|
Hi all, - openldap 2.0.6 - openssl 0.9.6 4 client programs run in parallel, and they use the OpenLDAP server to insert and delete entries from the OpenLDAP server. The connection is based on SSL. I used the ssldump to monitor the SSL packets in client side (I attached the ssldump output file). My problem is that in case of SSL session reuse the application data (bind, ...) is sent by the client (it is seen in the above ssldump logs), but this application data is not received on the server side. The OpenLDAP select in daemon waits, but there is no activity. This problem occurs only in case of SSL session reuse. What is the problem? Please give me a little help! It it a client or a server side problem? Thanks in advance -- Krisztián Nagy-Varga Software Developer Ericsson Hungary Ltd. |
1 1 0.0091 (0.0091) C>S SSLv2 compatible client hello
Version 3.1
cipher suites
TLS_DHE_DSS_WITH_RC4_128_SHA
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
TLS_RSA_WITH_RC4_128_MD5
Unknown value 0xfeff
TLS_RSA_WITH_3DES_EDE_CBC_SHA
Unknown value 0xfefe
TLS_DHE_RSA_WITH_DES_CBC_SHA
TLS_DHE_DSS_WITH_DES_CBC_SHA
TLS_RSA_WITH_DES_CBC_SHA
TLS_RSA_EXPORT1024_WITH_RC4_56_SHA
TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA
TLS_RSA_EXPORT_WITH_RC4_40_MD5
TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5
2 1 0.0023 (0.0023) C>S SSLv2 compatible client hello
Version 3.1
cipher suites
TLS_DHE_DSS_WITH_RC4_128_SHA
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
TLS_RSA_WITH_RC4_128_MD5
Unknown value 0xfeff
TLS_RSA_WITH_3DES_EDE_CBC_SHA
Unknown value 0xfefe
TLS_DHE_RSA_WITH_DES_CBC_SHA
TLS_DHE_DSS_WITH_DES_CBC_SHA
TLS_RSA_WITH_DES_CBC_SHA
TLS_RSA_EXPORT1024_WITH_RC4_56_SHA
TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA
TLS_RSA_EXPORT_WITH_RC4_40_MD5
TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5
1 2 0.0247 (0.0156) S>CV3.1(74) Handshake
ServerHello
Version 3.1
random[32]=
49 6d 8b ae 50 0a 42 8c 73 ef 03 04 40 e1 97 dd
f0 2c ac 0e 75 d0 5c 04 49 1d b6 69 4f c6 b1 98
session_id[32]=
a6 a2 aa 1a d7 e8 4e 0a 9b ee 29 6c 32 ca 25 ed
31 7c 33 1c c8 48 d4 15 d8 aa f9 cb 29 af 14 55
cipherSuite TLS_RSA_WITH_RC4_128_MD5
compressionMethod NULL
1 3 0.0247 (0.0000) S>CV3.1(812) Handshake
Certificate
1 4 0.0247 (0.0000) S>CV3.1(4) Handshake
ServerHelloDone
1 5 0.0327 (0.0080) C>SV3.1(134) Handshake
ClientKeyExchange
EncryptedPreMasterSecret[128]=
79 fe 8e d2 52 ef 42 0c 26 96 b2 57 27 2c e8 4f
7b e6 78 f1 05 22 bf ab c3 0e 0b b5 ee 5c e3 46
ce e5 0a 43 27 f6 d8 bf b0 a6 94 b8 0a 6c 03 40
57 36 48 2b c0 28 ec ac c7 72 55 82 9e 94 b6 f2
39 1c 99 2d 16 37 46 c7 fe cf d3 f9 01 13 7a 38
3e 26 6e 16 9b 8c 21 d0 ec 80 d1 13 ab 73 15 52
74 dd d3 46 c6 44 dd 74 5a f5 11 42 c9 e3 6e 3d
1d 9d 36 91 9b eb 75 c9 5c a6 e4 72 7e 48 ec 02
1 6 0.0327 (0.0000) C>SV3.1(1) ChangeCipherSpec
1 7 0.0327 (0.0000) C>SV3.1(32) Handshake
3 1 0.0016 (0.0016) C>S SSLv2 compatible client hello
Version 3.1
cipher suites
TLS_DHE_DSS_WITH_RC4_128_SHA
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
TLS_RSA_WITH_RC4_128_MD5
Unknown value 0xfeff
TLS_RSA_WITH_3DES_EDE_CBC_SHA
Unknown value 0xfefe
TLS_DHE_RSA_WITH_DES_CBC_SHA
TLS_DHE_DSS_WITH_DES_CBC_SHA
TLS_RSA_WITH_DES_CBC_SHA
TLS_RSA_EXPORT1024_WITH_RC4_56_SHA
TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA
TLS_RSA_EXPORT_WITH_RC4_40_MD5
TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5
2 2 0.0261 (0.0238) S>CV3.1(74) Handshake
ServerHello
Version 3.1
random[32]=
49 6d 8b ae 86 b8 76 42 3b c3 26 c0 10 11 04 ab
dd e3 fb 11 43 32 bb 68 d0 67 87 fc e6 32 d1 e8
session_id[32]=
a2 1b 05 9d c2 f4 b6 df 03 6a 6a 51 8e de eb d9
67 f4 49 77 bb 4d f5 f7 75 89 38 b3 67 93 2e c9
cipherSuite TLS_RSA_WITH_RC4_128_MD5
compressionMethod NULL
2 3 0.0261 (0.0000) S>CV3.1(812) Handshake
Certificate
2 4 0.0261 (0.0000) S>CV3.1(4) Handshake
ServerHelloDone
2 5 0.0328 (0.0066) C>SV3.1(134) Handshake
ClientKeyExchange
EncryptedPreMasterSecret[128]=
be 0f 2f 54 21 98 26 e4 99 f5 dc 5f 1d ed e0 f1
d0 00 d4 98 3d 63 75 33 b2 e7 06 40 ba 43 49 63
df 6a 92 c9 9a e5 cf 85 92 6c c7 3c 42 21 4d f7
14 b8 bd 0c 75 39 f3 f4 6a 97 26 0a 9f 4d 18 ac
f8 36 da 37 95 38 fe b2 27 a9 63 7d 72 bc 0f 50
a8 0b 94 ac 9e e6 fd fd b6 77 22 c4 78 fd a4 11
f9 4f a5 3f 21 19 46 bf 71 86 c8 0b 8a 0c 83 fc
02 b2 e6 d1 5f 9b f4 d0 36 d5 d1 90 d5 a0 c8 36
2 6 0.0328 (0.0000) C>SV3.1(1) ChangeCipherSpec
2 7 0.0328 (0.0000) C>SV3.1(32) Handshake
4 1 0.0017 (0.0017) C>S SSLv2 compatible client hello
Version 3.1
cipher suites
TLS_DHE_DSS_WITH_RC4_128_SHA
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
TLS_RSA_WITH_RC4_128_MD5
Unknown value 0xfeff
TLS_RSA_WITH_3DES_EDE_CBC_SHA
Unknown value 0xfefe
TLS_DHE_RSA_WITH_DES_CBC_SHA
TLS_DHE_DSS_WITH_DES_CBC_SHA
TLS_RSA_WITH_DES_CBC_SHA
TLS_RSA_EXPORT1024_WITH_RC4_56_SHA
TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA
TLS_RSA_EXPORT_WITH_RC4_40_MD5
TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5
1 8 0.0597 (0.0270) S>CV3.1(1) ChangeCipherSpec
1 9 0.0597 (0.0000) S>CV3.1(32) Handshake
1 10 0.0606 (0.0008) C>SV3.1(79) application_data
2 8 0.0698 (0.0369) S>CV3.1(1) ChangeCipherSpec
2 9 0.0698 (0.0000) S>CV3.1(32) Handshake
2 10 0.0708 (0.0010) C>SV3.1(79) application_data
4 2 0.0608 (0.0591) S>CV3.1(74) Handshake
ServerHello
Version 3.1
random[32]=
49 6d 8b ae a3 f2 91 29 54 95 6f 92 1b 9b a8 b6
ba 7c 4d c3 23 c4 39 1a 56 9f d5 4f 9a b6 a4 5b
session_id[32]=
fc 04 15 44 52 af 17 f3 98 6c 15 ac e2 06 6f ce
e7 b7 31 a0 80 1a d0 60 61 36 fb 46 a6 24 10 b6
cipherSuite TLS_RSA_WITH_RC4_128_MD5
compressionMethod NULL
4 3 0.0608 (0.0000) S>CV3.1(812) Handshake
Certificate
4 4 0.0608 (0.0000) S>CV3.1(4) Handshake
ServerHelloDone
3 2 0.0708 (0.0691) S>CV3.1(74) Handshake
ServerHello
Version 3.1
random[32]=
49 6d 8b ae dc d4 d3 2c 5c a2 ea aa 34 9d 75 34
6d 22 92 67 8c 89 fd b1 96 b7 3f 0d 8b bb 43 f8
session_id[32]=
a3 3a 09 ba b5 4c f3 b2 67 be 4d 09 4a c2 b4 16
68 e9 f6 2c 3f 99 f1 68 73 0f 43 0b cb 19 f9 50
cipherSuite TLS_RSA_WITH_RC4_128_MD5
compressionMethod NULL
3 3 0.0708 (0.0000) S>CV3.1(812) Handshake
Certificate
3 4 0.0708 (0.0000) S>CV3.1(4) Handshake
ServerHelloDone
4 5 0.0688 (0.0080) C>SV3.1(134) Handshake
ClientKeyExchange
EncryptedPreMasterSecret[128]=
50 40 a9 5f 4b f2 b3 60 87 36 0c 1a 86 b4 0d 13
c8 61 64 2c da 8b bf 1d c0 dd 33 ee 79 47 f4 ec
23 82 2e e4 9b 4e dd 05 0f b0 1c 2d 84 e1 43 0e
38 85 73 23 bd f7 68 03 1a 99 ad b3 e4 1f fd 33
91 bc 36 f8 06 00 e7 f0 b5 88 1e 70 47 c9 6e a8
50 e6 42 db a9 03 4d 94 2d c2 69 84 b3 49 b6 ff
45 70 96 7f d3 69 25 7f 5c 4f 4d b3 2c 97 9f 18
de a3 cf 31 96 de 98 eb 6a 9a 83 d2 60 e9 67 9a
4 6 0.0688 (0.0000) C>SV3.1(1) ChangeCipherSpec
4 7 0.0688 (0.0000) C>SV3.1(32) Handshake
1 11 0.1204 (0.0597) S>CV3.1(30) application_data
3 5 0.0789 (0.0080) C>SV3.1(134) Handshake
ClientKeyExchange
EncryptedPreMasterSecret[128]=
8e a3 a1 c2 b0 8b 5d 65 57 3d 23 9a 3a 74 9e 7d
f0 bd 3e bd 89 80 31 20 fe 12 d6 5e 37 06 01 a7
62 0a ae 8a ab 02 50 26 aa 56 72 ef 08 43 10 8a
9c 4a a9 ac 3f 51 38 89 e9 f3 c6 ad 07 7f 77 74
8e ba f3 ab 90 00 30 c3 58 a9 82 30 3d 6a b2 7a
6b 37 50 04 30 1d 45 9f 1b 2d 0f 65 15 e3 5d 31
cf be 22 03 25 e2 e7 b1 0d ba 17 3f 64 ad 65 01
bc de 3d 23 fa 48 17 d2 13 c8 bb 20 a0 2c 11 61
3 6 0.0789 (0.0000) C>SV3.1(1) ChangeCipherSpec
3 7 0.0789 (0.0000) C>SV3.1(32) Handshake
2 11 0.1251 (0.0543) S>CV3.1(30) application_data
3 8 0.1083 (0.0293) S>CV3.1(1) ChangeCipherSpec
3 9 0.1083 (0.0000) S>CV3.1(32) Handshake
3 10 0.1094 (0.0011) C>SV3.1(79) application_data
4 8 0.1080 (0.0391) S>CV3.1(1) ChangeCipherSpec
4 9 0.1080 (0.0000) S>CV3.1(32) Handshake
4 10 0.1087 (0.0007) C>SV3.1(79) application_data
3 11 0.1487 (0.0393) S>CV3.1(30) application_data
4 11 0.1632 (0.0544) S>CV3.1(30) application_data
1 12 1.4420 (1.3216) C>SV3.1(23) application_data
1 13 1.4427 (0.0006) C>SV3.1(18) Alert
1 1.4427 (0.0000) C>S TCP FIN
5 1 0.0016 (0.0016) C>SV3.1(103) Handshake
ClientHello
Version 3.1
random[32]=
00 00 71 1e ea 5c b1 67 fd 45 ce 44 3b e1 f6 47
a8 c4 27 f6 9c 65 37 9e a7 ef fe c1 bb 18 00 5d
resume [32]=
a6 a2 aa 1a d7 e8 4e 0a 9b ee 29 6c 32 ca 25 ed
31 7c 33 1c c8 48 d4 15 d8 aa f9 cb 29 af 14 55
cipher suites
TLS_DHE_DSS_WITH_RC4_128_SHA
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
TLS_RSA_WITH_RC4_128_MD5
Unknown value 0xfeff
TLS_RSA_WITH_3DES_EDE_CBC_SHA
Unknown value 0xfefe
TLS_DHE_RSA_WITH_DES_CBC_SHA
TLS_DHE_DSS_WITH_DES_CBC_SHA
TLS_RSA_WITH_DES_CBC_SHA
TLS_RSA_EXPORT1024_WITH_RC4_56_SHA
TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA
TLS_RSA_EXPORT_WITH_RC4_40_MD5
TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5
compression methods
NULL
1 14 1.4526 (0.0099) S>CV3.1(18) Alert
1 1.4527 (0.0000) S>C TCP FIN
2 12 1.4419 (1.3167) C>SV3.1(23) application_data
2 13 1.4425 (0.0006) C>SV3.1(18) Alert
2 1.4425 (0.0000) C>S TCP FIN
3 12 1.4204 (1.2717) C>SV3.1(23) application_data
6 1 0.0014 (0.0014) C>SV3.1(103) Handshake
ClientHello
Version 3.1
random[32]=
00 00 71 1e ff cc 94 cc 92 b2 21 2a e7 db 67 95
93 28 3c e1 75 96 0b 2a f0 7d f8 be f0 d0 70 f6
resume [32]=
a2 1b 05 9d c2 f4 b6 df 03 6a 6a 51 8e de eb d9
67 f4 49 77 bb 4d f5 f7 75 89 38 b3 67 93 2e c9
cipher suites
TLS_DHE_DSS_WITH_RC4_128_SHA
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
TLS_RSA_WITH_RC4_128_MD5
Unknown value 0xfeff
TLS_RSA_WITH_3DES_EDE_CBC_SHA
Unknown value 0xfefe
TLS_DHE_RSA_WITH_DES_CBC_SHA
TLS_DHE_DSS_WITH_DES_CBC_SHA
TLS_RSA_WITH_DES_CBC_SHA
TLS_RSA_EXPORT1024_WITH_RC4_56_SHA
TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA
TLS_RSA_EXPORT_WITH_RC4_40_MD5
TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5
compression methods
NULL
3 13 1.4210 (0.0006) C>SV3.1(18) Alert
3 1.4210 (0.0000) C>S TCP FIN
7 1 0.0014 (0.0014) C>SV3.1(103) Handshake
ClientHello
Version 3.1
random[32]=
00 00 71 1e 2b ec d0 0d 45 c7 3c 34 34 50 66 fc
62 3a 96 15 2b c9 b7 78 dd 61 22 6c 31 a5 5a 3e
resume [32]=
a3 3a 09 ba b5 4c f3 b2 67 be 4d 09 4a c2 b4 16
68 e9 f6 2c 3f 99 f1 68 73 0f 43 0b cb 19 f9 50
cipher suites
TLS_DHE_DSS_WITH_RC4_128_SHA
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
TLS_RSA_WITH_RC4_128_MD5
Unknown value 0xfeff
TLS_RSA_WITH_3DES_EDE_CBC_SHA
Unknown value 0xfefe
TLS_DHE_RSA_WITH_DES_CBC_SHA
TLS_DHE_DSS_WITH_DES_CBC_SHA
TLS_RSA_WITH_DES_CBC_SHA
TLS_RSA_EXPORT1024_WITH_RC4_56_SHA
TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA
TLS_RSA_EXPORT_WITH_RC4_40_MD5
TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5
compression methods
NULL
2 14 1.4529 (0.0104) S>CV3.1(18) Alert
4 12 1.4346 (1.2714) C>SV3.1(23) application_data
4 13 1.4352 (0.0005) C>SV3.1(18) Alert
4 1.4352 (0.0000) C>S TCP FIN
8 1 0.0013 (0.0013) C>SV3.1(103) Handshake
ClientHello
Version 3.1
random[32]=
00 00 71 1e 1d 53 08 8f 7b 01 5f b5 a4 1e ee e0
38 77 9e dd c9 d9 50 0d e7 cf 29 2d 74 7f ec ba
resume [32]=
fc 04 15 44 52 af 17 f3 98 6c 15 ac e2 06 6f ce
e7 b7 31 a0 80 1a d0 60 61 36 fb 46 a6 24 10 b6
cipher suites
TLS_DHE_DSS_WITH_RC4_128_SHA
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
TLS_RSA_WITH_RC4_128_MD5
Unknown value 0xfeff
TLS_RSA_WITH_3DES_EDE_CBC_SHA
Unknown value 0xfefe
TLS_DHE_RSA_WITH_DES_CBC_SHA
TLS_DHE_DSS_WITH_DES_CBC_SHA
TLS_RSA_WITH_DES_CBC_SHA
TLS_RSA_EXPORT1024_WITH_RC4_56_SHA
TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA
TLS_RSA_EXPORT_WITH_RC4_40_MD5
TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5
compression methods
NULL
3 14 1.4487 (0.0277) S>CV3.1(18) Alert
3 1.4488 (0.0000) S>C TCP FIN
4 14 1.4594 (0.0241) S>CV3.1(18) Alert
4 1.4594 (0.0000) S>C TCP FIN
5 2 0.0778 (0.0761) S>CV3.1(74) Handshake
ServerHello
Version 3.1
random[32]=
49 6d 8b af 42 17 bc 06 4f e8 7f 23 10 9c c8 07
97 31 c6 36 33 04 62 16 8e 9e e1 df 7d 29 67 1d
session_id[32]=
a6 a2 aa 1a d7 e8 4e 0a 9b ee 29 6c 32 ca 25 ed
31 7c 33 1c c8 48 d4 15 d8 aa f9 cb 29 af 14 55
cipherSuite TLS_RSA_WITH_RC4_128_MD5
compressionMethod NULL
5 3 0.0778 (0.0000) S>CV3.1(1) ChangeCipherSpec
5 4 0.0778 (0.0000) S>CV3.1(32) Handshake
5 5 0.0796 (0.0018) C>SV3.1(1) ChangeCipherSpec
5 6 0.0796 (0.0000) C>SV3.1(32) Handshake
5 7 0.0796 (0.0000) C>SV3.1(79) application_data
5 8 0.0803 (0.0006) C>SV3.1(626) application_data
7 2 0.0718 (0.0703) S>CV3.1(74) Handshake
ServerHello
Version 3.1
random[32]=
49 6d 8b af c2 71 62 1e ad 23 c4 60 af 71 54 ee
2c 33 8f 55 de d5 13 46 9d 30 aa c5 2e 55 54 7e
session_id[32]=
a3 3a 09 ba b5 4c f3 b2 67 be 4d 09 4a c2 b4 16
68 e9 f6 2c 3f 99 f1 68 73 0f 43 0b cb 19 f9 50
cipherSuite TLS_RSA_WITH_RC4_128_MD5
compressionMethod NULL
7 3 0.0718 (0.0000) S>CV3.1(1) ChangeCipherSpec
7 4 0.0718 (0.0000) S>CV3.1(32) Handshake
7 5 0.0736 (0.0018) C>SV3.1(1) ChangeCipherSpec
7 6 0.0736 (0.0000) C>SV3.1(32) Handshake
7 7 0.0736 (0.0000) C>SV3.1(79) application_data
7 8 0.0743 (0.0006) C>SV3.1(626) application_data
6 2 0.1089 (0.1075) S>CV3.1(74) Handshake
ServerHello
Version 3.1
random[32]=
49 6d 8b af ec 94 f0 14 b8 88 5e cf d7 02 3d b7
04 7e cf d8 a2 f5 e3 76 e3 1c 55 66 9a bd 9d c5
session_id[32]=
a2 1b 05 9d c2 f4 b6 df 03 6a 6a 51 8e de eb d9
67 f4 49 77 bb 4d f5 f7 75 89 38 b3 67 93 2e c9
cipherSuite TLS_RSA_WITH_RC4_128_MD5
compressionMethod NULL
6 3 0.1089 (0.0000) S>CV3.1(1) ChangeCipherSpec
6 4 0.1089 (0.0000) S>CV3.1(32) Handshake
6 5 0.1107 (0.0017) C>SV3.1(1) ChangeCipherSpec
6 6 0.1107 (0.0000) C>SV3.1(32) Handshake
6 7 0.1107 (0.0000) C>SV3.1(79) application_data
6 8 0.1113 (0.0006) C>SV3.1(626) application_data
8 2 0.1051 (0.1038) S>CV3.1(74) Handshake
ServerHello
Version 3.1
random[32]=
49 6d 8b af 66 e0 90 55 c2 9b 48 5d 15 f0 6e 02
33 58 b6 4d 8a 31 ca 7a 8f 93 2e af 14 e5 f4 e2
session_id[32]=
fc 04 15 44 52 af 17 f3 98 6c 15 ac e2 06 6f ce
e7 b7 31 a0 80 1a d0 60 61 36 fb 46 a6 24 10 b6
cipherSuite TLS_RSA_WITH_RC4_128_MD5
compressionMethod NULL
8 3 0.1051 (0.0000) S>CV3.1(1) ChangeCipherSpec
8 4 0.1051 (0.0000) S>CV3.1(32) Handshake
8 5 0.1069 (0.0017) C>SV3.1(1) ChangeCipherSpec
8 6 0.1069 (0.0000) C>SV3.1(32) Handshake
8 7 0.1069 (0.0000) C>SV3.1(79) application_data
8 8 0.1076 (0.0006) C>SV3.1(626) application_data