ssl_srv.c: 258: client hello v3, signature_algorithm ext: match sig 1 and hash 6
ssl_srv.c: 258: client hello v3, signature_algorithm ext: match sig 4 and hash 5
ssl_srv.c: 258: client hello v3, signature_algorithm ext: match sig 1 and hash 5
ssl_srv.c: 258: client hello v3, signature_algorithm ext: match sig 4 and hash 4
ssl_srv.c: 258: client hello v3, signature_algorithm ext: match sig 1 and hash 4
ssl_srv.c:1719: found supported elliptic curves extension
ssl_srv.c:1727: found supported point formats extension
ssl_srv.c: 362: point format selected: 0
ssl_srv.c:1769: found encrypt then mac extension
ssl_srv.c:1779: found extended master secret extension
ssl_srv.c:1789: found session ticket extension
ssl_srv.c:1877: received TLS_EMPTY_RENEGOTIATION_INFO
ssl_srv.c: 807: trying ciphersuite: TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384
ssl_srv.c: 705: ciphersuite requires certificate
ssl_srv.c: 716: candidate certificate chain, certificate #1:
ssl_srv.c: 716: cert. version : 3
ssl_srv.c: 716: serial number : 02
ssl_srv.c: 716: issuer name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 716: subject name : C=NL, O=PolarSSL, CN=localhost
ssl_srv.c: 716: issued on : 2011-02-12 14:44:06
ssl_srv.c: 716: expires on : 2021-02-12 14:44:06
ssl_srv.c: 716: signed using : RSA with SHA1
ssl_srv.c: 716: RSA key size : 2048 bits
ssl_srv.c: 716: basic constraints : CA=false
ssl_srv.c: 716: value of ‘crt->rsa.N’ (2048 bits) is:
ssl_srv.c: 716: c1 4d a3 dd e7 cd 1d d1 04 d7 49 72 b8 99 ac 0e
ssl_srv.c: 716: 78 e4 3a 3c 4a cf 3a 13 16 d0 5a e4 cd a3 00 88
ssl_srv.c: 716: a7 ee 1e 6b 96 a7 52 b4 90 ef 2d 72 7a 3e 24 9a
ssl_srv.c: 716: fc b6 34 ac 24 f5 77 e0 26 64 8c 9c b0 28 7d a1
ssl_srv.c: 716: da ea 8c e6 c9 1c 96 bc fe c1 04 52 b3 36 d4 a3
ssl_srv.c: 716: fa e1 b1 76 d8 90 c1 61 b4 66 52 36 a2 26 53 aa
ssl_srv.c: 716: ab 74 5e 07 7d 19 82 db 2a d8 1f a0 d9 0d 1c 2d
ssl_srv.c: 716: 49 66 f7 5b 25 73 46 e8 0b 8a 4f 69 0c b5 00 90
ssl_srv.c: 716: e1 da 82 10 66 7d ae 54 2b 8b 65 79 91 a1 e2 61
ssl_srv.c: 716: c3 cd 40 49 08 ee 68 0c f1 8b 86 d2 46 bf d0 b8
ssl_srv.c: 716: aa 11 03 1e 7f 56 a8 1a 1e 44 18 0f 0f 85 8b da
ssl_srv.c: 716: 8b 44 5e e2 18 c6 62 2f c7 66 8d fa 5d d8 7d f3
ssl_srv.c: 716: 27 89 29 01 c5 90 0e 3f 27 f1 30 c8 4a 0e ef d6
ssl_srv.c: 716: de c7 c7 27 6b c7 05 3d 7a c4 02 3c 9a 1d 3e 0f
ssl_srv.c: 716: e8 34 98 5b cb 73 4b 52 96 d8 11 a2 2c 80 88 69
ssl_srv.c: 716: 39 5a d3 0f b0 de 59 2f 11 c7 f7 ea 12 01 30 97
ssl_srv.c: 716: value of ‘crt->rsa.E’ (17 bits) is:
ssl_srv.c: 716: 01 00 01
ssl_srv.c: 716: candidate certificate chain, certificate #2:
ssl_srv.c: 716: cert. version : 3
ssl_srv.c: 716: serial number : 00
ssl_srv.c: 716: issuer name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 716: subject name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 716: issued on : 2011-02-12 14:44:00
ssl_srv.c: 716: expires on : 2021-02-12 14:44:00
ssl_srv.c: 716: signed using : RSA with SHA1
ssl_srv.c: 716: RSA key size : 2048 bits
ssl_srv.c: 716: basic constraints : CA=true
ssl_srv.c: 716: value of ‘crt->rsa.N’ (2048 bits) is:
ssl_srv.c: 716: c0 df 37 fc 17 bb e0 96 9d 3f 86 de 96 32 7d 44
ssl_srv.c: 716: a5 16 a0 cd 21 f1 99 d4 ec ea cb 7c 18 58 08 94
ssl_srv.c: 716: a5 ec 9b c5 8b df 1a 1e 99 38 99 87 1e 7b c0 8d
ssl_srv.c: 716: 39 df 38 5d 70 78 07 d3 9e d9 93 e8 b9 72 51 c5
ssl_srv.c: 716: ce a3 30 52 a9 f2 e7 40 70 14 cb 44 a2 72 0b c2
ssl_srv.c: 716: e5 40 f9 3e e5 a6 0e b3 f9 ec 4a 63 c0 b8 29 00
ssl_srv.c: 716: 74 9c 57 3b a8 a5 04 90 71 f1 bd 83 d9 3f d6 a5
ssl_srv.c: 716: e2 3c 2a 8f ef 27 60 c3 c6 9f cb ba ec 60 7d b7
ssl_srv.c: 716: e6 84 32 be 4f fb 58 26 22 03 5b d4 b4 d5 fb f5
ssl_srv.c: 716: e3 96 2e 70 c0 e4 2e bd fc 2e ee e2 41 55 c0 34
ssl_srv.c: 716: 2e 7d 24 72 69 cb 47 b1 14 40 83 7d 67 f4 86 f6
ssl_srv.c: 716: 31 ab f1 79 a4 b2 b5 2e 12 f9 84 17 f0 62 6f 27
ssl_srv.c: 716: 3e 13 58 b1 54 0d 21 9a 73 37 a1 30 cf 6f 92 dc
ssl_srv.c: 716: f6 e9 fc ac db 2e 28 d1 7e 02 4b 23 a0 15 f2 38
ssl_srv.c: 716: 65 64 09 ea 0c 6e 8e 1b 17 a0 71 c8 b3 9b c9 ab
ssl_srv.c: 716: e9 c3 f2 cf 87 96 8f 80 02 32 9e 99 58 6f a2 d5
ssl_srv.c: 716: value of ‘crt->rsa.E’ (17 bits) is:
ssl_srv.c: 716: 01 00 01
ssl_srv.c: 716: candidate certificate chain, certificate #3:
ssl_srv.c: 716: cert. version : 3
ssl_srv.c: 716: serial number : 00
ssl_srv.c: 716: issuer name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 716: subject name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 716: issued on : 2017-05-04 16:57:01
ssl_srv.c: 716: expires on : 2027-05-05 16:57:01
ssl_srv.c: 716: signed using : RSA with SHA-256
ssl_srv.c: 716: RSA key size : 2048 bits
ssl_srv.c: 716: basic constraints : CA=true
ssl_srv.c: 716: value of ‘crt->rsa.N’ (2048 bits) is:
ssl_srv.c: 716: c0 df 37 fc 17 bb e0 96 9d 3f 86 de 96 32 7d 44
ssl_srv.c: 716: a5 16 a0 cd 21 f1 99 d4 ec ea cb 7c 18 58 08 94
ssl_srv.c: 716: a5 ec 9b c5 8b df 1a 1e 99 38 99 87 1e 7b c0 8d
ssl_srv.c: 716: 39 df 38 5d 70 78 07 d3 9e d9 93 e8 b9 72 51 c5
ssl_srv.c: 716: ce a3 30 52 a9 f2 e7 40 70 14 cb 44 a2 72 0b c2
ssl_srv.c: 716: e5 40 f9 3e e5 a6 0e b3 f9 ec 4a 63 c0 b8 29 00
ssl_srv.c: 716: 74 9c 57 3b a8 a5 04 90 71 f1 bd 83 d9 3f d6 a5
ssl_srv.c: 716: e2 3c 2a 8f ef 27 60 c3 c6 9f cb ba ec 60 7d b7
ssl_srv.c: 716: e6 84 32 be 4f fb 58 26 22 03 5b d4 b4 d5 fb f5
ssl_srv.c: 716: e3 96 2e 70 c0 e4 2e bd fc 2e ee e2 41 55 c0 34
ssl_srv.c: 716: 2e 7d 24 72 69 cb 47 b1 14 40 83 7d 67 f4 86 f6
ssl_srv.c: 716: 31 ab f1 79 a4 b2 b5 2e 12 f9 84 17 f0 62 6f 27
ssl_srv.c: 716: 3e 13 58 b1 54 0d 21 9a 73 37 a1 30 cf 6f 92 dc
ssl_srv.c: 716: f6 e9 fc ac db 2e 28 d1 7e 02 4b 23 a0 15 f2 38
ssl_srv.c: 716: 65 64 09 ea 0c 6e 8e 1b 17 a0 71 c8 b3 9b c9 ab
ssl_srv.c: 716: e9 c3 f2 cf 87 96 8f 80 02 32 9e 99 58 6f a2 d5
ssl_srv.c: 716: value of ‘crt->rsa.E’ (17 bits) is:
ssl_srv.c: 716: 01 00 01
ssl_srv.c: 716: candidate certificate chain, certificate #4:
ssl_srv.c: 716: cert. version : 3
ssl_srv.c: 716: serial number : C1:43:E2:7E:62:43:CC:E8
ssl_srv.c: 716: issuer name : C=NL, O=PolarSSL, CN=Polarssl Test EC CA
ssl_srv.c: 716: subject name : C=NL, O=PolarSSL, CN=Polarssl Test EC CA
ssl_srv.c: 716: issued on : 2013-09-24 15:49:48
ssl_srv.c: 716: expires on : 2023-09-22 15:49:48
ssl_srv.c: 716: signed using : ECDSA with SHA256
ssl_srv.c: 716: EC key size : 384 bits
ssl_srv.c: 716: basic constraints : CA=true
ssl_srv.c: 716: value of ‘crt->eckey.Q(X)’ (384 bits) is:
ssl_srv.c: 716: c3 da 2b 34 41 37 58 2f 87 56 fe fc 89 ba 29 43
ssl_srv.c: 716: 4b 4e e0 6e c3 0e 57 53 33 39 58 d4 52 b4 91 95
ssl_srv.c: 716: 39 0b 23 df 5f 17 24 62 48 fc 1a 95 29 ce 2c 2d
ssl_srv.c: 716: value of ‘crt->eckey.Q(Y)’ (384 bits) is:
ssl_srv.c: 716: 87 c2 88 52 80 af d6 6a ab 21 dd b8 d3 1c 6e 58
ssl_srv.c: 716: b8 ca e8 b2 69 8e f3 41 ad 29 c3 b4 5f 75 a7 47
ssl_srv.c: 716: 6f d5 19 29 55 69 9a 53 3b 20 b4 66 16 60 33 1e
ssl_srv.c: 720: certificate mismatch: key type
ssl_srv.c: 896: ciphersuite mismatch: no suitable certificate
ssl_srv.c: 807: trying ciphersuite: TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384
ssl_srv.c: 705: ciphersuite requires certificate
ssl_srv.c: 716: candidate certificate chain, certificate #1:
ssl_srv.c: 716: cert. version : 3
ssl_srv.c: 716: serial number : 02
ssl_srv.c: 716: issuer name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 716: subject name : C=NL, O=PolarSSL, CN=localhost
ssl_srv.c: 716: issued on : 2011-02-12 14:44:06
ssl_srv.c: 716: expires on : 2021-02-12 14:44:06
ssl_srv.c: 716: signed using : RSA with SHA1
ssl_srv.c: 716: RSA key size : 2048 bits
ssl_srv.c: 716: basic constraints : CA=false
ssl_srv.c: 716: value of ‘crt->rsa.N’ (2048 bits) is:
ssl_srv.c: 716: c1 4d a3 dd e7 cd 1d d1 04 d7 49 72 b8 99 ac 0e
ssl_srv.c: 716: 78 e4 3a 3c 4a cf 3a 13 16 d0 5a e4 cd a3 00 88
ssl_srv.c: 716: a7 ee 1e 6b 96 a7 52 b4 90 ef 2d 72 7a 3e 24 9a
ssl_srv.c: 716: fc b6 34 ac 24 f5 77 e0 26 64 8c 9c b0 28 7d a1
ssl_srv.c: 716: da ea 8c e6 c9 1c 96 bc fe c1 04 52 b3 36 d4 a3
ssl_srv.c: 716: fa e1 b1 76 d8 90 c1 61 b4 66 52 36 a2 26 53 aa
ssl_srv.c: 716: ab 74 5e 07 7d 19 82 db 2a d8 1f a0 d9 0d 1c 2d
ssl_srv.c: 716: 49 66 f7 5b 25 73 46 e8 0b 8a 4f 69 0c b5 00 90
ssl_srv.c: 716: e1 da 82 10 66 7d ae 54 2b 8b 65 79 91 a1 e2 61
ssl_srv.c: 716: c3 cd 40 49 08 ee 68 0c f1 8b 86 d2 46 bf d0 b8
ssl_srv.c: 716: aa 11 03 1e 7f 56 a8 1a 1e 44 18 0f 0f 85 8b da
ssl_srv.c: 716: 8b 44 5e e2 18 c6 62 2f c7 66 8d fa 5d d8 7d f3
ssl_srv.c: 716: 27 89 29 01 c5 90 0e 3f 27 f1 30 c8 4a 0e ef d6
ssl_srv.c: 716: de c7 c7 27 6b c7 05 3d 7a c4 02 3c 9a 1d 3e 0f
ssl_srv.c: 716: e8 34 98 5b cb 73 4b 52 96 d8 11 a2 2c 80 88 69
ssl_srv.c: 716: 39 5a d3 0f b0 de 59 2f 11 c7 f7 ea 12 01 30 97
ssl_srv.c: 716: value of ‘crt->rsa.E’ (17 bits) is:
ssl_srv.c: 716: 01 00 01
ssl_srv.c: 716: candidate certificate chain, certificate #2:
ssl_srv.c: 716: cert. version : 3
ssl_srv.c: 716: serial number : 00
ssl_srv.c: 716: issuer name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 716: subject name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 716: issued on : 2011-02-12 14:44:00
ssl_srv.c: 716: expires on : 2021-02-12 14:44:00
ssl_srv.c: 716: signed using : RSA with SHA1
ssl_srv.c: 716: RSA key size : 2048 bits
ssl_srv.c: 716: basic constraints : CA=true
ssl_srv.c: 716: value of ‘crt->rsa.N’ (2048 bits) is:
ssl_srv.c: 716: c0 df 37 fc 17 bb e0 96 9d 3f 86 de 96 32 7d 44
ssl_srv.c: 716: a5 16 a0 cd 21 f1 99 d4 ec ea cb 7c 18 58 08 94
ssl_srv.c: 716: a5 ec 9b c5 8b df 1a 1e 99 38 99 87 1e 7b c0 8d
ssl_srv.c: 716: 39 df 38 5d 70 78 07 d3 9e d9 93 e8 b9 72 51 c5
ssl_srv.c: 716: ce a3 30 52 a9 f2 e7 40 70 14 cb 44 a2 72 0b c2
ssl_srv.c: 716: e5 40 f9 3e e5 a6 0e b3 f9 ec 4a 63 c0 b8 29 00
ssl_srv.c: 716: 74 9c 57 3b a8 a5 04 90 71 f1 bd 83 d9 3f d6 a5
ssl_srv.c: 716: e2 3c 2a 8f ef 27 60 c3 c6 9f cb ba ec 60 7d b7
ssl_srv.c: 716: e6 84 32 be 4f fb 58 26 22 03 5b d4 b4 d5 fb f5
ssl_srv.c: 716: e3 96 2e 70 c0 e4 2e bd fc 2e ee e2 41 55 c0 34
ssl_srv.c: 716: 2e 7d 24 72 69 cb 47 b1 14 40 83 7d 67 f4 86 f6
ssl_srv.c: 716: 31 ab f1 79 a4 b2 b5 2e 12 f9 84 17 f0 62 6f 27
ssl_srv.c: 716: 3e 13 58 b1 54 0d 21 9a 73 37 a1 30 cf 6f 92 dc
ssl_srv.c: 716: f6 e9 fc ac db 2e 28 d1 7e 02 4b 23 a0 15 f2 38
ssl_srv.c: 716: 65 64 09 ea 0c 6e 8e 1b 17 a0 71 c8 b3 9b c9 ab
ssl_srv.c: 716: e9 c3 f2 cf 87 96 8f 80 02 32 9e 99 58 6f a2 d5
ssl_srv.c: 716: value of ‘crt->rsa.E’ (17 bits) is:
ssl_srv.c: 716: 01 00 01
ssl_srv.c: 716: candidate certificate chain, certificate #3:
ssl_srv.c: 716: cert. version : 3
ssl_srv.c: 716: serial number : 00
ssl_srv.c: 716: issuer name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 716: subject name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 716: issued on : 2017-05-04 16:57:01
ssl_srv.c: 716: expires on : 2027-05-05 16:57:01
ssl_srv.c: 716: signed using : RSA with SHA-256
ssl_srv.c: 716: RSA key size : 2048 bits
ssl_srv.c: 716: basic constraints : CA=true
ssl_srv.c: 716: value of ‘crt->rsa.N’ (2048 bits) is:
ssl_srv.c: 716: c0 df 37 fc 17 bb e0 96 9d 3f 86 de 96 32 7d 44
ssl_srv.c: 716: a5 16 a0 cd 21 f1 99 d4 ec ea cb 7c 18 58 08 94
ssl_srv.c: 716: a5 ec 9b c5 8b df 1a 1e 99 38 99 87 1e 7b c0 8d
ssl_srv.c: 716: 39 df 38 5d 70 78 07 d3 9e d9 93 e8 b9 72 51 c5
ssl_srv.c: 716: ce a3 30 52 a9 f2 e7 40 70 14 cb 44 a2 72 0b c2
ssl_srv.c: 716: e5 40 f9 3e e5 a6 0e b3 f9 ec 4a 63 c0 b8 29 00
ssl_srv.c: 716: 74 9c 57 3b a8 a5 04 90 71 f1 bd 83 d9 3f d6 a5
ssl_srv.c: 716: e2 3c 2a 8f ef 27 60 c3 c6 9f cb ba ec 60 7d b7
ssl_srv.c: 716: e6 84 32 be 4f fb 58 26 22 03 5b d4 b4 d5 fb f5
ssl_srv.c: 716: e3 96 2e 70 c0 e4 2e bd fc 2e ee e2 41 55 c0 34
ssl_srv.c: 716: 2e 7d 24 72 69 cb 47 b1 14 40 83 7d 67 f4 86 f6
ssl_srv.c: 716: 31 ab f1 79 a4 b2 b5 2e 12 f9 84 17 f0 62 6f 27
ssl_srv.c: 716: 3e 13 58 b1 54 0d 21 9a 73 37 a1 30 cf 6f 92 dc
ssl_srv.c: 716: f6 e9 fc ac db 2e 28 d1 7e 02 4b 23 a0 15 f2 38
ssl_srv.c: 716: 65 64 09 ea 0c 6e 8e 1b 17 a0 71 c8 b3 9b c9 ab
ssl_srv.c: 716: e9 c3 f2 cf 87 96 8f 80 02 32 9e 99 58 6f a2 d5
ssl_srv.c: 716: value of ‘crt->rsa.E’ (17 bits) is:
ssl_srv.c: 716: 01 00 01
ssl_srv.c: 716: candidate certificate chain, certificate #4:
ssl_srv.c: 716: cert. version : 3
ssl_srv.c: 716: serial number : C1:43:E2:7E:62:43:CC:E8
ssl_srv.c: 716: issuer name : C=NL, O=PolarSSL, CN=Polarssl Test EC CA
ssl_srv.c: 716: subject name : C=NL, O=PolarSSL, CN=Polarssl Test EC CA
ssl_srv.c: 716: issued on : 2013-09-24 15:49:48
ssl_srv.c: 716: expires on : 2023-09-22 15:49:48
ssl_srv.c: 716: signed using : ECDSA with SHA256
ssl_srv.c: 716: EC key size : 384 bits
ssl_srv.c: 716: basic constraints : CA=true
ssl_srv.c: 716: value of ‘crt->eckey.Q(X)’ (384 bits) is:
ssl_srv.c: 716: c3 da 2b 34 41 37 58 2f 87 56 fe fc 89 ba 29 43
ssl_srv.c: 716: 4b 4e e0 6e c3 0e 57 53 33 39 58 d4 52 b4 91 95
ssl_srv.c: 716: 39 0b 23 df 5f 17 24 62 48 fc 1a 95 29 ce 2c 2d
ssl_srv.c: 716: value of ‘crt->eckey.Q(Y)’ (384 bits) is:
ssl_srv.c: 716: 87 c2 88 52 80 af d6 6a ab 21 dd b8 d3 1c 6e 58
ssl_srv.c: 716: b8 ca e8 b2 69 8e f3 41 ad 29 c3 b4 5f 75 a7 47
ssl_srv.c: 716: 6f d5 19 29 55 69 9a 53 3b 20 b4 66 16 60 33 1e
ssl_srv.c: 778: selected certificate chain, certificate #1:
ssl_srv.c: 778: cert. version : 3
ssl_srv.c: 778: serial number : 02
ssl_srv.c: 778: issuer name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 778: subject name : C=NL, O=PolarSSL, CN=localhost
ssl_srv.c: 778: issued on : 2011-02-12 14:44:06
ssl_srv.c: 778: expires on : 2021-02-12 14:44:06
ssl_srv.c: 778: signed using : RSA with SHA1
ssl_srv.c: 778: RSA key size : 2048 bits
ssl_srv.c: 778: basic constraints : CA=false
ssl_srv.c: 778: value of ‘crt->rsa.N’ (2048 bits) is:
ssl_srv.c: 778: c1 4d a3 dd e7 cd 1d d1 04 d7 49 72 b8 99 ac 0e
ssl_srv.c: 778: 78 e4 3a 3c 4a cf 3a 13 16 d0 5a e4 cd a3 00 88
ssl_srv.c: 778: a7 ee 1e 6b 96 a7 52 b4 90 ef 2d 72 7a 3e 24 9a
ssl_srv.c: 778: fc b6 34 ac 24 f5 77 e0 26 64 8c 9c b0 28 7d a1
ssl_srv.c: 778: da ea 8c e6 c9 1c 96 bc fe c1 04 52 b3 36 d4 a3
ssl_srv.c: 778: fa e1 b1 76 d8 90 c1 61 b4 66 52 36 a2 26 53 aa
ssl_srv.c: 778: ab 74 5e 07 7d 19 82 db 2a d8 1f a0 d9 0d 1c 2d
ssl_srv.c: 778: 49 66 f7 5b 25 73 46 e8 0b 8a 4f 69 0c b5 00 90
ssl_srv.c: 778: e1 da 82 10 66 7d ae 54 2b 8b 65 79 91 a1 e2 61
ssl_srv.c: 778: c3 cd 40 49 08 ee 68 0c f1 8b 86 d2 46 bf d0 b8
ssl_srv.c: 778: aa 11 03 1e 7f 56 a8 1a 1e 44 18 0f 0f 85 8b da
ssl_srv.c: 778: 8b 44 5e e2 18 c6 62 2f c7 66 8d fa 5d d8 7d f3
ssl_srv.c: 778: 27 89 29 01 c5 90 0e 3f 27 f1 30 c8 4a 0e ef d6
ssl_srv.c: 778: de c7 c7 27 6b c7 05 3d 7a c4 02 3c 9a 1d 3e 0f
ssl_srv.c: 778: e8 34 98 5b cb 73 4b 52 96 d8 11 a2 2c 80 88 69
ssl_srv.c: 778: 39 5a d3 0f b0 de 59 2f 11 c7 f7 ea 12 01 30 97
ssl_srv.c: 778: value of ‘crt->rsa.E’ (17 bits) is:
ssl_srv.c: 778: 01 00 01
ssl_srv.c: 778: selected certificate chain, certificate #2:
ssl_srv.c: 778: cert. version : 3
ssl_srv.c: 778: serial number : 00
ssl_srv.c: 778: issuer name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 778: subject name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 778: issued on : 2011-02-12 14:44:00
ssl_srv.c: 778: expires on : 2021-02-12 14:44:00
ssl_srv.c: 778: signed using : RSA with SHA1
ssl_srv.c: 778: RSA key size : 2048 bits
ssl_srv.c: 778: basic constraints : CA=true
ssl_srv.c: 778: value of ‘crt->rsa.N’ (2048 bits) is:
ssl_srv.c: 778: c0 df 37 fc 17 bb e0 96 9d 3f 86 de 96 32 7d 44
ssl_srv.c: 778: a5 16 a0 cd 21 f1 99 d4 ec ea cb 7c 18 58 08 94
ssl_srv.c: 778: a5 ec 9b c5 8b df 1a 1e 99 38 99 87 1e 7b c0 8d
ssl_srv.c: 778: 39 df 38 5d 70 78 07 d3 9e d9 93 e8 b9 72 51 c5
ssl_srv.c: 778: ce a3 30 52 a9 f2 e7 40 70 14 cb 44 a2 72 0b c2
ssl_srv.c: 778: e5 40 f9 3e e5 a6 0e b3 f9 ec 4a 63 c0 b8 29 00
ssl_srv.c: 778: 74 9c 57 3b a8 a5 04 90 71 f1 bd 83 d9 3f d6 a5
ssl_srv.c: 778: e2 3c 2a 8f ef 27 60 c3 c6 9f cb ba ec 60 7d b7
ssl_srv.c: 778: e6 84 32 be 4f fb 58 26 22 03 5b d4 b4 d5 fb f5
ssl_srv.c: 778: e3 96 2e 70 c0 e4 2e bd fc 2e ee e2 41 55 c0 34
ssl_srv.c: 778: 2e 7d 24 72 69 cb 47 b1 14 40 83 7d 67 f4 86 f6
ssl_srv.c: 778: 31 ab f1 79 a4 b2 b5 2e 12 f9 84 17 f0 62 6f 27
ssl_srv.c: 778: 3e 13 58 b1 54 0d 21 9a 73 37 a1 30 cf 6f 92 dc
ssl_srv.c: 778: f6 e9 fc ac db 2e 28 d1 7e 02 4b 23 a0 15 f2 38
ssl_srv.c: 778: 65 64 09 ea 0c 6e 8e 1b 17 a0 71 c8 b3 9b c9 ab
ssl_srv.c: 778: e9 c3 f2 cf 87 96 8f 80 02 32 9e 99 58 6f a2 d5
ssl_srv.c: 778: value of ‘crt->rsa.E’ (17 bits) is:
ssl_srv.c: 778: 01 00 01
ssl_srv.c: 778: selected certificate chain, certificate #3:
ssl_srv.c: 778: cert. version : 3
ssl_srv.c: 778: serial number : 00
ssl_srv.c: 778: issuer name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 778: subject name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_srv.c: 778: issued on : 2017-05-04 16:57:01
ssl_srv.c: 778: expires on : 2027-05-05 16:57:01
ssl_srv.c: 778: signed using : RSA with SHA-256
ssl_srv.c: 778: RSA key size : 2048 bits
ssl_srv.c: 778: basic constraints : CA=true
ssl_srv.c: 778: value of ‘crt->rsa.N’ (2048 bits) is:
ssl_srv.c: 778: c0 df 37 fc 17 bb e0 96 9d 3f 86 de 96 32 7d 44
ssl_srv.c: 778: a5 16 a0 cd 21 f1 99 d4 ec ea cb 7c 18 58 08 94
ssl_srv.c: 778: a5 ec 9b c5 8b df 1a 1e 99 38 99 87 1e 7b c0 8d
ssl_srv.c: 778: 39 df 38 5d 70 78 07 d3 9e d9 93 e8 b9 72 51 c5
ssl_srv.c: 778: ce a3 30 52 a9 f2 e7 40 70 14 cb 44 a2 72 0b c2
ssl_srv.c: 778: e5 40 f9 3e e5 a6 0e b3 f9 ec 4a 63 c0 b8 29 00
ssl_srv.c: 778: 74 9c 57 3b a8 a5 04 90 71 f1 bd 83 d9 3f d6 a5
ssl_srv.c: 778: e2 3c 2a 8f ef 27 60 c3 c6 9f cb ba ec 60 7d b7
ssl_srv.c: 778: e6 84 32 be 4f fb 58 26 22 03 5b d4 b4 d5 fb f5
ssl_srv.c: 778: e3 96 2e 70 c0 e4 2e bd fc 2e ee e2 41 55 c0 34
ssl_srv.c: 778: 2e 7d 24 72 69 cb 47 b1 14 40 83 7d 67 f4 86 f6
ssl_srv.c: 778: 31 ab f1 79 a4 b2 b5 2e 12 f9 84 17 f0 62 6f 27

mathieubordere · January 14, 2019, 3:20pm

Server log continued

ssl_srv.c: 778: 3e 13 58 b1 54 0d 21 9a 73 37 a1 30 cf 6f 92 dc
ssl_srv.c: 778: f6 e9 fc ac db 2e 28 d1 7e 02 4b 23 a0 15 f2 38
ssl_srv.c: 778: 65 64 09 ea 0c 6e 8e 1b 17 a0 71 c8 b3 9b c9 ab
ssl_srv.c: 778: e9 c3 f2 cf 87 96 8f 80 02 32 9e 99 58 6f a2 d5
ssl_srv.c: 778: value of ‘crt->rsa.E’ (17 bits) is:
ssl_srv.c: 778: 01 00 01
ssl_srv.c: 778: selected certificate chain, certificate #4:
ssl_srv.c: 778: cert. version : 3
ssl_srv.c: 778: serial number : C1:43:E2:7E:62:43:CC:E8
ssl_srv.c: 778: issuer name : C=NL, O=PolarSSL, CN=Polarssl Test EC CA
ssl_srv.c: 778: subject name : C=NL, O=PolarSSL, CN=Polarssl Test EC CA
ssl_srv.c: 778: issued on : 2013-09-24 15:49:48
ssl_srv.c: 778: expires on : 2023-09-22 15:49:48
ssl_srv.c: 778: signed using : ECDSA with SHA256
ssl_srv.c: 778: EC key size : 384 bits
ssl_srv.c: 778: basic constraints : CA=true
ssl_srv.c: 778: value of ‘crt->eckey.Q(X)’ (384 bits) is:
ssl_srv.c: 778: c3 da 2b 34 41 37 58 2f 87 56 fe fc 89 ba 29 43
ssl_srv.c: 778: 4b 4e e0 6e c3 0e 57 53 33 39 58 d4 52 b4 91 95
ssl_srv.c: 778: 39 0b 23 df 5f 17 24 62 48 fc 1a 95 29 ce 2c 2d
ssl_srv.c: 778: value of ‘crt->eckey.Q(Y)’ (384 bits) is:
ssl_srv.c: 778: 87 c2 88 52 80 af d6 6a ab 21 dd b8 d3 1c 6e 58
ssl_srv.c: 778: b8 ca e8 b2 69 8e f3 41 ad 29 c3 b4 5f 75 a7 47
ssl_srv.c: 778: 6f d5 19 29 55 69 9a 53 3b 20 b4 66 16 60 33 1e
ssl_srv.c:1980: selected ciphersuite: TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384
ssl_srv.c:2004: client hello v3, signature_algorithm ext: 6
ssl_srv.c:2014: <= parse client hello
ssl_srv.c:3976: server state: 2
ssl_tls.c:2454: => flush output
ssl_tls.c:2466: <= flush output
ssl_srv.c:2389: => write server hello
ssl_srv.c:2423: server hello, chosen version: [3:3]
ssl_srv.c:2447: dumping ‘server hello, random bytes’ (32 bytes)
ssl_srv.c:2447: 0000: 00 20 ab bc 00 c2 96 26 8a f5 5b bb bd 7f 53 03 . …&…[…S.
ssl_srv.c:2447: 0010: 62 69 68 f7 a0 c4 26 10 c4 13 d8 2a c2 03 47 92 bih…&……G.
ssl_srv.c:2520: server hello, session id len.: 32
ssl_srv.c:2521: dumping ‘server hello, session id’ (32 bytes)
ssl_srv.c:2521: 0000: 00 26 8f 98 4b 49 5b 92 85 52 79 c4 a1 3e 21 bf .&…KI[…Ry…>!.
ssl_srv.c:2521: 0010: 5b 96 57 05 06 3c 42 48 4f 75 85 ee c4 f0 e0 cd [.W…<BHOu…
ssl_srv.c:2523: no session has been resumed
ssl_srv.c:2530: server hello, chosen ciphersuite: TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384
ssl_srv.c:2532: server hello, compress alg.: 0x00
ssl_srv.c:2151: server hello, secure renegotiation extension
ssl_srv.c:2102: server hello, adding extended master secret extension
ssl_srv.c:2222: server hello, supported_point_formats extension
ssl_srv.c:2587: server hello, total extension length: 15
ssl_tls.c:2739: => write record
ssl_tls.c:2885: output record: msgtype = 22, version = [3:3], msglen = 91
ssl_tls.c:2888: dumping ‘output record sent to network’ (96 bytes)
ssl_tls.c:2888: 0000: 16 03 03 00 5b 02 00 00 57 03 03 00 20 ab bc 00 …[…W… …
ssl_tls.c:2888: 0010: c2 96 26 8a f5 5b bb bd 7f 53 03 62 69 68 f7 a0 …&…[…S.bih…
ssl_tls.c:2888: 0020: c4 26 10 c4 13 d8 2a c2 03 47 92 20 00 26 8f 98 .&……G. .&…
ssl_tls.c:2888: 0030: 4b 49 5b 92 85 52 79 c4 a1 3e 21 bf 5b 96 57 05 KI[…Ry…>!.[.W.
ssl_tls.c:2888: 0040: 06 3c 42 48 4f 75 85 ee c4 f0 e0 cd c0 30 00 00 .<BHOu…0…
ssl_tls.c:2888: 0050: 0f ff 01 00 01 00 00 17 00 00 00 0b 00 02 01 00 …
ssl_tls.c:2454: => flush output
ssl_tls.c:2473: message length: 96, out_left: 96
ssl_tls.c:2479: ssl->f_send() returned 96 (-0xffffffa0)
ssl_tls.c:2498: <= flush output
ssl_tls.c:2897: <= write record
ssl_srv.c:2606: <= write server hello
ssl_srv.c:3976: server state: 3
ssl_tls.c:2454: => flush output
ssl_tls.c:2466: <= flush output
ssl_tls.c:4257: => write certificate
ssl_tls.c:4309: own certificate #1:
ssl_tls.c:4309: cert. version : 3
ssl_tls.c:4309: serial number : 02
ssl_tls.c:4309: issuer name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_tls.c:4309: subject name : C=NL, O=PolarSSL, CN=localhost
ssl_tls.c:4309: issued on : 2011-02-12 14:44:06
ssl_tls.c:4309: expires on : 2021-02-12 14:44:06
ssl_tls.c:4309: signed using : RSA with SHA1
ssl_tls.c:4309: RSA key size : 2048 bits
ssl_tls.c:4309: basic constraints : CA=false
ssl_tls.c:4309: value of ‘crt->rsa.N’ (2048 bits) is:
ssl_tls.c:4309: c1 4d a3 dd e7 cd 1d d1 04 d7 49 72 b8 99 ac 0e
ssl_tls.c:4309: 78 e4 3a 3c 4a cf 3a 13 16 d0 5a e4 cd a3 00 88
ssl_tls.c:4309: a7 ee 1e 6b 96 a7 52 b4 90 ef 2d 72 7a 3e 24 9a
ssl_tls.c:4309: fc b6 34 ac 24 f5 77 e0 26 64 8c 9c b0 28 7d a1
ssl_tls.c:4309: da ea 8c e6 c9 1c 96 bc fe c1 04 52 b3 36 d4 a3
ssl_tls.c:4309: fa e1 b1 76 d8 90 c1 61 b4 66 52 36 a2 26 53 aa
ssl_tls.c:4309: ab 74 5e 07 7d 19 82 db 2a d8 1f a0 d9 0d 1c 2d
ssl_tls.c:4309: 49 66 f7 5b 25 73 46 e8 0b 8a 4f 69 0c b5 00 90
ssl_tls.c:4309: e1 da 82 10 66 7d ae 54 2b 8b 65 79 91 a1 e2 61
ssl_tls.c:4309: c3 cd 40 49 08 ee 68 0c f1 8b 86 d2 46 bf d0 b8
ssl_tls.c:4309: aa 11 03 1e 7f 56 a8 1a 1e 44 18 0f 0f 85 8b da
ssl_tls.c:4309: 8b 44 5e e2 18 c6 62 2f c7 66 8d fa 5d d8 7d f3
ssl_tls.c:4309: 27 89 29 01 c5 90 0e 3f 27 f1 30 c8 4a 0e ef d6
ssl_tls.c:4309: de c7 c7 27 6b c7 05 3d 7a c4 02 3c 9a 1d 3e 0f
ssl_tls.c:4309: e8 34 98 5b cb 73 4b 52 96 d8 11 a2 2c 80 88 69
ssl_tls.c:4309: 39 5a d3 0f b0 de 59 2f 11 c7 f7 ea 12 01 30 97
ssl_tls.c:4309: value of ‘crt->rsa.E’ (17 bits) is:
ssl_tls.c:4309: 01 00 01
ssl_tls.c:4309: own certificate #2:
ssl_tls.c:4309: cert. version : 3
ssl_tls.c:4309: serial number : 00
ssl_tls.c:4309: issuer name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_tls.c:4309: subject name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_tls.c:4309: issued on : 2011-02-12 14:44:00
ssl_tls.c:4309: expires on : 2021-02-12 14:44:00
ssl_tls.c:4309: signed using : RSA with SHA1
ssl_tls.c:4309: RSA key size : 2048 bits
ssl_tls.c:4309: basic constraints : CA=true
ssl_tls.c:4309: value of ‘crt->rsa.N’ (2048 bits) is:
ssl_tls.c:4309: c0 df 37 fc 17 bb e0 96 9d 3f 86 de 96 32 7d 44
ssl_tls.c:4309: a5 16 a0 cd 21 f1 99 d4 ec ea cb 7c 18 58 08 94
ssl_tls.c:4309: a5 ec 9b c5 8b df 1a 1e 99 38 99 87 1e 7b c0 8d
ssl_tls.c:4309: 39 df 38 5d 70 78 07 d3 9e d9 93 e8 b9 72 51 c5
ssl_tls.c:4309: ce a3 30 52 a9 f2 e7 40 70 14 cb 44 a2 72 0b c2
ssl_tls.c:4309: e5 40 f9 3e e5 a6 0e b3 f9 ec 4a 63 c0 b8 29 00
ssl_tls.c:4309: 74 9c 57 3b a8 a5 04 90 71 f1 bd 83 d9 3f d6 a5
ssl_tls.c:4309: e2 3c 2a 8f ef 27 60 c3 c6 9f cb ba ec 60 7d b7
ssl_tls.c:4309: e6 84 32 be 4f fb 58 26 22 03 5b d4 b4 d5 fb f5
ssl_tls.c:4309: e3 96 2e 70 c0 e4 2e bd fc 2e ee e2 41 55 c0 34
ssl_tls.c:4309: 2e 7d 24 72 69 cb 47 b1 14 40 83 7d 67 f4 86 f6
ssl_tls.c:4309: 31 ab f1 79 a4 b2 b5 2e 12 f9 84 17 f0 62 6f 27
ssl_tls.c:4309: 3e 13 58 b1 54 0d 21 9a 73 37 a1 30 cf 6f 92 dc
ssl_tls.c:4309: f6 e9 fc ac db 2e 28 d1 7e 02 4b 23 a0 15 f2 38
ssl_tls.c:4309: 65 64 09 ea 0c 6e 8e 1b 17 a0 71 c8 b3 9b c9 ab
ssl_tls.c:4309: e9 c3 f2 cf 87 96 8f 80 02 32 9e 99 58 6f a2 d5
ssl_tls.c:4309: value of ‘crt->rsa.E’ (17 bits) is:
ssl_tls.c:4309: 01 00 01
ssl_tls.c:4309: own certificate #3:
ssl_tls.c:4309: cert. version : 3
ssl_tls.c:4309: serial number : 00
ssl_tls.c:4309: issuer name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_tls.c:4309: subject name : C=NL, O=PolarSSL, CN=PolarSSL Test CA
ssl_tls.c:4309: issued on : 2017-05-04 16:57:01
ssl_tls.c:4309: expires on : 2027-05-05 16:57:01
ssl_tls.c:4309: signed using : RSA with SHA-256
ssl_tls.c:4309: RSA key size : 2048 bits
ssl_tls.c:4309: basic constraints : CA=true
ssl_tls.c:4309: value of ‘crt->rsa.N’ (2048 bits) is:
ssl_tls.c:4309: c0 df 37 fc 17 bb e0 96 9d 3f 86 de 96 32 7d 44
ssl_tls.c:4309: a5 16 a0 cd 21 f1 99 d4 ec ea cb 7c 18 58 08 94
ssl_tls.c:4309: a5 ec 9b c5 8b df 1a 1e 99 38 99 87 1e 7b c0 8d
ssl_tls.c:4309: 39 df 38 5d 70 78 07 d3 9e d9 93 e8 b9 72 51 c5
ssl_tls.c:4309: ce a3 30 52 a9 f2 e7 40 70 14 cb 44 a2 72 0b c2
ssl_tls.c:4309: e5 40 f9 3e e5 a6 0e b3 f9 ec 4a 63 c0 b8 29 00
ssl_tls.c:4309: 74 9c 57 3b a8 a5 04 90 71 f1 bd 83 d9 3f d6 a5
ssl_tls.c:4309: e2 3c 2a 8f ef 27 60 c3 c6 9f cb ba ec 60 7d b7
ssl_tls.c:4309: e6 84 32 be 4f fb 58 26 22 03 5b d4 b4 d5 fb f5
ssl_tls.c:4309: e3 96 2e 70 c0 e4 2e bd fc 2e ee e2 41 55 c0 34
ssl_tls.c:4309: 2e 7d 24 72 69 cb 47 b1 14 40 83 7d 67 f4 86 f6
ssl_tls.c:4309: 31 ab f1 79 a4 b2 b5 2e 12 f9 84 17 f0 62 6f 27
ssl_tls.c:4309: 3e 13 58 b1 54 0d 21 9a 73 37 a1 30 cf 6f 92 dc
ssl_tls.c:4309: f6 e9 fc ac db 2e 28 d1 7e 02 4b 23 a0 15 f2 38
ssl_tls.c:4309: 65 64 09 ea 0c 6e 8e 1b 17 a0 71 c8 b3 9b c9 ab
ssl_tls.c:4309: e9 c3 f2 cf 87 96 8f 80 02 32 9e 99 58 6f a2 d5
ssl_tls.c:4309: value of ‘crt->rsa.E’ (17 bits) is:
ssl_tls.c:4309: 01 00 01
ssl_tls.c:4309: own certificate #4:
ssl_tls.c:4309: cert. version : 3
ssl_tls.c:4309: serial number : C1:43:E2:7E:62:43:CC:E8
ssl_tls.c:4309: issuer name : C=NL, O=PolarSSL, CN=Polarssl Test EC CA
ssl_tls.c:4309: subject name : C=NL, O=PolarSSL, CN=Polarssl Test EC CA
ssl_tls.c:4309: issued on : 2013-09-24 15:49:48
ssl_tls.c:4309: expires on : 2023-09-22 15:49:48
ssl_tls.c:4309: signed using : ECDSA with SHA256
ssl_tls.c:4309: EC key size : 384 bits
ssl_tls.c:4309: basic constraints : CA=true
ssl_tls.c:4309: value of ‘crt->eckey.Q(X)’ (384 bits) is:
ssl_tls.c:4309: c3 da 2b 34 41 37 58 2f 87 56 fe fc 89 ba 29 43
ssl_tls.c:4309: 4b 4e e0 6e c3 0e 57 53 33 39 58 d4 52 b4 91 95
ssl_tls.c:4309: 39 0b 23 df 5f 17 24 62 48 fc 1a 95 29 ce 2c 2d
ssl_tls.c:4309: value of ‘crt->eckey.Q(Y)’ (384 bits) is:
ssl_tls.c:4309: 87 c2 88 52 80 af d6 6a ab 21 dd b8 d3 1c 6e 58
ssl_tls.c:4309: b8 ca e8 b2 69 8e f3 41 ad 29 c3 b4 5f 75 a7 47
ssl_tls.c:4309: 6f d5 19 29 55 69 9a 53 3b 20 b4 66 16 60 33 1e
ssl_tls.c:2739: => write record
ssl_tls.c:2885: output record: msgtype = 22, version = [3:3], msglen = 3258
ssl_tls.c:2888: dumping ‘output record sent to network’ (3263 bytes)
ssl_tls.c:2888: 0000: 16 03 03 0c ba 0b 00 0c b6 00 0c b3 00 03 3b 30 …;0
ssl_tls.c:2888: 0010: 82 03 37 30 82 02 1f a0 03 02 01 02 02 01 02 30 …70…0
ssl_tls.c:2888: 0020: 0d 06 09 2a 86 48 86 f7 0d 01 01 05 05 00 30 3b ….H…0;
ssl_tls.c:2888: 0030: 31 0b 30 09 06 03 55 04 06 13 02 4e 4c 31 11 30 1.0…U…NL1.0
ssl_tls.c:2888: 0040: 0f 06 03 55 04 0a 13 08 50 6f 6c 61 72 53 53 4c …U…PolarSSL
ssl_tls.c:2888: 0050: 31 19 30 17 06 03 55 04 03 13 10 50 6f 6c 61 72 1.0…U…Polar
ssl_tls.c:2888: 0060: 53 53 4c 20 54 65 73 74 20 43 41 30 1e 17 0d 31 SSL Test CA0…1
ssl_tls.c:2888: 0070: 31 30 32 31 32 31 34 34 34 30 36 5a 17 0d 32 31 10212144406Z…21
ssl_tls.c:2888: 0080: 30 32 31 32 31 34 34 34 30 36 5a 30 34 31 0b 30 0212144406Z041.0
ssl_tls.c:2888: 0090: 09 06 03 55 04 06 13 02 4e 4c 31 11 30 0f 06 03 …U…NL1.0…
ssl_tls.c:2888: 00a0: 55 04 0a 13 08 50 6f 6c 61 72 53 53 4c 31 12 30 U…PolarSSL1.0
ssl_tls.c:2888: 00b0: 10 06 03 55 04 03 13 09 6c 6f 63 61 6c 68 6f 73 …U…localhos
ssl_tls.c:2888: 00c0: 74 30 82 01 22 30 0d 06 09 2a 86 48 86 f7 0d 01 t0…"0….H…
ssl_tls.c:2888: 00d0: 01 01 05 00 03 82 01 0f 00 30 82 01 0a 02 82 01 …0…
ssl_tls.c:2888: 00e0: 01 00 c1 4d a3 dd e7 cd 1d d1 04 d7 49 72 b8 99 …M…Ir…
ssl_tls.c:2888: 00f0: ac 0e 78 e4 3a 3c 4a cf 3a 13 16 d0 5a e4 cd a3 …x.:<J.:…Z…
ssl_tls.c:2888: 0100: 00 88 a7 ee 1e 6b 96 a7 52 b4 90 ef 2d 72 7a 3e …k…R…-rz>
ssl_tls.c:2888: 0110: 24 9a fc b6 34 ac 24 f5 77 e0 26 64 8c 9c b0 28 $…4.$.w.&d…(
ssl_tls.c:2888: 0120: 7d a1 da ea 8c e6 c9 1c 96 bc fe c1 04 52 b3 36 }…R.6
ssl_tls.c:2888: 0130: d4 a3 fa e1 b1 76 d8 90 c1 61 b4 66 52 36 a2 26 …v…a.fR6.&
ssl_tls.c:2888: 0140: 53 aa ab 74 5e 07 7d 19 82 db 2a d8 1f a0 d9 0d S…t^.}……
ssl_tls.c:2888: 0150: 1c 2d 49 66 f7 5b 25 73 46 e8 0b 8a 4f 69 0c b5 .-If.[%sF…Oi…
ssl_tls.c:2888: 0160: 00 90 e1 da 82 10 66 7d ae 54 2b 8b 65 79 91 a1 …f}.T+.ey…
ssl_tls.c:2888: 0170: e2 61 c3 cd 40 49 08 ee 68 0c f1 8b 86 d2 46 bf .a…@I…h…F.
ssl_tls.c:2888: 0180: d0 b8 aa 11 03 1e 7f 56 a8 1a 1e 44 18 0f 0f 85 …V…D…
ssl_tls.c:2888: 0190: 8b da 8b 44 5e e2 18 c6 62 2f c7 66 8d fa 5d d8 …D^…b/.f…].
ssl_tls.c:2888: 01a0: 7d f3 27 89 29 01 c5 90 0e 3f 27 f1 30 c8 4a 0e }.‘.)…?’.0.J.
ssl_tls.c:2888: 01b0: ef d6 de c7 c7 27 6b c7 05 3d 7a c4 02 3c 9a 1d …'k…=z…<…
ssl_tls.c:2888: 01c0: 3e 0f e8 34 98 5b cb 73 4b 52 96 d8 11 a2 2c 80 >…4.[.sKR…,.
ssl_tls.c:2888: 01d0: 88 69 39 5a d3 0f b0 de 59 2f 11 c7 f7 ea 12 01 .i9Z…Y/…
ssl_tls.c:2888: 01e0: 30 97 02 03 01 00 01 a3 4d 30 4b 30 09 06 03 55 0…M0K0…U
ssl_tls.c:2888: 01f0: 1d 13 04 02 30 00 30 1d 06 03 55 1d 0e 04 16 04 …0.0…U…
ssl_tls.c:2888: 0200: 14 a5 05 e8 64 b8 dc df 60 0f 50 12 4d 60 a8 64 …d….P.M.d
ssl_tls.c:2888: 0210: af 4d 8b 43 93 30 1f 06 03 55 1d 23 04 18 30 16 .M.C.0…U.#…0.
ssl_tls.c:2888: 0220: 80 14 b4 5a e4 a5 b3 de d2 52 f6 b9 d5 a6 95 0f …Z…R…
ssl_tls.c:2888: 0230: eb 3e bc c7 fd ff 30 0d 06 09 2a 86 48 86 f7 0d .>…0….H…
ssl_tls.c:2888: 0240: 01 01 05 05 00 03 82 01 01 00 9c 67 5c 29 58 a0 …g)X.
ssl_tls.c:2888: 0250: 79 1b a7 bd 1c a8 1a ec 19 72 f2 6c 0e f8 73 36 y…r.l…s6
ssl_tls.c:2888: 0260: ce e5 17 4b 12 01 6c ee b1 d5 4b da fe 73 6f 77 …K…l…K…sow
ssl_tls.c:2888: 0270: 96 e4 bf 29 d9 62 2d 27 19 a8 0c d8 57 29 70 51 …).b-‘…W)pQ
ssl_tls.c:2888: 0280: f4 56 bc a3 28 5a 11 d8 2a 9d dd 10 84 b8 c5 35 .V…(Z……5
ssl_tls.c:2888: 0290: e4 eb fe 73 5f 18 6f f5 1c 3c 48 67 3c aa 7e af …s_.o…<Hg<.~.
ssl_tls.c:2888: 02a0: 21 31 e4 d5 2d 66 3d eb ed 7a 48 1a b1 8e 58 89 !1…-f=…zH…X.
ssl_tls.c:2888: 02b0: 64 2e 33 78 78 61 59 51 1f 71 c7 10 c0 03 d5 39 d.3xxaYQ.q…9
ssl_tls.c:2888: 02c0: c0 7b 17 d7 1c 70 c5 40 67 be 05 dd 62 01 bc f5 .{…p.@g…b…
ssl_tls.c:2888: 02d0: fe c1 fd 1f c9 78 4a dc 17 e9 e8 2f 4c ad cc c1 …xJ…/L…
ssl_tls.c:2888: 02e0: 74 70 90 a9 2f 8c a6 84 0c 0f 40 4d b6 71 d2 62 tp…/…@M.q.b
ssl_tls.c:2888: 02f0: 3c 2c 6b 31 4a e0 aa 7b da fd 77 28 e6 b6 d7 78 <,k1J…{…w(…x
ssl_tls.c:2888: 0300: ec 9d 69 d5 1b a5 cf 70 8b cd a4 5c 54 8b 92 45 …i…p…\T…E
ssl_tls.c:2888: 0310: 14 1f 68 3f 27 78 cf 5c d5 2f e2 27 f6 a6 4d 5a …h?‘x../.’…MZ
ssl_tls.c:2888: 0320: 89 c4 0d 4a 39 d3 92 e7 bf 34 5a 13 df 48 0a c0 …J9…4Z…H…
ssl_tls.c:2888: 0330: fa 0e 2a 02 64 a3 7a 57 37 a7 8c 16 a6 16 bc ce ….d.zW7…
ssl_tls.c:2888: 0340: 1b 98 c2 35 6e 5f a2 47 1b 47 00 03 8b 30 82 03 …5n_.G.G…0…
ssl_tls.c:2888: 0350: 87 30 82 02 6f a0 03 02 01 02 02 01 00 30 0d 06 .0…o…0…
ssl_tls.c:2888: 0360: 09 2a 86 48 86 f7 0d 01 01 05 05 00 30 3b 31 0b ..H…0;1.
ssl_tls.c:2888: 0370: 30 09 06 03 55 04 06 13 02 4e 4c 31 11 30 0f 06 0…U…NL1.0…
ssl_tls.c:2888: 0380: 03 55 04 0a 13 08 50 6f 6c 61 72 53 53 4c 31 19 .U…PolarSSL1.
ssl_tls.c:2888: 0390: 30 17 06 03 55 04 03 13 10 50 6f 6c 61 72 53 53 0…U…PolarSS
ssl_tls.c:2888: 03a0: 4c 20 54 65 73 74 20 43 41 30 1e 17 0d 31 31 30 L Test CA0…110
ssl_tls.c:2888: 03b0: 32 31 32 31 34 34 34 30 30 5a 17 0d 32 31 30 32 212144400Z…2102
ssl_tls.c:2888: 03c0: 31 32 31 34 34 34 30 30 5a 30 3b 31 0b 30 09 06 12144400Z0;1.0…
ssl_tls.c:2888: 03d0: 03 55 04 06 13 02 4e 4c 31 11 30 0f 06 03 55 04 .U…NL1.0…U.
ssl_tls.c:2888: 03e0: 0a 13 08 50 6f 6c 61 72 53 53 4c 31 19 30 17 06 …PolarSSL1.0…
ssl_tls.c:2888: 03f0: 03 55 04 03 13 10 50 6f 6c 61 72 53 53 4c 20 54 .U…PolarSSL T
ssl_tls.c:2888: 0400: 65 73 74 20 43 41 30 82 01 22 30 0d 06 09 2a 86 est CA0…"0….
ssl_tls.c:2888: 0410: 48 86 f7 0d 01 01 01 05 00 03 82 01 0f 00 30 82 H…0.
ssl_tls.c:2888: 0420: 01 0a 02 82 01 01 00 c0 df 37 fc 17 bb e0 96 9d …7…
ssl_tls.c:2888: 0430: 3f 86 de 96 32 7d 44 a5 16 a0 cd 21 f1 99 d4 ec ?..2}D…!..
ssl_tls.c:2888: 0440: ea cb 7c 18 58 08 94 a5 ec 9b c5 8b df 1a 1e 99 …|.X…
ssl_tls.c:2888: 0450: 38 99 87 1e 7b c0 8d 39 df 38 5d 70 78 07 d3 9e 8…{…9.8]px…
ssl_tls.c:2888: 0460: d9 93 e8 b9 72 51 c5 ce a3 30 52 a9 f2 e7 40 70 …rQ…0R…@p
ssl_tls.c:2888: 0470: 14 cb 44 a2 72 0b c2 e5 40 f9 3e e5 a6 0e b3 f9 …D.r…@.>…
ssl_tls.c:2888: 0480: ec 4a 63 c0 b8 29 00 74 9c 57 3b a8 a5 04 90 71 .Jc…).t.W;…q
ssl_tls.c:2888: 0490: f1 bd 83 d9 3f d6 a5 e2 3c 2a 8f ef 27 60 c3 c6 …?..<…‘.. ssl_tls.c:2888: 04a0: 9f cb ba ec 60 7d b7 e6 84 32 be 4f fb 58 26 22 ....}…2.O.X&"
ssl_tls.c:2888: 04b0: 03 5b d4 b4 d5 fb f5 e3 96 2e 70 c0 e4 2e bd fc .[…p…
ssl_tls.c:2888: 04c0: 2e ee e2 41 55 c0 34 2e 7d 24 72 69 cb 47 b1 14 …AU.4.}$ri.G…
ssl_tls.c:2888: 04d0: 40 83 7d 67 f4 86 f6 31 ab f1 79 a4 b2 b5 2e 12 @.}g…1…y…
ssl_tls.c:2888: 04e0: f9 84 17 f0 62 6f 27 3e 13 58 b1 54 0d 21 9a 73 …bo’>.X.T.!.s
ssl_tls.c:2888: 04f0: 37 a1 30 cf 6f 92 dc f6 e9 fc ac db 2e 28 d1 7e 7.0.o…(.~
ssl_tls.c:2888: 0500: 02 4b 23 a0 15 f2 38 65 64 09 ea 0c 6e 8e 1b 17 .K#…8ed…n…
ssl_tls.c:2888: 0510: a0 71 c8 b3 9b c9 ab e9 c3 f2 cf 87 96 8f 80 02 .q…
ssl_tls.c:2888: 0520: 32 9e 99 58 6f a2 d5 02 03 01 00 01 a3 81 95 30 2…Xo…0
ssl_tls.c:2888: 0530: 81 92 30 0c 06 03 55 1d 13 04 05 30 03 01 01 ff …0…U…0…
ssl_tls.c:2888: 0540: 30 1d 06 03 55 1d 0e 04 16 04 14 b4 5a e4 a5 b3 0…U…Z…
ssl_tls.c:2888: 0550: de d2 52 f6 b9 d5 a6 95 0f eb 3e bc c7 fd ff 30 …R…>…0
ssl_tls.c:2888: 0560: 63 06 03 55 1d 23 04 5c 30 5a 80 14 b4 5a e4 a5 c…U.#.\0Z…Z…
ssl_tls.c:2888: 0570: b3 de d2 52 f6 b9 d5 a6 95 0f eb 3e bc c7 fd ff …R…>…
ssl_tls.c:2888: 0580: a1 3f a4 3d 30 3b 31 0b 30 09 06 03 55 04 06 13 .?.=0;1.0…U…
ssl_tls.c:2888: 0590: 02 4e 4c 31 11 30 0f 06 03 55 04 0a 13 08 50 6f .NL1.0…U…Po
ssl_tls.c:2888: 05a0: 6c 61 72 53 53 4c 31 19 30 17 06 03 55 04 03 13 larSSL1.0…U…
ssl_tls.c:2888: 05b0: 10 50 6f 6c 61 72 53 53 4c 20 54 65 73 74 20 43 .PolarSSL Test C
ssl_tls.c:2888: 05c0: 41 82 01 00 30 0d 06 09 2a 86 48 86 f7 0d 01 01 A…0….H…
ssl_tls.c:2888: 05d0: 05 05 00 03 82 01 01 00 b8 fd 54 d8 00 54 90 8b …T…T…
ssl_tls.c:2888: 05e0: 25 b0 27 dd 95 cd a2 f7 84 07 1d 87 89 4a c4 78 %.’…J.x
ssl_tls.c:2888: 05f0: 11 d8 07 b5 d7 22 50 8e 48 eb 62 7a 32 89 be 63 …“P.H.bz2…c
ssl_tls.c:2888: 0600: 47 53 ff b6 be f1 2e 8c 54 c0 99 3f a0 b9 37 23 GS…T…?..7#
ssl_tls.c:2888: 0610: 72 5f 0d 46 59 8f d8 47 cd 97 4c 9f 07 0c 12 62 r_.FY…G…L…b
ssl_tls.c:2888: 0620: 09 3a 24 e4 36 d9 e9 2c da 38 d0 73 75 61 d7 c1 .:$.6…,.8.sua…
ssl_tls.c:2888: 0630: 6c 26 8b 9b e0 d5 dc 67 ed 8c 6b 33 d7 74 22 3c l&…g…k3.t”<
ssl_tls.c:2888: 0640: 4c db b5 8d 2a ce 2c 0d 08 59 05 09 05 a6 39 9f L….,…Y…9.
ssl_tls.c:2888: 0650: b3 67 1b e2 83 e5 e1 8f 53 f6 67 93 c7 f9 6f 76 .g…S.g…ov
ssl_tls.c:2888: 0660: 44 58 12 e8 3a d4 97 e7 e9 c0 3e a8 7a 72 3d 87 DX…:…>.zr=.
ssl_tls.c:2888: 0670: 53 1f e5 2c 84 84 e7 9a 9e 7f 66 d9 1f 9b f5 13 S…,…f…
ssl_tls.c:2888: 0680: 48 b0 4d 14 d1 de b2 24 d9 78 7d f5 35 cc 58 19 H.M…$.x}.5.X.
ssl_tls.c:2888: 0690: d1 d2 99 ef 4d 73 f8 1f 89 d4 5a d0 52 ce 09 f5 …Ms…Z.R…
ssl_tls.c:2888: 06a0: b1 46 51 6a 00 8e 3b cc 6f 63 01 00 99 ed 9d a6 .FQj…;.oc…
ssl_tls.c:2888: 06b0: 08 60 cd 32 18 d0 73 e0 58 71 d9 e5 d2 53 d7 8d ..2..s.Xq...S.. ssl_tls.c:2888: 06c0: d0 ca e9 5d 2a 0a 0d 5d 55 ec 21 50 17 16 e6 06 ...]*..]U.!P.... ssl_tls.c:2888: 06d0: 4a cd 5e de f7 e0 e9 54 00 03 8b 30 82 03 87 30 J.^....T...0...0 ssl_tls.c:2888: 06e0: 82 02 6f a0 03 02 01 02 02 01 00 30 0d 06 09 2a ..o........0...* ssl_tls.c:2888: 06f0: 86 48 86 f7 0d 01 01 0b 05 00 30 3b 31 0b 30 09 .H........0;1.0. ssl_tls.c:2888: 0700: 06 03 55 04 06 13 02 4e 4c 31 11 30 0f 06 03 55 ..U....NL1.0...U ssl_tls.c:2888: 0710: 04 0a 0c 08 50 6f 6c 61 72 53 53 4c 31 19 30 17 ....PolarSSL1.0. ssl_tls.c:2888: 0720: 06 03 55 04 03 0c 10 50 6f 6c 61 72 53 53 4c 20 ..U....PolarSSL ssl_tls.c:2888: 0730: 54 65 73 74 20 43 41 30 1e 17 0d 31 37 30 35 30 Test CA0...17050 ssl_tls.c:2888: 0740: 34 31 36 35 37 30 31 5a 17 0d 32 37 30 35 30 35 4165701Z..270505 ssl_tls.c:2888: 0750: 31 36 35 37 30 31 5a 30 3b 31 0b 30 09 06 03 55 165701Z0;1.0...U ssl_tls.c:2888: 0760: 04 06 13 02 4e 4c 31 11 30 0f 06 03 55 04 0a 0c ....NL1.0...U... ssl_tls.c:2888: 0770: 08 50 6f 6c 61 72 53 53 4c 31 19 30 17 06 03 55 .PolarSSL1.0...U ssl_tls.c:2888: 0780: 04 03 0c 10 50 6f 6c 61 72 53 53 4c 20 54 65 73 ....PolarSSL Tes ssl_tls.c:2888: 0790: 74 20 43 41 30 82 01 22 30 0d 06 09 2a 86 48 86 t CA0.."0...*.H. ssl_tls.c:2888: 07a0: f7 0d 01 01 01 05 00 03 82 01 0f 00 30 82 01 0a ............0... ssl_tls.c:2888: 07b0: 02 82 01 01 00 c0 df 37 fc 17 bb e0 96 9d 3f 86 .......7......?. ssl_tls.c:2888: 07c0: de 96 32 7d 44 a5 16 a0 cd 21 f1 99 d4 ec ea cb ..2}D....!...... ssl_tls.c:2888: 07d0: 7c 18 58 08 94 a5 ec 9b c5 8b df 1a 1e 99 38 99 |.X...........8. ssl_tls.c:2888: 07e0: 87 1e 7b c0 8d 39 df 38 5d 70 78 07 d3 9e d9 93 ..{..9.8]px..... ssl_tls.c:2888: 07f0: e8 b9 72 51 c5 ce a3 30 52 a9 f2 e7 40 70 14 cb ..rQ...0R...@p.. ssl_tls.c:2888: 0800: 44 a2 72 0b c2 e5 40 f9 3e e5 a6 0e b3 f9 ec 4a D.r...@.>......J ssl_tls.c:2888: 0810: 63 c0 b8 29 00 74 9c 57 3b a8 a5 04 90 71 f1 bd c..).t.W;....q.. ssl_tls.c:2888: 0820: 83 d9 3f d6 a5 e2 3c 2a 8f ef 27 60 c3 c6 9f cb ..?...<*..'…
ssl_tls.c:2888: 0830: ba ec 60 7d b7 e6 84 32 be 4f fb 58 26 22 03 5b …}...2.O.X&".[ ssl_tls.c:2888: 0840: d4 b4 d5 fb f5 e3 96 2e 70 c0 e4 2e bd fc 2e ee ........p....... ssl_tls.c:2888: 0850: e2 41 55 c0 34 2e 7d 24 72 69 cb 47 b1 14 40 83 .AU.4.}$ri.G..@. ssl_tls.c:2888: 0860: 7d 67 f4 86 f6 31 ab f1 79 a4 b2 b5 2e 12 f9 84 }g...1..y....... ssl_tls.c:2888: 0870: 17 f0 62 6f 27 3e 13 58 b1 54 0d 21 9a 73 37 a1 ..bo'>.X.T.!.s7. ssl_tls.c:2888: 0880: 30 cf 6f 92 dc f6 e9 fc ac db 2e 28 d1 7e 02 4b 0.o........(.~.K ssl_tls.c:2888: 0890: 23 a0 15 f2 38 65 64 09 ea 0c 6e 8e 1b 17 a0 71 #...8ed...n....q ssl_tls.c:2888: 08a0: c8 b3 9b c9 ab e9 c3 f2 cf 87 96 8f 80 02 32 9e ..............2. ssl_tls.c:2888: 08b0: 99 58 6f a2 d5 02 03 01 00 01 a3 81 95 30 81 92 .Xo..........0.. ssl_tls.c:2888: 08c0: 30 1d 06 03 55 1d 0e 04 16 04 14 b4 5a e4 a5 b3 0...U.......Z... ssl_tls.c:2888: 08d0: de d2 52 f6 b9 d5 a6 95 0f eb 3e bc c7 fd ff 30 ..R.......>....0 ssl_tls.c:2888: 08e0: 63 06 03 55 1d 23 04 5c 30 5a 80 14 b4 5a e4 a5 c..U.#.\0Z...Z.. ssl_tls.c:2888: 08f0: b3 de d2 52 f6 b9 d5 a6 95 0f eb 3e bc c7 fd ff ...R.......>.... ssl_tls.c:2888: 0900: a1 3f a4 3d 30 3b 31 0b 30 09 06 03 55 04 06 13 .?.=0;1.0...U... ssl_tls.c:2888: 0910: 02 4e 4c 31 11 30 0f 06 03 55 04 0a 0c 08 50 6f .NL1.0...U....Po ssl_tls.c:2888: 0920: 6c 61 72 53 53 4c 31 19 30 17 06 03 55 04 03 0c larSSL1.0...U... ssl_tls.c:2888: 0930: 10 50 6f 6c 61 72 53 53 4c 20 54 65 73 74 20 43 .PolarSSL Test C ssl_tls.c:2888: 0940: 41 82 01 00 30 0c 06 03 55 1d 13 04 05 30 03 01 A...0...U....0.. ssl_tls.c:2888: 0950: 01 ff 30 0d 06 09 2a 86 48 86 f7 0d 01 01 0b 05 ..0...*.H....... ssl_tls.c:2888: 0960: 00 03 82 01 01 00 1c af c7 1e b4 d9 32 79 d5 32 ............2y.2 ssl_tls.c:2888: 0970: 97 5e d6 2a 3e be 80 2d aa 5e e3 e2 c4 61 2e b8 .^.*>..-.^...a.. ssl_tls.c:2888: 0980: c3 ee 8d d3 1e dc 11 6c 36 b6 76 20 af a6 ad 12 .......l6.v .... ssl_tls.c:2888: 0990: ab 6d cd 83 62 cc 62 85 ec 3b 1a 0b fd 14 0a de .m..b.b..;...... ssl_tls.c:2888: 09a0: 23 7b 50 ac 55 dc c2 8f 12 bd 30 5d 04 be 90 a4 #{P.U.....0].... ssl_tls.c:2888: 09b0: 2a 89 3d 9b b1 fa e3 9d 63 15 1d 9b 54 38 ca 66 *.=.....c...T8.f ssl_tls.c:2888: 09c0: e8 53 6a 71 d1 a6 fd 1b 2c de f2 9d 6b 69 5c 2a .Sjq....,...ki\* ssl_tls.c:2888: 09d0: 5f 24 52 7a bf ca 57 35 f9 06 c1 1b a0 3a b5 4b _$Rz..W5.....:.K ssl_tls.c:2888: 09e0: d0 72 bd 99 c9 67 d5 83 e9 8c e5 79 21 4e b3 8e .r...g.....y!N.. ssl_tls.c:2888: 09f0: 5e eb 36 38 b8 a4 6f 85 b0 12 d2 53 25 13 44 d1 ^.68..o....S%.D. ssl_tls.c:2888: 0a00: ff b2 3c e0 d2 53 3d 3f bd 3e 7b 02 91 f4 0a 70 ..<..S=?.>{....p ssl_tls.c:2888: 0a10: 7c d1 b6 09 b2 16 07 3c 71 f2 98 eb 65 78 00 7c |......<q...ex.| ssl_tls.c:2888: 0a20: 29 26 2d aa 6e f9 83 f6 0d a1 b8 e7 8c 1e 9c 9b )&-.n........... ssl_tls.c:2888: 0a30: 81 e4 5b 73 99 45 52 25 e9 f6 18 9f 6d 0d 45 50 ..[s.ER%....m.EP ssl_tls.c:2888: 0a40: 35 56 3b 3a 18 04 4e af 83 6a 5b 89 3f f8 ba 1f 5V;:..N..j[.?... ssl_tls.c:2888: 0a50: 63 dc b4 2c b0 c4 fa 9d 28 20 42 97 22 c2 2f 84 c..,....( B."./. ssl_tls.c:2888: 0a60: fa f7 f6 cc 31 48 00 02 56 30 82 02 52 30 82 01 ....1H..V0..R0.. ssl_tls.c:2888: 0a70: d7 a0 03 02 01 02 02 09 00 c1 43 e2 7e 62 43 cc ..........C.~bC. ssl_tls.c:2888: 0a80: e8 30 0a 06 08 2a 86 48 ce 3d 04 03 02 30 3e 31 .0...*.H.=...0>1 ssl_tls.c:2888: 0a90: 0b 30 09 06 03 55 04 06 13 02 4e 4c 31 11 30 0f .0...U....NL1.0. ssl_tls.c:2888: 0aa0: 06 03 55 04 0a 13 08 50 6f 6c 61 72 53 53 4c 31 ..U....PolarSSL1 ssl_tls.c:2888: 0ab0: 1c 30 1a 06 03 55 04 03 13 13 50 6f 6c 61 72 73 .0...U....Polars ssl_tls.c:2888: 0ac0: 73 6c 20 54 65 73 74 20 45 43 20 43 41 30 1e 17 sl Test EC CA0.. ssl_tls.c:2888: 0ad0: 0d 31 33 30 39 32 34 31 35 34 39 34 38 5a 17 0d .130924154948Z.. ssl_tls.c:2888: 0ae0: 32 33 30 39 32 32 31 35 34 39 34 38 5a 30 3e 31 230922154948Z0>1 ssl_tls.c:2888: 0af0: 0b 30 09 06 03 55 04 06 13 02 4e 4c 31 11 30 0f .0...U....NL1.0. ssl_tls.c:2888: 0b00: 06 03 55 04 0a 13 08 50 6f 6c 61 72 53 53 4c 31 ..U....PolarSSL1 ssl_tls.c:2888: 0b10: 1c 30 1a 06 03 55 04 03 13 13 50 6f 6c 61 72 73 .0...U....Polars ssl_tls.c:2888: 0b20: 73 6c 20 54 65 73 74 20 45 43 20 43 41 30 76 30 sl Test EC CA0v0 ssl_tls.c:2888: 0b30: 10 06 07 2a 86 48 ce 3d 02 01 06 05 2b 81 04 00 ...*.H.=....+... ssl_tls.c:2888: 0b40: 22 03 62 00 04 c3 da 2b 34 41 37 58 2f 87 56 fe ".b....+4A7X/.V. ssl_tls.c:2888: 0b50: fc 89 ba 29 43 4b 4e e0 6e c3 0e 57 53 33 39 58 ...)CKN.n..WS39X ssl_tls.c:2888: 0b60: d4 52 b4 91 95 39 0b 23 df 5f 17 24 62 48 fc 1a .R...9.#._.$bH.. ssl_tls.c:2888: 0b70: 95 29 ce 2c 2d 87 c2 88 52 80 af d6 6a ab 21 dd .).,-...R...j.!. ssl_tls.c:2888: 0b80: b8 d3 1c 6e 58 b8 ca e8 b2 69 8e f3 41 ad 29 c3 ...nX....i..A.). ssl_tls.c:2888: 0b90: b4 5f 75 a7 47 6f d5 19 29 55 69 9a 53 3b 20 b4 ._u.Go..)Ui.S; . ssl_tls.c:2888: 0ba0: 66 16 60 33 1e a3 81 a0 30 81 9d 30 1d 06 03 55 f.3…0…0…U
ssl_tls.c:2888: 0bb0: 1d 0e 04 16 04 14 9d 6d 20 24 49 01 3f 2b cb 78 …m $I.?+.x
ssl_tls.c:2888: 0bc0: b5 19 bc 7e 24 c9 db fb 36 7c 30 6e 06 03 55 1d …~$…6|0n…U.
ssl_tls.c:2888: 0bd0: 23 04 67 30 65 80 14 9d 6d 20 24 49 01 3f 2b cb #.g0e…m $I.?+.
ssl_tls.c:2888: 0be0: 78 b5 19 bc 7e 24 c9 db fb 36 7c a1 42 a4 40 30 x…~$…6|.B.@0
ssl_tls.c:2888: 0bf0: 3e 31 0b 30 09 06 03 55 04 06 13 02 4e 4c 31 11 >1.0…U…NL1.
ssl_tls.c:2888: 0c00: 30 0f 06 03 55 04 0a 13 08 50 6f 6c 61 72 53 53 0…U…PolarSS
ssl_tls.c:2888: 0c10: 4c 31 1c 30 1a 06 03 55 04 03 13 13 50 6f 6c 61 L1.0…U…Pola
ssl_tls.c:2888: 0c20: 72 73 73 6c 20 54 65 73 74 20 45 43 20 43 41 82 rssl Test EC CA.
ssl_tls.c:2888: 0c30: 09 00 c1 43 e2 7e 62 43 cc e8 30 0c 06 03 55 1d …C.~bC…0…U.
ssl_tls.c:2888: 0c40: 13 04 05 30 03 01 01 ff 30 0a 06 08 2a 86 48 ce …0…0….H.
ssl_tls.c:2888: 0c50: 3d 04 03 02 03 69 00 30 66 02 31 00 c3 b4 62 73 =…i.0f.1…bs
ssl_tls.c:2888: 0c60: 56 28 95 00 7d 78 12 26 d2 71 7b 19 f8 8a 98 3e V(…}x.&.q{…>
ssl_tls.c:2888: 0c70: 92 fe 33 9e e4 79 d2 fe 7a b7 87 74 3c 2b b8 d7 …3…y…z…t<+…
ssl_tls.c:2888: 0c80: 69 94 0b a3 67 77 b8 b3 be d1 36 32 02 31 00 fd i…gw…62.1…
ssl_tls.c:2888: 0c90: 67 9c 94 23 67 c0 56 ba 4b 33 15 00 c6 e3 cc 31 g…#g.V.K3…1
ssl_tls.c:2888: 0ca0: 08 2c 9c 8b da a9 75 23 2f b8 28 e7 f2 9c 14 3a .,…u#/.(…:
ssl_tls.c:2888: 0cb0: 40 01 5c af 0c b2 cf 74 7f 30 9f 08 43 ad 20 @..…t.0…C.
ssl_tls.c:2454: => flush output
ssl_tls.c:2473: message length: 3263, out_left: 3263
ssl_tls.c:2479: ssl->f_send() returned 3263 (-0xfffff341)
ssl_tls.c:2498: <= flush output
ssl_tls.c:2897: <= write record
ssl_tls.c:4361: <= write certificate
ssl_srv.c:3976: server state: 4
ssl_tls.c:2454: => flush output
ssl_tls.c:2466: <= flush output
ssl_srv.c:2853: => write server key exchange
ssl_srv.c:3009: ECDHE curve: secp384r1
ssl_srv.c:3034: value of ‘ECDH: Q (X)’ (384 bits) is:
ssl_srv.c:3034: e6 9f 10 5f 6c 98 70 60 9b 14 f6 15 a3 6b a3 79
ssl_srv.c:3034: 77 d2 4d 8e d2 2d 29 7e e4 c7 a6 5a 01 cd 2c 48
ssl_srv.c:3034: f9 03 bc 77 f8 68 6f 47 e0 20 a7 d2 74 d6 c9 c0
ssl_srv.c:3034: value of ‘ECDH: Q (Y)’ (382 bits) is:
ssl_srv.c:3034: 22 0d f9 c2 9b 5a 1e 5e aa 22 dc 25 96 89 96 b1
ssl_srv.c:3034: 5a 99 b3 07 43 65 bf 49 30 c1 b3 d7 28 e5 3f 28
ssl_srv.c:3034: fe 5a 5d bc 58 7c de 33 14 c0 60 ed 02 ba 0f 68
ssl_srv.c:3096: pick hash algorithm 8 for signing
ssl_srv.c:3137: dumping ‘parameters hash’ (64 bytes)
ssl_srv.c:3137: 0000: 3c 33 08 b7 d7 83 cf 2b 13 cf 27 f1 f0 37 37 48 <3…+…'…77H
ssl_srv.c:3137: 0010: 45 05 f0 c1 91 77 2a 2a ea e7 38 ca 90 12 fc d8 E…w**…8…

roneld01 · January 14, 2019, 3:40pm

Hi @mathieubordere
Thank you for your question!

Unfortunately, the logs do not say much, as these are partial logs of the handshake from the server side only. They do not contain client side, and not the bad_mac record message.

If the master key and derived data are in fact the same, I would think that perhaps the MBEDTLS_SSL_MAX_CONTENT_LEN is different in both sides, and that the server is sending a data larger than what the client can read.
It could be other reasons, such as memory corruption of the key material \ iv in one if the peers, or other reasons that cause the iv to be different.
Have you looked at older related posts? For example:

Regards,
Mbed TLS Team member
Ron

mathieubordere · February 21, 2019, 2:05pm

Yes, sorry, the forum didn’t allow me to post the whole log and my post was under review so I couldn’t supply additional information in time. In meanwhile I figured out it was due to the hardware accessing cached memory for performing dma.

Topic		Replies	Views
2 ways authentication error with TLS client/server Crypto and SSL questions	4	1199	May 12, 2020
-0x7180 - SSL - Verification of the message MAC failed Bug Reports / Issues mbed_tls	0	1171	November 28, 2020
Mbedtls_ssl_handshake failed Crypto and SSL questions mbed_client , mbed_tls , mbed_os	9	10575	April 22, 2019
TLS handshake mac problem Generic	5	1061	October 21, 2018
Error 0x7780 during handshake Mbed TLS mbed_tls	7	7187	May 10, 2023

Verification of the message MAC failed

Related Topics