Another one: A TLS packet with unexpected length was received.

Hello everyone,

i am currently implementing a handshaking procedure. Everything works
fine when the client chooses not to use TLS. But when TLS is requested,
the gnutls_handshake() fails.

The client reports the following error: GNUTLS ERROR: A TLS packet with
unexpected length was received.

The server reports no error, because gnutls_handshake() seems to wait
for something and just blocks.

Here is some debug data (loglevel 7).

--------------- Server ---------------
REC[93558b8]: Expected Packet[0] Handshake(22) with length: 1
REC[93558b8]: Received Packet[0] Handshake(22) with length: 64
ASSERT: gnutls_cipher.c:204
REC[93558b8]: Decrypted Packet[0] Handshake(22) with length: 64
HSK[93558b8]: CLIENT HELLO was received [64 bytes]
HSK[93558b8]: Client's version: 3.2
ASSERT: gnutls_db.c:238
EXT[93558b8]: Received extension 'CERT_TYPE/9'
EXT[93558b8]: Received extension 'CERT_TYPE/9'
ASSERT: ext_cert_type.c:106
ASSERT: ext_cert_type.c:106
ASSERT: ext_cert_type.c:123
HSK[93558b8]: Keeping ciphersuite: ANON_DH_ARCFOUR_MD5
HSK[93558b8]: Keeping ciphersuite: ANON_DH_3DES_EDE_CBC_SHA1
HSK[93558b8]: Keeping ciphersuite: ANON_DH_AES_128_CBC_SHA1
HSK[93558b8]: Keeping ciphersuite: ANON_DH_AES_256_CBC_SHA1
HSK[93558b8]: Keeping ciphersuite: ANON_DH_CAMELLIA_128_CBC_SHA
HSK[93558b8]: Keeping ciphersuite: ANON_DH_CAMELLIA_256_CBC_SHA1
HSK[93558b8]: Selected cipher suite: ANON_DH_AES_128_CBC_SHA1
HSK[93558b8]: Selected Compression Method: NULL
HSK[93558b8]: SessionID:
259495b9dd31479d1913bed547e77bfedde5f38a4f810a0c79d66b9bd9510f62
HSK[93558b8]: SERVER HELLO was send [74 bytes]
REC[93558b8]: Sending Packet[0] Handshake(22) with length: 74
ASSERT: gnutls_cipher.c:204
REC[93558b8]: Sent Packet[1] Handshake(22) with length: 79
--------------------------------------


--------------- Client ---------------
HSK[9bf1b58]: Keeping ciphersuite: ANON_DH_AES_128_CBC_SHA1
HSK[9bf1b58]: Keeping ciphersuite: ANON_DH_CAMELLIA_128_CBC_SHA1
HSK[9bf1b58]: Keeping ciphersuite: ANON_DH_AES_256_CBC_SHA1
HSK[9bf1b58]: Keeping ciphersuite: ANON_DH_CAMELLIA_256_CBC_SHA1
HSK[9bf1b58]: Keeping ciphersuite: ANON_DH_3DES_EDE_CBC_SHA1
HSK[9bf1b58]: Keeping ciphersuite: ANON_DH_ARCFOUR_MD5
EXT[9bf1b58]: Sending extension CERT_TYPE
HSK[9bf1b58]: CLIENT HELLO was send [64 bytes]
REC[9bf1b58]: Sending Packet[0] Handshake(22) with length: 64
ASSERT: gnutls_cipher.c:204
WRITE: Will write 69 bytes to 4.
WRITE: wrote 69 bytes to 4. Left 0 bytes. Total 69 bytes.
0000 - 16 03 02 00 40 01 00 00 3c 03 02 48 d2 00 41 bb
0001 - 22 27 d1 ae 80 fd 96 1c e9 81 a2 bc c4 03 95 4b
0002 - f9 10 2f 9a b7 c3 fe 5a e6 58 4a 00 00 0c 00 34
0003 - 00 46 00 3a 00 89 00 1b 00 18 01 00 00 07 00 09
0004 - 00 03 02 00 01
REC[9bf1b58]: Sent Packet[1] Handshake(22) with length: 69
READ: Got 5 bytes from 4
READ: read 5 bytes from 4
0000 - 16 03 02 00 4a
RB: Have 0 bytes into buffer. Adding 5 bytes.
RB: Requested 5 bytes
REC[9bf1b58]: Expected Packet[0] Handshake(22) with length: 1
REC[9bf1b58]: Received Packet[0] Handshake(22) with length: 74
READ: Got 74 bytes from 4
READ: read 74 bytes from 4
0000 - 02 00 00 46 03 02 48 d2 00 41 8e 8a 8d 30 de 33
0001 - 5f 2b f8 3f 93 bf 0e e8 5f 1a 68 ed f0 d6 82 1c
0002 - cd d7 d9 97 8b 64 20 25 94 95 b9 dd 31 47 9d 19
0003 - 13 be d5 47 e7 7b fe dd e5 f3 8a 4f 81 0a 0c 79
0004 - d6 6b 9b d9 51 0f 62 00 34 00
RB: Have 5 bytes into buffer. Adding 74 bytes.
RB: Requested 79 bytes
ASSERT: gnutls_cipher.c:204
REC[9bf1b58]: Decrypted Packet[0] Handshake(22) with length: 74
HSK[9bf1b58]: SERVER HELLO was received [74 bytes]
HSK[9bf1b58]: Server's version: 3.2
HSK[9bf1b58]: SessionID length: 32
HSK[9bf1b58]: SessionID
259495b9dd31479d1913bed547e77bfedde5f38a4f810a0c79d66b9bd9510f62
HSK[9bf1b58]: Selected cipher suite: ANON_DH_AES_128_CBC_SHA1
ASSERT: gnutls_extensions.c:125
READ: Got 0 bytes from 4
READ: read 0 bytes from 4
0000 -
ASSERT: gnutls_buffers.c:638
ASSERT: gnutls_record.c:909
ASSERT: gnutls_buffers.c:1150
ASSERT: gnutls_handshake.c:1043
ASSERT: gnutls_kx.c:410
ASSERT: gnutls_handshake.c:2364
--------------------------------------

As there seems to be handshaking conversation and the client starts the
conversation I don't know where to search for the error. Client and
server and both on the same machine, using the same GNUTLS library.

Can anybody help me?

Thank you!

So long
Lennart



_______________________________________________
Help-gnutls mailing list
Help-gnutls@...
http://lists.gnu.org/mailman/listinfo/help-gnutls

Lennart Koopmann <lennart@...> writes:

I don't see anything wrong here, it looks like the server didn't send
any extensions (0 bytes).  Can you enable more debugging, e.g., log
level 4711?

If anyone else spots anything, please tell us.

Btw, which version are you using?

/Simon


_______________________________________________
Help-gnutls mailing list
Help-gnutls@...
http://lists.gnu.org/mailman/listinfo/help-gnutls

Thank you for your help!

> Btw, which version are you using?

I am using version 2.5.2.

> Can you enable more debugging, e.g., log
> level 4711?

Here you are:

--------------- Server ---------------
READ: Got 5 bytes from 6
READ: read 5 bytes from 6
0000 - 16 03 02 00 40
RB: Have 0 bytes into buffer. Adding 5 bytes.
RB: Requested 5 bytes
REC[9e9a880]: Expected Packet[0] Handshake(22) with length: 1
REC[9e9a880]: Received Packet[0] Handshake(22) with length: 64
READ: Got 64 bytes from 6
READ: read 64 bytes from 6
0000 - 01 00 00 3c 03 02 48 d2 2c 91 72 a1 bb bf d8 6b
0001 - 3d df 9d 50 be a9 26 af ac 2c aa 93 48 83 db fb
0002 - 45 26 35 55 fd be 00 00 0c 00 34 00 46 00 3a 00
0003 - 89 00 1b 00 18 01 00 00 07 00 09 00 03 02 00 01
0004 -
RB: Have 5 bytes into buffer. Adding 64 bytes.
RB: Requested 69 bytes
ASSERT: gnutls_cipher.c:204
REC[9e9a880]: Decrypted Packet[0] Handshake(22) with length: 64
BUF[HSK]: Inserted 64 bytes of Data(22)
BUF[REC][HD]: Read 1 bytes of Data(22)
BUF[REC][HD]: Read 3 bytes of Data(22)
HSK[9e9a880]: CLIENT HELLO was received [64 bytes]
BUF[REC][HD]: Read 60 bytes of Data(22)
BUF[HSK]: Peeked 0 bytes of Data
BUF[HSK]: Emptied buffer
BUF[HSK]: Inserted 4 bytes of Data
BUF[HSK]: Inserted 60 bytes of Data
HSK[9e9a880]: Client's version: 3.2
ASSERT: gnutls_db.c:238
EXT[9e9a880]: Received extension 'CERT_TYPE/9'
EXT[9e9a880]: Received extension 'CERT_TYPE/9'
ASSERT: ext_cert_type.c:106
ASSERT: ext_cert_type.c:106
ASSERT: ext_cert_type.c:123
HSK[9e9a880]: Keeping ciphersuite: ANON_DH_ARCFOUR_MD5
HSK[9e9a880]: Keeping ciphersuite: ANON_DH_3DES_EDE_CBC_SHA1
HSK[9e9a880]: Keeping ciphersuite: ANON_DH_AES_128_CBC_SHA1
HSK[9e9a880]: Keeping ciphersuite: ANON_DH_AES_256_CBC_SHA1
HSK[9e9a880]: Keeping ciphersuite: ANON_DH_CAMELLIA_128_CBC_SHA1
HSK[9e9a880]: Keeping ciphersuite: ANON_DH_CAMELLIA_256_CBC_SHA1
HSK[9e9a880]: Selected cipher suite: ANON_DH_AES_128_CBC_SHA1
HSK[9e9a880]: Selected Compression Method: NULL
HSK[9e9a880]: SessionID
ce6b8f11699b491028039ed6c8cc58514ba2b62f627dafadc7e7554005f03eaf
HSK[9e9a880]: SERVER HELLO was send [74 bytes]
BUF[HSK]: Peeked 64 bytes of Data
BUF[HSK]: Emptied buffer
REC[9e9a880]: Sending Packet[0] Handshake(22) with length: 74
ASSERT: gnutls_cipher.c:204
WRITE: Will write 79 bytes to 6.
WRITE: wrote 79 bytes to 6. Left 0 bytes. Total 79 bytes.
0000 - 16 03 02 00 4a 02 00 00 46 03 02 48 d2 2c 91 05
0001 - e5 a3 ea a3 f8 5c 23 98 c4 79 77 9c ff 75 7c 7d
0002 - 2a 3b be 6b a0 ea 0b 7a 51 5d 43 20 ce 6b 8f 11
0003 - 69 9b 49 10 28 03 9e d6 c8 cc 58 51 4b a2 b6 2f
0004 - 62 7d af ad c7 e7 55 40 05 f0 3e af 00 34 00
REC[9e9a880]: Sent Packet[1] Handshake(22) with length: 79
--------------------------------------

--------------- Client ---------------
HSK[8452430]: Keeping ciphersuite: ANON_DH_AES_128_CBC_SHA1
HSK[8452430]: Keeping ciphersuite: ANON_DH_CAMELLIA_128_CBC_SHA1
HSK[8452430]: Keeping ciphersuite: ANON_DH_AES_256_CBC_SHA1
HSK[8452430]: Keeping ciphersuite: ANON_DH_CAMELLIA_256_CBC_SHA1
HSK[8452430]: Keeping ciphersuite: ANON_DH_3DES_EDE_CBC_SHA1
HSK[8452430]: Keeping ciphersuite: ANON_DH_ARCFOUR_MD5
EXT[8452430]: Sending extension CERT_TYPE
HSK[8452430]: CLIENT HELLO was send [64 bytes]
BUF[HSK]: Peeked 0 bytes of Data
BUF[HSK]: Emptied buffer
REC[8452430]: Sending Packet[0] Handshake(22) with length: 64
ASSERT: gnutls_cipher.c:204
WRITE: Will write 69 bytes to 4.
WRITE: wrote 69 bytes to 4. Left 0 bytes. Total 69 bytes.
0000 - 16 03 02 00 40 01 00 00 3c 03 02 48 d2 2c 91 72
0001 - a1 bb bf d8 6b 3d df 9d 50 be a9 26 af ac 2c aa
0002 - 93 48 83 db fb 45 26 35 55 fd be 00 00 0c 00 34
0003 - 00 46 00 3a 00 89 00 1b 00 18 01 00 00 07 00 09
0004 - 00 03 02 00 01
REC[8452430]: Sent Packet[1] Handshake(22) with length: 69
READ: Got 5 bytes from 4
READ: read 5 bytes from 4
0000 - 16 03 02 00 4a
RB: Have 0 bytes into buffer. Adding 5 bytes.
RB: Requested 5 bytes
REC[8452430]: Expected Packet[0] Handshake(22) with length: 1
REC[8452430]: Received Packet[0] Handshake(22) with length: 74
READ: Got 74 bytes from 4
READ: read 74 bytes from 4
0000 - 02 00 00 46 03 02 48 d2 2c 91 05 e5 a3 ea a3 f8
0001 - 5c 23 98 c4 79 77 9c ff 75 7c 7d 2a 3b be 6b a0
0002 - ea 0b 7a 51 5d 43 20 ce 6b 8f 11 69 9b 49 10 28
0003 - 03 9e d6 c8 cc 58 51 4b a2 b6 2f 62 7d af ad c7
0004 - e7 55 40 05 f0 3e af 00 34 00
RB: Have 5 bytes into buffer. Adding 74 bytes.
RB: Requested 79 bytes
ASSERT: gnutls_cipher.c:204
REC[8452430]: Decrypted Packet[0] Handshake(22) with length: 74
BUF[HSK]: Inserted 74 bytes of Data(22)
BUF[REC][HD]: Read 1 bytes of Data(22)
BUF[REC][HD]: Read 3 bytes of Data(22)
HSK[8452430]: SERVER HELLO was received [74 bytes]
BUF[REC][HD]: Read 70 bytes of Data(22)
BUF[HSK]: Peeked 0 bytes of Data
BUF[HSK]: Emptied buffer
BUF[HSK]: Inserted 4 bytes of Data
BUF[HSK]: Inserted 70 bytes of Data
HSK[8452430]: Server's version: 3.2
HSK[8452430]: SessionID length: 32
HSK[8452430]: SessionID
ce6b8f11699b491028039ed6c8cc58514ba2b62f627dafadc7e7554005f03eaf
HSK[8452430]: Selected cipher suite: ANON_DH_AES_128_CBC_SHA1
ASSERT: gnutls_extensions.c:125
READ: Got 0 bytes from 4
READ: read 0 bytes from 4
0000 -
ASSERT: gnutls_buffers.c:638
ASSERT: gnutls_record.c:909
ASSERT: gnutls_buffers.c:1150
ASSERT: gnutls_handshake.c:1043
ASSERT: gnutls_kx.c:410
ASSERT: gnutls_handshake.c:2364
BUF[HSK]: Cleared Data from buffer

Handshake failed
GNUTLS ERROR: A TLS packet with unexpected length was received.
--------------------------------------



_______________________________________________
Help-gnutls mailing list
Help-gnutls@...
http://lists.gnu.org/mailman/listinfo/help-gnutls

Lennart Koopmann wrote:
>
> As there seems to be handshaking conversation and the client starts the
> conversation I don't know where to search for the error. Client and
> server and both on the same machine, using the same GNUTLS library.

There must be an error with your transport layer functions. Can you
verify that the data actually arrive to gnutls functions? Do you see
data on the network?

regards,
Nikos


_______________________________________________
Help-gnutls mailing list
Help-gnutls@...
http://lists.gnu.org/mailman/listinfo/help-gnutls

Am Samstag, den 20.09.2008, 14:27 +0300 schrieb Nikos Mavrogiannopoulos:
> There must be an error with your transport layer functions. Can you
> verify that the data actually arrive to gnutls functions? Do you see
> data on the network?

Hey Nikos,

sorry for the delay. I had a lot of work last week. Here is what I can
see with wireshark:

Client: SENSORSEND_GNUTLS
Server: TLS-OK
Client: STARTTLS
Client: ....@...<..H..j..K.t.......N..3...>.w'..(."....4.F.:.................
Server: ....J...F..H...%....`"b-........2..x...).cV..2...(,...........x...u........4.

This looks quite normal to me. There seems to be normal TLS
conversation.

Thank you.

So long
Lennart



_______________________________________________
Help-gnutls mailing list
Help-gnutls@...
http://lists.gnu.org/mailman/listinfo/help-gnutls

Am Samstag, den 27.09.2008, 15:14 +0300 schrieb Nikos Mavrogiannopoulos:
> I'd prefer to see the actual wireshark output. The output you attach
> is not of any help to me.

I attached a saved wireshark capture. It shows one cycle of packets the
client is sending to the server. (A cycle like this is sent every 60
seconds)

Thank you.


_______________________________________________
Help-gnutls mailing list
Help-gnutls@...
http://lists.gnu.org/mailman/listinfo/help-gnutls

Am Samstag, den 27.09.2008, 16:16 +0300 schrieb Nikos Mavrogiannopoulos:
> In the capture you sent me I cannot see a full TLS handshake. I can
> see that the server sends a FIN after the server hello message and
> thus terminates the TCP connection, so the behavior you see looks
> normal.

What do you think this FIN comes from? The server blocks at
gnutls_handshake(), the client runs through it. So I think the FIN must
come from the inside of gnutls_handshake().

I just saw that there is a RST at the end of the capture. I forgot to
stop capturing before closing the server and client (what did of course
close the sockets). But I think you already noticed that.

Thanks for all your help.

Did anybody else encounter such an behaviour before?



_______________________________________________
Help-gnutls mailing list
Help-gnutls@...
http://lists.gnu.org/mailman/listinfo/help-gnutls

Lennart Koopmann wrote:
> Am Samstag, den 27.09.2008, 16:16 +0300 schrieb Nikos Mavrogiannopoulos:
>> In the capture you sent me I cannot see a full TLS handshake. I can
>> see that the server sends a FIN after the server hello message and
>> thus terminates the TCP connection, so the behavior you see looks
>> normal.
>
> What do you think this FIN comes from?

It cannot be from gnutls. If you believe it is not please provide a
small C program reproducing the problem.

regards,
Nikos


_______________________________________________
Help-gnutls mailing list
Help-gnutls@...
http://lists.gnu.org/mailman/listinfo/help-gnutls