Ask Your Question
0

Missing "Certificate" TLS record

asked 2019-10-16 04:31:18 +0000

MXXXX gravatar image

updated 2019-10-16 04:31:58 +0000

I'm tracing a simple SSL handshake and I do not see the Server Certificate or Server Done after Server Hello. Is there some setting I need to change?

edit retag flag offensive close merge delete

Comments

Is there a TLS session resumption? Can you share a capture of the TLS handshake sequence?

grahamb gravatar imagegrahamb ( 2019-10-16 09:53:32 +0000 )edit

Info:

No. Time         Source      Destination Protocol Length  Info
1   0.000000000  127.0.0.1   127.0.0.1   TCP          74  36218 → 443 [SYN] Seq=0 Win=65495 Len=0
2   0.000008611  127.0.0.1   127.0.0.1   TCP          74  443 → 36218 [SYN, ACK] Seq=0 Ack=1 Win=
3   0.000015722  127.0.0.1   127.0.0.1   TCP          66  36218 → 443 [ACK] Seq=1 Ack=1 Win=65536
4   0.001239852  127.0.0.1   127.0.0.1   TLSv1.3     583  Client Hello
5   0.001284628  127.0.0.1   127.0.0.1   TCP          66  443 → 36218 [ACK] Seq=1 Ack=518 Win=650
6   0.002584293  127.0.0.1   127.0.0.1   TLSv1.3    1533  Server Hello, Change Cipher Spec, Appli
7   0.002603354  127.0.0.1   127.0.0.1   TCP          66  36218 → 443 [ACK] Seq=518 ...
(more)
MXXXX gravatar imageMXXXX ( 2019-10-16 18:23:27 +0000 )edit
add a comment

1 Answer

Sort by » oldest newest most voted
0

answered 2019-10-16 18:37:54 +0000

grahamb gravatar image

Yep, looks like TLS session resumption. Check the Client Hello record for a session ticket.

edit flag offensive delete link more

Comments

To clarify, does that mean there was a certificate already on the client and it was not passed again? What do I change to see the Server Hello Certificate and Done?

MXXXX gravatar imageMXXXX ( 2019-10-16 18:41:23 +0000 )edit

Erase the session on the client (or the server).

grahamb gravatar imagegrahamb ( 2019-10-16 18:49:39 +0000 )edit

I tried several things but none is working. Can you confirm that you can see the Server Certificate, Done with TLSv1.3 on Ubuntu 18.04.3 LTS and urllib3==1.22 requests==2.18.4 requests-unixsocket==0.1.5 pyOpenSSL==18.0.0 pycrypto==2.6.1 httplib2==0.9.2

MXXXX gravatar imageMXXXX ( 2019-10-17 01:40:26 +0000 )edit
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2019-10-16 04:31:18 +0000

Seen: 1,542 times

Last updated: Oct 16 '19

Copyright Wireshark Foundation, 2017-2023 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service
Powered by Askbot version 0.10.2