Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Unable to session resumption with TLS1.3 #109

Open
ghost opened this issue May 3, 2021 · 2 comments
Open

Unable to session resumption with TLS1.3 #109

ghost opened this issue May 3, 2021 · 2 comments
Labels
question

Comments

@ghost
Copy link

ghost commented May 3, 2021

Able to do TLS1.2 Session Resumption.
unable to do TLS1.3 Session Resumption.

s_server log:

opessl_server openssl s_server -key mykey.pem -cert mycert.pem -msg -tls1_3
Using default temp DH parameters
ACCEPT
<<< ??? [length 0005]
    16 03 03 03 49
<<< TLS 1.3, Handshake [length 0349], ClientHello
    01 00 03 45 03 03 30 fa 77 2c 60 b4 20 bb 38 51
    d9 d4 7a cb 93 3d be 70 39 9b f6 c9 2d a3 3a f0
    1d 4f b7 70 e9 8c 00 02 8e 00 0a 00 2f 00 01 00
    02 00 3c 00 3d 00 35 00 41 00 84 00 07 00 09 00
    96 00 04 00 05 c0 9c c0 9d 00 9c 00 9d 00 0d 00
    10 00 13 00 16 00 17 00 19 00 18 00 1a 00 1b 00
    30 00 31 00 32 00 33 00 34 00 36 00 37 00 38 00
    39 00 3a c0 03 c0 04 c0 05 c0 08 c0 09 c0 0a c0
    0d c0 0e c0 0f c0 12 c0 13 c0 14 c0 27 c0 24 c0
    28 00 a1 00 a0 00 a5 00 a6 00 a7 00 9e 00 9f 00
    67 00 6b 00 6c 00 6d 00 15 c0 9e c0 9f 00 9a 00
    45 00 88 00 a2 00 a3 00 66 c0 31 c0 32 c0 11 c0
    2f c0 30 c0 2d c0 2e c0 2b c0 2c c0 ac c0 ad 13
    01 13 02 13 03 13 04 13 05 00 8c c0 aa c0 ab c0
    ab 00 8b 00 ae c0 a4 c0 a8 00 a8 00 8d 00 af c0
    a5 c0 a9 00 a9 00 8a 00 8f 00 90 c0 a6 00 aa 00
    91 00 b3 c0 a7 00 ab 00 8e c0 34 c0 35 c0 23 c0
    36 c0 38 c0 33 00 0f 00 3f 00 43 00 48 00 49 00
    4a 00 68 00 69 00 86 00 92 00 93 00 94 00 95 00
    98 00 ac 00 ad 00 b2 00 b6 00 b7 00 ba 00 bc 00
    be 00 c0 00 c2 00 c4 c0 02 c0 07 c0 0c c0 15 c0
    1d c0 20 c0 25 c0 26 c0 29 c0 2a c0 37 c0 3c c0
    3d c0 48 c0 49 c0 4a c0 4b c0 4c c0 4d c0 4e c0
    4f c0 50 c0 51 c0 52 c0 53 c0 54 c0 55 c0 5c c0
    5d c0 5e c0 5f c0 60 c0 61 c0 62 c0 63 c0 64 c0
    65 c0 66 c0 67 c0 68 c0 69 c0 6a c0 6b c0 6c c0
    6d c0 6e c0 6f c0 70 c0 71 c0 72 c0 73 c0 74 c0
    75 c0 76 c0 77 c0 78 c0 79 c0 7a c0 7b c0 7c c0
    7d c0 7e c0 7f c0 86 c0 87 c0 88 c0 89 c0 8a c0
    8b c0 8c c0 8d c0 8e c0 8f c0 90 c0 91 c0 92 c0
    93 c0 94 c0 95 c0 96 c0 97 c0 98 c0 99 c0 9a c0
    9b 00 2c 00 2d 00 2e 00 3b 00 47 00 b0 00 b1 00
    b4 00 b5 00 b8 00 b9 c0 01 c0 06 c0 0b c0 10 c0
    39 c0 3a c0 3b 00 0c 00 12 00 3e 00 40 00 42 00
    44 00 46 00 57 00 58 00 59 00 5a 00 6a 00 85 00
    87 00 89 00 97 00 99 00 9b 00 a4 00 bb 00 bd 00
    bf 00 c1 00 c3 00 c5 c0 16 c0 17 c0 18 c0 19 c0
    3e c0 3f c0 40 c0 41 c0 42 c0 43 c0 44 c0 45 c0
    46 c0 47 c0 56 c0 57 c0 58 c0 59 c0 5a c0 5b c0
    80 c0 81 c0 82 c0 83 c0 84 c0 85 00 81 00 83 ff
    85 ff 87 cc aa cc a9 cc a8 c0 b0 c0 b1 c0 b2 c0
    b3 c0 a0 c0 a1 c0 a2 c0 a3 c0 ae c0 af cc ab cc
    ac cc ad cc ae cc 12 cc 13 cc 14 cc 15 cc 16 cc
    17 cc 18 cc 19 00 00 01 00 00 8e 00 0b 00 02 01
    00 00 0a 00 3e 00 3c 00 0f 00 10 00 11 00 12 00
    13 00 14 00 15 00 16 00 17 00 18 00 19 00 01 00
    02 00 03 00 04 00 05 00 06 00 07 00 08 00 09 00
    0a 00 0b 00 0c 00 0d 00 0e 00 1d 00 1e 00 1a 00
    1b 00 1c 00 0d 00 08 00 06 04 01 04 03 08 04 00
    2b 00 03 02 03 04 00 33 00 26 00 24 00 1d 00 20
    b1 e8 23 6b 63 1e 19 d8 6b 28 a6 ff 4d 5f 4b 39
    d4 1e dd f4 7a b7 d3 a9 57 95 06 de c3 da 27 2a
    00 23 00 00 ff 01 00 01 00
>>> ??? [length 0005]
    16 03 03 00 5a
>>> TLS 1.3, Handshake [length 005a], ServerHello
    02 00 00 56 03 03 62 fd ac a2 ff 91 ec e2 ce 5d
    c7 a8 c9 7b c9 94 6d 2d b9 a6 62 85 06 08 c1 be
    20 7c 11 89 21 38 00 13 01 00 00 2e 00 2b 00 02
    03 04 00 33 00 24 00 1d 00 20 4a e3 a7 08 a4 3d
    6d d0 d9 08 b4 36 4e 94 e7 91 1b f2 d8 c7 68 41
    20 42 79 d8 e7 8d 93 98 52 4f
>>> ??? [length 0005]
    14 03 03 00 01
>>> TLS 1.3, ChangeCipherSpec [length 0001]
    01
>>> ??? [length 0005]
    17 03 03 00 17
>>> TLS 1.3 [length 0001]
    16
>>> TLS 1.3, Handshake [length 0006], EncryptedExtensions
    08 00 00 02 00 00
>>> ??? [length 0005]
    17 03 03 06 24
>>> TLS 1.3 [length 0001]
    16
>>> TLS 1.3, Handshake [length 0613], Certificate
    0b 00 06 0f 00 00 06 0b 00 06 06 30 82 06 02 30
    82 03 ea a0 03 02 01 02 02 14 33 83 ae 6f 91 b6
    57 a1 eb fd 32 c4 33 21 a4 a3 1a 6b a6 a1 30 0d
    06 09 2a 86 48 86 f7 0d 01 01 0b 05 00 30 81 87
    31 0b 30 09 06 03 55 04 06 13 02 49 4e 31 0b 30
    09 06 03 55 04 08 0c 02 54 53 31 0c 30 0a 06 03
    55 04 07 0c 03 48 59 44 31 12 30 10 06 03 55 04
    0a 0c 09 50 61 72 69 6d 69 74 68 61 31 0c 30 0a
    06 03 55 04 0b 0c 03 45 6e 67 31 15 30 13 06 03
    55 04 03 0c 0c 70 61 72 69 6d 69 74 68 61 2e 69
    6f 31 24 30 22 06 09 2a 86 48 86 f7 0d 01 09 01
    16 15 63 6f 6e 74 61 63 74 40 70 61 72 69 6d 69
    74 68 61 2e 63 6f 6d 30 1e 17 0d 32 30 31 31 30
    33 30 32 31 31 30 38 5a 17 0d 33 30 31 31 30 31
    30 32 31 31 30 38 5a 30 81 87 31 0b 30 09 06 03
    55 04 06 13 02 49 4e 31 0b 30 09 06 03 55 04 08
    0c 02 54 53 31 0c 30 0a 06 03 55 04 07 0c 03 48
    59 44 31 12 30 10 06 03 55 04 0a 0c 09 50 61 72
    69 6d 69 74 68 61 31 0c 30 0a 06 03 55 04 0b 0c
    03 45 6e 67 31 15 30 13 06 03 55 04 03 0c 0c 70
    61 72 69 6d 69 74 68 61 2e 69 6f 31 24 30 22 06
    09 2a 86 48 86 f7 0d 01 09 01 16 15 63 6f 6e 74
    61 63 74 40 70 61 72 69 6d 69 74 68 61 2e 63 6f
    6d 30 82 02 22 30 0d 06 09 2a 86 48 86 f7 0d 01
    01 01 05 00 03 82 02 0f 00 30 82 02 0a 02 82 02
    01 00 c2 44 ad 25 98 39 e0 59 94 76 8c 6b 6a ad
    14 c2 27 ab d1 ba c0 b4 30 2e 4d 31 ff 46 eb 62
    d3 d0 9c 11 ca 35 6b 22 d3 77 34 bf ea 67 01 7c
    66 dc 2c 12 ca 77 05 0d 8c 3d a3 60 77 63 4c bf
    87 98 30 e7 0a ec 47 7e 58 66 c2 c6 bf 3c 3b 25
    4e d0 67 d8 47 1f be 92 df dd e6 81 53 bb b9 bf
    b8 86 d1 da 65 c8 76 f0 bf 15 cb b5 48 c6 ec 47
    92 7a 05 94 29 a2 52 c3 1d 8a b6 db b3 2a 8c c7
    f3 a3 d6 cb 1c f5 9e 1a 5c 93 72 fb 36 e6 ef ad
    2a d8 da 9a 3b bc 68 86 0f 93 b1 79 19 ce 3d 6f
    da 80 65 31 08 c1 cb f9 dd 12 b3 f5 f1 39 7d 4b
    44 e5 d1 16 eb d4 86 3d fe a3 54 62 e4 a0 58 4c
    dc 3d fb 4f 66 f8 36 56 af 38 69 92 c3 23 57 f0
    6c a1 f9 71 ce 02 16 7f a7 f4 e9 1f 3d d1 7b 32
    a6 aa ef 25 a1 c9 15 1a 1c 10 18 2b 3d ab 4e 37
    3c d6 99 58 84 35 ae d8 32 16 09 d4 ea 76 96 65
    00 cf 05 c0 02 31 93 03 74 80 ad 78 42 ff 25 ff
    8a 40 af 73 e2 5e b7 6e e4 12 23 14 8e 5a a9 d6
    c0 7f 89 1a 9c a9 7f 66 83 b6 76 cf 54 d9 02 44
    ef cc 4b 1d 5e 49 d9 47 9e 8b cd 0f a3 0e 0b 75
    68 5a 2d e2 35 7a bc c0 34 da d5 44 ad 2a 17 91
    33 e1 59 a9 e3 da df ad 2a 5a fc dd c0 10 cf 63
    47 9d 1e f0 4b 51 5c f4 e6 d6 8b 9c be 2d a7 cb
    99 c0 2f f6 fd 5a f0 2c 99 88 31 d8 b0 ae ee fd
    fe 42 64 85 16 60 e8 fd a5 2d 07 12 8b ab da c3
    f8 d0 e5 03 c6 96 9e 86 a5 92 0e 67 73 7c 95 7c
    cc 76 64 27 f2 5f be 3d 1f 8e da 02 a6 bc cb 18
    5f 5d 8b c9 2a f9 5c 38 34 61 7e 0e c9 93 89 25
    81 34 e2 b3 fe e4 79 f8 a5 53 55 81 5d f1 d9 b4
    b0 d9 5f aa c2 12 14 39 62 2d 7a 7a 4a 69 5a 50
    ac c5 fe c6 c0 52 00 b1 3b 6f 6c 10 02 84 96 95
    f4 ea cb 6a 12 cd 81 87 cd 06 34 fe c9 20 51 87
    ec eb 02 03 01 00 01 a3 64 30 62 30 1d 06 03 55
    1d 0e 04 16 04 14 0d 0c b1 41 61 d0 a5 7b 09 ac
    ac 08 d8 f8 f5 c4 fd 37 10 fa 30 1f 06 03 55 1d
    23 04 18 30 16 80 14 0d 0c b1 41 61 d0 a5 7b 09
    ac ac 08 d8 f8 f5 c4 fd 37 10 fa 30 0f 06 03 55
    1d 13 01 01 ff 04 05 30 03 01 01 ff 30 0f 06 03
    55 1d 11 04 08 30 06 87 04 7f 00 00 01 30 0d 06
    09 2a 86 48 86 f7 0d 01 01 0b 05 00 03 82 02 01
    00 06 e3 08 c3 c0 08 38 e8 a0 72 cb 32 a1 04 00
    e8 87 0a 37 fb 04 eb 33 f9 d9 02 46 1a c3 b7 16
    16 9d f8 9b da 96 cb f1 9c ed 5c 76 fa 3a 7e 92
    a9 37 b6 2d 49 08 7c 4a 1b eb 70 12 f0 b3 34 b7
    70 a9 2d bd 77 4e 59 87 87 6c 0a 67 6a 10 61 bc
    26 fc 4b c3 95 6f e5 76 13 c5 fb 37 cf 25 41 3f
    ee 0a fb c7 ef 41 3f f4 c4 3c f7 7f 44 a1 6c 05
    59 90 81 b8 54 38 e6 7d 22 76 7e bf 87 15 dc fb
    3a 46 0e ff 70 18 b9 77 cf 23 db 32 79 5a b0 ea
    b1 4e 9e 03 56 af 37 82 b1 ef 56 ca d0 50 6a 37
    78 b7 6b 91 a0 51 15 bf c4 3f 36 e0 71 0c e7 13
    c4 9e 63 8b e9 d2 79 b7 c2 4e 92 ab 0b 72 9b b6
    e1 85 f6 fc a3 2c 34 d4 20 4e 6e 3c 2b 07 f0 28
    17 e4 4b 6f 8e 17 47 66 7c d8 d9 e5 d9 1a 4b 9f
    0f 7e 9f 1b 63 27 b6 af ce 67 96 1c bb 7a 4a 7b
    38 2c 18 66 4e ad bf 21 be 55 d9 0a 75 0b 86 83
    82 40 c1 b7 e2 e7 6b c9 3a 35 6e 92 10 d0 8e 2d
    38 6b fc 62 a3 dd c3 ec 56 09 35 c3 13 ec 34 3d
    8d 1a d8 41 2d 76 40 6c 40 66 11 ac 20 17 bb 11
    1a 3d 58 09 c7 9f 46 4f 57 a0 e8 14 61 2f 72 a3
    9e 01 97 f5 1b 79 c4 9d 03 4b e8 c8 b3 19 e8 1b
    61 08 d4 83 55 82 8a c5 15 70 2a 65 82 a0 cd d9
    fe df 06 83 3d a2 c1 1a a5 1c 90 0b e7 49 18 c5
    21 8d f6 3d bd 08 06 15 e5 a9 87 1f aa 70 96 82
    3c 47 cf 99 45 fd 31 f7 c4 7a 73 2d 13 71 f5 9d
    6f d1 d8 77 ea 08 22 69 26 e1 b6 1e e0 38 1a 9e
    32 84 f5 37 82 38 8f 69 97 08 8c c3 7a 27 f5 cb
    bd 08 a2 eb 2a 64 41 9f e3 7f e7 43 5b 05 7d d1
    98 89 a8 c9 a5 d6 24 cf 2d 4f a6 de f1 b9 ba f0
    32 ff 66 cc c7 25 d4 10 2a 21 0c c7 94 c3 97 06
    8e 98 57 fa c6 cd 61 74 2d 27 84 9b 8d 67 5b 63
    f9 99 80 2f 63 49 90 25 ef d2 f3 ce 69 ad be 73
    a7 00 00
>>> ??? [length 0005]
    17 03 03 02 19
>>> TLS 1.3 [length 0001]
    16
>>> TLS 1.3, Handshake [length 0208], CertificateVerify
    0f 00 02 04 08 04 02 00 b3 ca 82 91 3f c9 eb 32
    53 8b 5d 30 0c 9d aa ed 15 85 41 dc 61 d8 46 93
    89 c3 e2 62 b1 1c 0f 09 03 60 39 91 81 2f 0e d3
    bf e8 39 e6 d3 c8 bb bb 61 26 60 26 2c 26 80 e2
    01 33 04 83 18 56 66 17 e3 05 ba 34 8f 59 ea 7f
    cf d5 e2 97 84 5b c3 ad 1b a1 58 a0 06 79 f1 04
    c9 97 f7 62 b7 23 98 5f 0c c0 50 40 a0 a1 26 60
    3c 6c 53 9d a2 2f f1 60 28 e5 79 a3 55 42 94 17
    fd 7f 35 dd f4 38 44 41 0f b5 c2 53 00 cc 72 f0
    16 47 de f8 30 9b 9c 96 e1 05 7d 8f 72 13 7e b6
    77 e9 b1 03 51 67 3e 9f c2 04 82 a7 31 4d de f7
    da ff 61 c6 ea e1 7d f2 d2 dd 39 10 52 48 04 ae
    33 73 fb c3 e5 51 43 f7 7f c5 05 79 9e fb cd 92
    10 6b 7c 6d c1 e1 16 8f 5c 8d c5 b5 13 f7 13 7e
    12 15 6e ed 93 65 2d 64 13 3c 41 62 b9 f5 dc 01
    4e 8d 4a 52 0d 5b db 1a 8b 09 f2 04 3a 09 bc 54
    cb 2c 27 c4 95 82 62 27 b6 89 8c 67 03 a4 55 7a
    54 04 ee 2e 18 3d 56 fa 2e 72 f6 3a 08 6d e3 1d
    98 05 b1 4d 55 ec 3b 35 ba e3 74 ae b2 bb 75 21
    f2 03 aa 7c 3d ea 39 32 58 53 ae 90 0d b3 20 1b
    42 dd c0 ed 89 08 90 62 98 6a f3 86 d2 01 20 75
    10 b1 4c b5 f9 ef ad 6a 5e 06 09 07 9b 3b 02 99
    ce 89 84 4c 88 c3 08 6f ee 10 60 e6 eb 01 88 94
    3b 71 55 9f c5 d5 30 72 f9 e4 16 ba c3 f4 ba 6e
    26 b2 5c 54 e5 b3 c9 d0 22 86 0f 9d 54 1f 98 52
    e0 e8 0e 0d 00 ee c6 09 eb 0a 17 b4 ee 6b 28 75
    c9 2b 96 3a 78 60 e3 d3 c4 86 15 bb d2 16 be f0
    04 df 52 b5 2e 25 16 44 43 10 dc 2c 2c ae 9d 35
    58 f8 78 ec 22 b6 7a 4d b1 12 49 88 09 c0 51 18
    85 8d 1f f9 50 8c 50 75 cd 41 54 da a6 15 23 2a
    16 fd 03 30 65 10 ab 66 f2 35 1f 8d 2e bf fd 74
    42 e5 30 38 ff ad b6 b5 6b 08 a5 76 87 c3 4d a1
    15 d1 5d f5 a5 e8 8a 42
>>> ??? [length 0005]
    17 03 03 00 35
>>> TLS 1.3 [length 0001]
    16
>>> TLS 1.3, Handshake [length 0024], Finished
    14 00 00 20 7e 47 15 d8 eb ff 40 51 72 9b 05 6d
    7c b0 44 49 f9 2e 46 ed 5a 84 b4 39 73 22 72 9a
    2f 69 30 f4
<<< ??? [length 0005]
    14 03 03 00 01
<<< ??? [length 0005]
    17 03 03 00 35
<<< TLS 1.3 [length 0001]
    16
<<< TLS 1.3, Handshake [length 0024], Finished
    14 00 00 20 80 a4 a5 ba 63 2a c0 33 9c 16 d6 e6
    02 c5 e5 5f a7 19 8b ff f8 45 33 ee cb d9 b4 09
    14 3d ed 53
>>> ??? [length 0005]
    17 03 03 00 ea
>>> TLS 1.3 [length 0001]
    16
>>> TLS 1.3, Handshake [length 00d9], NewSessionTicket
    04 00 00 d5 00 00 1c 20 c8 be 7d 78 08 00 00 00
    00 00 00 00 00 00 c0 f3 ae ca 1e 8a a7 e3 6f 23
    a8 ab b9 c9 02 53 da af 81 99 4a 5c 7a cb 36 5a
    82 bf f3 f9 36 74 73 6d 0b 82 66 58 bf 3a 4d d1
    76 f6 60 3b 23 98 57 87 71 4c 45 bb 63 b8 d4 42
    4a ab eb a6 07 4d 1c 92 7c 90 ef b7 52 f0 3f 75
    bf ca 55 88 56 a6 64 b5 39 30 1c 93 70 aa 52 5c
    4d ce 8a 63 76 1f 39 b3 74 0f d2 91 d0 a4 96 f2
    1b f2 c8 e3 52 db 58 09 90 d8 f1 b3 1a a7 ad bf
    42 19 4d 77 bf a3 3c fe d6 7f 82 8c ad 1e 6d 1b
    84 99 57 8f 61 18 a6 e5 a1 55 8a db bb 74 3a 8d
    6a fa cf 77 ed 8f 11 c4 6d ce 27 4e 56 81 54 9d
    a7 4b 14 26 7a db 37 db fe 5a 59 b6 8e 98 51 51
    58 49 1d af 1a c9 11 00 00
>>> ??? [length 0005]
    17 03 03 00 da
>>> TLS 1.3 [length 0001]
    16
>>> TLS 1.3, Handshake [length 00c9], NewSessionTicket
    04 00 00 c5 00 00 1c 20 7b 0e 76 d0 08 00 00 00
    00 00 00 00 01 00 b0 f3 ae ca 1e 8a a7 e3 6f 23
    a8 ab b9 c9 02 53 da 34 69 20 30 fa cf 03 a1 e9
    8c 74 6b 55 99 f5 94 6b 45 cd bc ef ea 21 97 d0
    2d 4d 39 ae be 25 84 43 99 8e 70 63 ff 58 5e 38
    4a 1e 65 d7 35 46 c0 73 97 65 ac 70 9c f0 26 e8
    c5 47 c5 4b fd 5e 8d bb 40 c6 70 2c d1 2b 51 b0
    43 bc f9 0b ac 1b 8d 9b 8e d6 ec 3d f2 56 85 60
    b0 4c a2 33 e3 ad 46 6d 9f ef 54 08 d1 e2 8b ac
    da 21 8d 68 4b eb ab 49 a3 c7 bc 57 30 03 a9 d2
    44 7e 12 b5 3b d1 28 bb 3a 9d d5 81 1e 28 0c f9
    39 cc d8 c0 4b 06 43 46 65 cc 1a f7 53 04 2c b0
    f0 12 dc 0c c8 f2 97 00 00
-----BEGIN SSL SESSION PARAMETERS-----
MG0CAQECAgMEBAITAQQgHQIkhHV3keU/ucw0ZaLl/6ekjR9GLc/qpAhN7/ByE8AE
IH3rxf3pe8sdSHgq2jSbigL4hUMF3stIC0xplvUZGV/5oQYCBGCPnEiiBAICHCCk
BgQEAQAAAK4GAgR7DnbQ
-----END SSL SESSION PARAMETERS-----
Shared ciphers:AES128-SHA:AES128-SHA256:AES256-SHA256:AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:TLS_AES_128_GCM_SHA256:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:PSK-AES128-CBC-SHA:PSK-AES128-CBC-SHA256:PSK-AES128-GCM-SHA256:PSK-AES256-CBC-SHA:PSK-AES256-CBC-SHA384:PSK-AES256-GCM-SHA384:DHE-PSK-AES128-CBC-SHA:DHE-PSK-AES128-GCM-SHA256:DHE-PSK-AES256-CBC-SHA:DHE-PSK-AES256-CBC-SHA384:DHE-PSK-AES256-GCM-SHA384:ECDHE-PSK-AES128-CBC-SHA:ECDHE-ECDSA-AES128-SHA256:ECDHE-PSK-AES256-CBC-SHA:ECDHE-PSK-AES256-CBC-SHA384:RSA-PSK-AES128-CBC-SHA:RSA-PSK-AES256-CBC-SHA:RSA-PSK-AES128-GCM-SHA256
Signature Algorithms: RSA+SHA256:ECDSA+SHA256:RSA-PSS+SHA256
Shared Signature Algorithms: RSA+SHA256:ECDSA+SHA256:RSA-PSS+SHA256
Supported Elliptic Groups: secp160k1:secp160r1:secp160r2:secp192k1:P-192:secp224k1:P-224:secp256k1:P-256:P-384:P-521:K-163:sect163r1:B-163:sect193r1:sect193r2:K-233:B-233:sect239k1:K-283:B-283:K-409:B-409:K-571:B-571:X25519:X448:brainpoolP256r1:brainpoolP384r1:brainpoolP512r1
Shared Elliptic groups: P-256:P-384:P-521:X25519:X448
CIPHER is TLS_AES_128_GCM_SHA256
Secure Renegotiation IS NOT supported
ERROR
shutting down SSL
CONNECTION CLOSED
<<< ??? [length 0005]
    16 03 03 03 49
<<< TLS 1.3, Handshake [length 0349], ClientHello
    01 00 03 45 03 03 30 fa 7a 13 03 25 f4 1d 3e ba
    f8 98 6d a7 12 c8 2b cd 4d 55 4b f0 b5 40 23 c2
    9b 62 4d e9 ef 9c 00 02 8e 00 0a 00 2f 00 01 00
    02 00 3c 00 3d 00 35 00 41 00 84 00 07 00 09 00
    96 00 04 00 05 c0 9c c0 9d 00 9c 00 9d 00 0d 00
    10 00 13 00 16 00 17 00 19 00 18 00 1a 00 1b 00
    30 00 31 00 32 00 33 00 34 00 36 00 37 00 38 00
    39 00 3a c0 03 c0 04 c0 05 c0 08 c0 09 c0 0a c0
    0d c0 0e c0 0f c0 12 c0 13 c0 14 c0 27 c0 24 c0
    28 00 a1 00 a0 00 a5 00 a6 00 a7 00 9e 00 9f 00
    67 00 6b 00 6c 00 6d 00 15 c0 9e c0 9f 00 9a 00
    45 00 88 00 a2 00 a3 00 66 c0 31 c0 32 c0 11 c0
    2f c0 30 c0 2d c0 2e c0 2b c0 2c c0 ac c0 ad 13
    01 13 02 13 03 13 04 13 05 00 8c c0 aa c0 ab c0
    ab 00 8b 00 ae c0 a4 c0 a8 00 a8 00 8d 00 af c0
    a5 c0 a9 00 a9 00 8a 00 8f 00 90 c0 a6 00 aa 00
    91 00 b3 c0 a7 00 ab 00 8e c0 34 c0 35 c0 23 c0
    36 c0 38 c0 33 00 0f 00 3f 00 43 00 48 00 49 00
    4a 00 68 00 69 00 86 00 92 00 93 00 94 00 95 00
    98 00 ac 00 ad 00 b2 00 b6 00 b7 00 ba 00 bc 00
    be 00 c0 00 c2 00 c4 c0 02 c0 07 c0 0c c0 15 c0
    1d c0 20 c0 25 c0 26 c0 29 c0 2a c0 37 c0 3c c0
    3d c0 48 c0 49 c0 4a c0 4b c0 4c c0 4d c0 4e c0
    4f c0 50 c0 51 c0 52 c0 53 c0 54 c0 55 c0 5c c0
    5d c0 5e c0 5f c0 60 c0 61 c0 62 c0 63 c0 64 c0
    65 c0 66 c0 67 c0 68 c0 69 c0 6a c0 6b c0 6c c0
    6d c0 6e c0 6f c0 70 c0 71 c0 72 c0 73 c0 74 c0
    75 c0 76 c0 77 c0 78 c0 79 c0 7a c0 7b c0 7c c0
    7d c0 7e c0 7f c0 86 c0 87 c0 88 c0 89 c0 8a c0
    8b c0 8c c0 8d c0 8e c0 8f c0 90 c0 91 c0 92 c0
    93 c0 94 c0 95 c0 96 c0 97 c0 98 c0 99 c0 9a c0
    9b 00 2c 00 2d 00 2e 00 3b 00 47 00 b0 00 b1 00
    b4 00 b5 00 b8 00 b9 c0 01 c0 06 c0 0b c0 10 c0
    39 c0 3a c0 3b 00 0c 00 12 00 3e 00 40 00 42 00
    44 00 46 00 57 00 58 00 59 00 5a 00 6a 00 85 00
    87 00 89 00 97 00 99 00 9b 00 a4 00 bb 00 bd 00
    bf 00 c1 00 c3 00 c5 c0 16 c0 17 c0 18 c0 19 c0
    3e c0 3f c0 40 c0 41 c0 42 c0 43 c0 44 c0 45 c0
    46 c0 47 c0 56 c0 57 c0 58 c0 59 c0 5a c0 5b c0
    80 c0 81 c0 82 c0 83 c0 84 c0 85 00 81 00 83 ff
    85 ff 87 cc aa cc a9 cc a8 c0 b0 c0 b1 c0 b2 c0
    b3 c0 a0 c0 a1 c0 a2 c0 a3 c0 ae c0 af cc ab cc
    ac cc ad cc ae cc 12 cc 13 cc 14 cc 15 cc 16 cc
    17 cc 18 cc 19 00 00 01 00 00 8e 00 0b 00 02 01
    00 00 0a 00 3e 00 3c 00 0f 00 10 00 11 00 12 00
    13 00 14 00 15 00 16 00 17 00 18 00 19 00 01 00
    02 00 03 00 04 00 05 00 06 00 07 00 08 00 09 00
    0a 00 0b 00 0c 00 0d 00 0e 00 1d 00 1e 00 1a 00
    1b 00 1c 00 0d 00 08 00 06 04 01 04 03 08 04 00
    2b 00 03 02 03 04 00 33 00 26 00 24 00 1d 00 20
    b1 e8 23 6b 63 1e 19 d8 6b 28 a6 ff 4d 5f 4b 39
    d4 1e dd f4 7a b7 d3 a9 57 95 06 de c3 da 27 2a
    00 23 00 00 ff 01 00 01 00
>>> ??? [length 0005]
    16 03 03 00 5a
>>> TLS 1.3, Handshake [length 005a], ServerHello
    02 00 00 56 03 03 c5 f8 90 f5 be 72 f3 89 22 fb
    6b 1a 47 72 f4 3a c6 88 3b ae f1 72 9e 4d 66 92
    db 2f 30 16 94 9f 00 13 01 00 00 2e 00 2b 00 02
    03 04 00 33 00 24 00 1d 00 20 20 7f fc f1 9e bf
    9b b3 b8 5c 99 99 fd f9 f2 1b e9 b3 b8 28 16 c0
    cc 94 83 55 23 c8 3c 92 98 5c
>>> ??? [length 0005]
    14 03 03 00 01
>>> TLS 1.3, ChangeCipherSpec [length 0001]
    01
>>> ??? [length 0005]
    17 03 03 00 17
>>> TLS 1.3 [length 0001]
    16
>>> TLS 1.3, Handshake [length 0006], EncryptedExtensions
    08 00 00 02 00 00
>>> ??? [length 0005]
    17 03 03 06 24
>>> TLS 1.3 [length 0001]
    16
>>> TLS 1.3, Handshake [length 0613], Certificate
    0b 00 06 0f 00 00 06 0b 00 06 06 30 82 06 02 30
    82 03 ea a0 03 02 01 02 02 14 33 83 ae 6f 91 b6
    57 a1 eb fd 32 c4 33 21 a4 a3 1a 6b a6 a1 30 0d
    06 09 2a 86 48 86 f7 0d 01 01 0b 05 00 30 81 87
    31 0b 30 09 06 03 55 04 06 13 02 49 4e 31 0b 30
    09 06 03 55 04 08 0c 02 54 53 31 0c 30 0a 06 03
    55 04 07 0c 03 48 59 44 31 12 30 10 06 03 55 04
    0a 0c 09 50 61 72 69 6d 69 74 68 61 31 0c 30 0a
    06 03 55 04 0b 0c 03 45 6e 67 31 15 30 13 06 03
    55 04 03 0c 0c 70 61 72 69 6d 69 74 68 61 2e 69
    6f 31 24 30 22 06 09 2a 86 48 86 f7 0d 01 09 01
    16 15 63 6f 6e 74 61 63 74 40 70 61 72 69 6d 69
    74 68 61 2e 63 6f 6d 30 1e 17 0d 32 30 31 31 30
    33 30 32 31 31 30 38 5a 17 0d 33 30 31 31 30 31
    30 32 31 31 30 38 5a 30 81 87 31 0b 30 09 06 03
    55 04 06 13 02 49 4e 31 0b 30 09 06 03 55 04 08
    0c 02 54 53 31 0c 30 0a 06 03 55 04 07 0c 03 48
    59 44 31 12 30 10 06 03 55 04 0a 0c 09 50 61 72
    69 6d 69 74 68 61 31 0c 30 0a 06 03 55 04 0b 0c
    03 45 6e 67 31 15 30 13 06 03 55 04 03 0c 0c 70
    61 72 69 6d 69 74 68 61 2e 69 6f 31 24 30 22 06
    09 2a 86 48 86 f7 0d 01 09 01 16 15 63 6f 6e 74
    61 63 74 40 70 61 72 69 6d 69 74 68 61 2e 63 6f
    6d 30 82 02 22 30 0d 06 09 2a 86 48 86 f7 0d 01
    01 01 05 00 03 82 02 0f 00 30 82 02 0a 02 82 02
    01 00 c2 44 ad 25 98 39 e0 59 94 76 8c 6b 6a ad
    14 c2 27 ab d1 ba c0 b4 30 2e 4d 31 ff 46 eb 62
    d3 d0 9c 11 ca 35 6b 22 d3 77 34 bf ea 67 01 7c
    66 dc 2c 12 ca 77 05 0d 8c 3d a3 60 77 63 4c bf
    87 98 30 e7 0a ec 47 7e 58 66 c2 c6 bf 3c 3b 25
    4e d0 67 d8 47 1f be 92 df dd e6 81 53 bb b9 bf
    b8 86 d1 da 65 c8 76 f0 bf 15 cb b5 48 c6 ec 47
    92 7a 05 94 29 a2 52 c3 1d 8a b6 db b3 2a 8c c7
    f3 a3 d6 cb 1c f5 9e 1a 5c 93 72 fb 36 e6 ef ad
    2a d8 da 9a 3b bc 68 86 0f 93 b1 79 19 ce 3d 6f
    da 80 65 31 08 c1 cb f9 dd 12 b3 f5 f1 39 7d 4b
    44 e5 d1 16 eb d4 86 3d fe a3 54 62 e4 a0 58 4c
    dc 3d fb 4f 66 f8 36 56 af 38 69 92 c3 23 57 f0
    6c a1 f9 71 ce 02 16 7f a7 f4 e9 1f 3d d1 7b 32
    a6 aa ef 25 a1 c9 15 1a 1c 10 18 2b 3d ab 4e 37
    3c d6 99 58 84 35 ae d8 32 16 09 d4 ea 76 96 65
    00 cf 05 c0 02 31 93 03 74 80 ad 78 42 ff 25 ff
    8a 40 af 73 e2 5e b7 6e e4 12 23 14 8e 5a a9 d6
    c0 7f 89 1a 9c a9 7f 66 83 b6 76 cf 54 d9 02 44
    ef cc 4b 1d 5e 49 d9 47 9e 8b cd 0f a3 0e 0b 75
    68 5a 2d e2 35 7a bc c0 34 da d5 44 ad 2a 17 91
    33 e1 59 a9 e3 da df ad 2a 5a fc dd c0 10 cf 63
    47 9d 1e f0 4b 51 5c f4 e6 d6 8b 9c be 2d a7 cb
    99 c0 2f f6 fd 5a f0 2c 99 88 31 d8 b0 ae ee fd
    fe 42 64 85 16 60 e8 fd a5 2d 07 12 8b ab da c3
    f8 d0 e5 03 c6 96 9e 86 a5 92 0e 67 73 7c 95 7c
    cc 76 64 27 f2 5f be 3d 1f 8e da 02 a6 bc cb 18
    5f 5d 8b c9 2a f9 5c 38 34 61 7e 0e c9 93 89 25
    81 34 e2 b3 fe e4 79 f8 a5 53 55 81 5d f1 d9 b4
    b0 d9 5f aa c2 12 14 39 62 2d 7a 7a 4a 69 5a 50
    ac c5 fe c6 c0 52 00 b1 3b 6f 6c 10 02 84 96 95
    f4 ea cb 6a 12 cd 81 87 cd 06 34 fe c9 20 51 87
    ec eb 02 03 01 00 01 a3 64 30 62 30 1d 06 03 55
    1d 0e 04 16 04 14 0d 0c b1 41 61 d0 a5 7b 09 ac
    ac 08 d8 f8 f5 c4 fd 37 10 fa 30 1f 06 03 55 1d
    23 04 18 30 16 80 14 0d 0c b1 41 61 d0 a5 7b 09
    ac ac 08 d8 f8 f5 c4 fd 37 10 fa 30 0f 06 03 55
    1d 13 01 01 ff 04 05 30 03 01 01 ff 30 0f 06 03
    55 1d 11 04 08 30 06 87 04 7f 00 00 01 30 0d 06
    09 2a 86 48 86 f7 0d 01 01 0b 05 00 03 82 02 01
    00 06 e3 08 c3 c0 08 38 e8 a0 72 cb 32 a1 04 00
    e8 87 0a 37 fb 04 eb 33 f9 d9 02 46 1a c3 b7 16
    16 9d f8 9b da 96 cb f1 9c ed 5c 76 fa 3a 7e 92
    a9 37 b6 2d 49 08 7c 4a 1b eb 70 12 f0 b3 34 b7
    70 a9 2d bd 77 4e 59 87 87 6c 0a 67 6a 10 61 bc
    26 fc 4b c3 95 6f e5 76 13 c5 fb 37 cf 25 41 3f
    ee 0a fb c7 ef 41 3f f4 c4 3c f7 7f 44 a1 6c 05
    59 90 81 b8 54 38 e6 7d 22 76 7e bf 87 15 dc fb
    3a 46 0e ff 70 18 b9 77 cf 23 db 32 79 5a b0 ea
    b1 4e 9e 03 56 af 37 82 b1 ef 56 ca d0 50 6a 37
    78 b7 6b 91 a0 51 15 bf c4 3f 36 e0 71 0c e7 13
    c4 9e 63 8b e9 d2 79 b7 c2 4e 92 ab 0b 72 9b b6
    e1 85 f6 fc a3 2c 34 d4 20 4e 6e 3c 2b 07 f0 28
    17 e4 4b 6f 8e 17 47 66 7c d8 d9 e5 d9 1a 4b 9f
    0f 7e 9f 1b 63 27 b6 af ce 67 96 1c bb 7a 4a 7b
    38 2c 18 66 4e ad bf 21 be 55 d9 0a 75 0b 86 83
    82 40 c1 b7 e2 e7 6b c9 3a 35 6e 92 10 d0 8e 2d
    38 6b fc 62 a3 dd c3 ec 56 09 35 c3 13 ec 34 3d
    8d 1a d8 41 2d 76 40 6c 40 66 11 ac 20 17 bb 11
    1a 3d 58 09 c7 9f 46 4f 57 a0 e8 14 61 2f 72 a3
    9e 01 97 f5 1b 79 c4 9d 03 4b e8 c8 b3 19 e8 1b
    61 08 d4 83 55 82 8a c5 15 70 2a 65 82 a0 cd d9
    fe df 06 83 3d a2 c1 1a a5 1c 90 0b e7 49 18 c5
    21 8d f6 3d bd 08 06 15 e5 a9 87 1f aa 70 96 82
    3c 47 cf 99 45 fd 31 f7 c4 7a 73 2d 13 71 f5 9d
    6f d1 d8 77 ea 08 22 69 26 e1 b6 1e e0 38 1a 9e
    32 84 f5 37 82 38 8f 69 97 08 8c c3 7a 27 f5 cb
    bd 08 a2 eb 2a 64 41 9f e3 7f e7 43 5b 05 7d d1
    98 89 a8 c9 a5 d6 24 cf 2d 4f a6 de f1 b9 ba f0
    32 ff 66 cc c7 25 d4 10 2a 21 0c c7 94 c3 97 06
    8e 98 57 fa c6 cd 61 74 2d 27 84 9b 8d 67 5b 63
    f9 99 80 2f 63 49 90 25 ef d2 f3 ce 69 ad be 73
    a7 00 00
>>> ??? [length 0005]
    17 03 03 02 19
>>> TLS 1.3 [length 0001]
    16
>>> TLS 1.3, Handshake [length 0208], CertificateVerify
    0f 00 02 04 08 04 02 00 0f d6 15 64 ea 90 ae a5
    da 3a 74 e3 81 66 df 72 3f 9c cf f6 41 41 64 fa
    76 0e 93 9f 6d d5 3e 70 ef 0d cb 22 a7 b7 89 5d
    d4 6c da fb 87 4a bf 56 31 c0 ef 0d 36 81 11 2d
    33 4d d3 c3 ad de ca 2a 58 05 46 66 f2 51 0c a4
    74 44 46 36 a5 b1 3f db 59 ef f5 84 2e d8 34 ff
    61 b3 26 db 2c f9 57 d5 7e e1 13 04 57 47 c1 6b
    ad 7d 1a e5 67 60 99 37 0d 05 a8 f1 44 68 37 03
    6d 0a 34 b3 0a 60 3e 88 13 f0 dc 85 53 2a f8 e2
    0f 13 99 50 99 3c 6e 52 c3 60 39 71 b3 0b b9 3c
    79 92 47 3b 64 35 f3 70 d3 f0 cb 73 3d f2 d1 69
    01 67 46 9d 93 58 6b 41 81 8d ed df 9c 4b c1 1d
    07 45 39 8d 26 d9 26 27 7f 44 e3 4c 73 cf 1f e3
    88 e2 0e a4 e3 f6 ab 32 3d 1e c7 f6 34 12 d6 e5
    d0 36 e8 ff 76 bc 8e 49 e6 c8 41 28 c7 37 95 08
    08 7f fc 70 fc 05 2f 74 ba 60 0a da 50 a1 72 d5
    9a db 80 30 e4 2a 0c c5 d3 34 ce d6 5e 41 8a d8
    71 f9 26 65 81 22 65 b7 b8 68 b2 99 c1 49 f2 da
    b4 e6 1e 7d 6c 74 b3 fb 85 51 8d e3 84 68 4d 5e
    af fe bf 23 35 5a 7f c3 0d 7c 3f 1e a7 94 b0 a2
    e7 0d 78 59 04 bb ed 83 8f ee 86 2d 2e d3 68 47
    ef 56 be 02 4f 35 1d bd 09 cd be 54 b5 6b bd 04
    9d af 38 6b d3 61 47 c1 68 e2 7a cf 02 2d 8c f8
    83 05 c2 25 bd 74 46 4d 89 8a e3 6a 47 80 ee f9
    bd 16 33 12 ba 5c 7f 2a 42 53 b5 e9 92 d1 6d f4
    2b 92 60 26 95 3d 28 37 c5 56 3c 10 c6 a8 16 28
    47 c9 2c c4 f7 87 8d a8 02 a1 51 2f 43 0b a0 69
    e2 db 3f 1d c9 1f c7 9d 13 48 0d 21 fa b2 e3 69
    54 8a a9 a4 b6 06 e8 00 ef 7e db fc 7b 93 cf 3c
    96 af 82 36 76 3a df a4 dc 96 08 30 ff 32 05 7c
    65 c7 fe 6c 03 7d 99 23 50 34 41 dc 8e a2 9c ac
    0d 48 f2 30 d7 e4 48 bc 9a 09 ee f5 5a d6 41 da
    51 3d 32 7d 1f e2 a5 32
>>> ??? [length 0005]
    17 03 03 00 35
>>> TLS 1.3 [length 0001]
    16
>>> TLS 1.3, Handshake [length 0024], Finished
    14 00 00 20 35 cb 04 fc af 4c 58 24 81 ce 6e df
    cf bb 9a e1 58 7e 8e e0 ea dc ac fd 04 a8 dc 39
    3c 26 93 b3
<<< ??? [length 0005]
    14 03 03 00 01
<<< ??? [length 0005]
    17 03 03 00 35
<<< TLS 1.3 [length 0001]
    16
<<< TLS 1.3, Handshake [length 0024], Finished
    14 00 00 20 84 9f c9 1a 96 69 25 57 1d bd 7c 70
    f5 b8 ed f9 0b 9c 73 ad 80 1e f0 5d b2 6a 71 9a
    42 5e b1 56
>>> ??? [length 0005]
    17 03 03 00 ea
>>> TLS 1.3 [length 0001]
    16
>>> TLS 1.3, Handshake [length 00d9], NewSessionTicket
    04 00 00 d5 00 00 1c 20 e5 f8 23 ad 08 00 00 00
    00 00 00 00 00 00 c0 f3 ae ca 1e 8a a7 e3 6f 23
    a8 ab b9 c9 02 53 da 04 39 b6 1b 2a 7d 22 99 a6
    23 9e ca 05 32 5a 9a 50 b7 a5 87 45 2c 14 0a 8f
    cf 8b 72 b6 68 d3 25 9b 59 23 9b be b9 83 af 40
    a6 3e cf 37 8e d5 77 3a 09 d8 57 19 f1 94 12 59
    22 e5 78 e2 97 b7 54 20 93 ab ab d9 89 50 57 a9
    6c 8e 5b 89 93 4b 26 18 a0 53 10 39 0e 9c 6e 25
    fd d5 ff 31 98 46 9f 59 17 bf bd c7 54 d0 16 c3
    30 d9 bb a4 2d a1 fa 9d e1 ef d0 da 2e 15 b5 bf
    f7 26 58 0f ef 82 ab 30 30 52 3f 7c 94 7e c1 b7
    98 25 4e 81 4b 5e a9 6d cb 21 4d 92 8b ce a9 89
    f4 23 b9 61 9b df 8f cd cd 40 2e 36 20 36 ef aa
    4b 5f 87 e4 ea 6b 1e 00 00
>>> ??? [length 0005]
    17 03 03 00 da
>>> TLS 1.3 [length 0001]
    16
>>> TLS 1.3, Handshake [length 00c9], NewSessionTicket
    04 00 00 c5 00 00 1c 20 1f 48 62 7d 08 00 00 00
    00 00 00 00 01 00 b0 f3 ae ca 1e 8a a7 e3 6f 23
    a8 ab b9 c9 02 53 da ba fa 4a 41 bf 5b a4 7c 05
    05 eb 57 c9 d1 73 c0 d0 7c 89 36 dc 89 01 8e f1
    65 d6 3c 06 82 0a 78 9a 8d cc f8 ea 51 89 f6 9a
    b3 f2 54 fb 3b 29 d0 a5 c6 0b ae 48 cf f8 04 78
    87 c2 38 4f 9b 44 a9 f9 9a f1 58 51 fb 4c 72 e5
    e1 3f 42 6f 52 af ef 79 82 ce 47 07 a6 f9 e5 5f
    b3 c7 96 5c 2a 0d 4e e1 90 0d 6a 87 77 78 ac 26
    cb 18 9a 8f a9 b5 e7 17 7e 47 f9 a6 c6 12 7d 2b
    17 88 b1 3b 3a 6b 59 f8 7b 67 e6 d4 99 ac 02 25
    af 22 fc dd 5e 3d cf 0f d1 98 ad c2 6a e4 a2 3e
    ae e2 97 88 17 46 1e 00 00
-----BEGIN SSL SESSION PARAMETERS-----
MG0CAQECAgMEBAITAQQgXGIB9rsJRM3gmBw/8R2uMrJUOGRz/LMiWhqDChqSY/wE
IK6H9YYBvNHiTSQ2IUphAR6dQizZzcm2YG64xdtXyHUOoQYCBGCPnEmiBAICHCCk
BgQEAQAAAK4GAgQfSGJ9
-----END SSL SESSION PARAMETERS-----
Shared ciphers:AES128-SHA:AES128-SHA256:AES256-SHA256:AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:TLS_AES_128_GCM_SHA256:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:PSK-AES128-CBC-SHA:PSK-AES128-CBC-SHA256:PSK-AES128-GCM-SHA256:PSK-AES256-CBC-SHA:PSK-AES256-CBC-SHA384:PSK-AES256-GCM-SHA384:DHE-PSK-AES128-CBC-SHA:DHE-PSK-AES128-GCM-SHA256:DHE-PSK-AES256-CBC-SHA:DHE-PSK-AES256-CBC-SHA384:DHE-PSK-AES256-GCM-SHA384:ECDHE-PSK-AES128-CBC-SHA:ECDHE-ECDSA-AES128-SHA256:ECDHE-PSK-AES256-CBC-SHA:ECDHE-PSK-AES256-CBC-SHA384:RSA-PSK-AES128-CBC-SHA:RSA-PSK-AES256-CBC-SHA:RSA-PSK-AES128-GCM-SHA256
Signature Algorithms: RSA+SHA256:ECDSA+SHA256:RSA-PSS+SHA256
Shared Signature Algorithms: RSA+SHA256:ECDSA+SHA256:RSA-PSS+SHA256
Supported Elliptic Groups: secp160k1:secp160r1:secp160r2:secp192k1:P-192:secp224k1:P-224:secp256k1:P-256:P-384:P-521:K-163:sect163r1:B-163:sect193r1:sect193r2:K-233:B-233:sect239k1:K-283:B-283:K-409:B-409:K-571:B-571:X25519:X448:brainpoolP256r1:brainpoolP384r1:brainpoolP512r1
Shared Elliptic groups: P-256:P-384:P-521:X25519:X448
CIPHER is TLS_AES_128_GCM_SHA256
Secure Renegotiation IS NOT supported
<<< ??? [length 0005]
    17 03 03 00 13
<<< TLS 1.3 [length 0001]
    15
<<< TLS 1.3, Alert [length 0002], warning close_notify
    01 00
DONE
shutting down SSL
CONNECTION CLOSED

Attached tls attacker debug log:
tls13_sess.log
@mmaehren
Copy link
Contributor

mmaehren commented May 3, 2021

Hi,
this is an excerpt from RFC 8446 - "1.2. Major Differences from TLS 1.2"

-  Session resumption with and without server-side state as well as
      the PSK-based cipher suites of earlier TLS versions have been
      replaced by a single new PSK exchange.

Your WorkflowTrace isn't suitable for a TLS 1.3 PSK handshake and the old process of session resumption, as in TLS 1.2, no longer exists. The PSK handshake requires an additional ReceiveAction that expects a NewSessionTicketMessage from the server (usually sent after the handshake). For this to work, both the initial and the subsequent ClientHello also require additional extensions that have been added with TLS 1.3.

@ghost
Copy link
Author

ghost commented May 4, 2021

Any example config?

@ic0ns ic0ns added the question label Sep 27, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
question
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ic0ns @mmaehren