Ключевое слово в защите информации
КЛЮЧЕВОЕ СЛОВО
в защите информации
Получить ГОСТ TLS-сертификат для домена (SSL-сертификат)
Добро пожаловать, Гость! Чтобы использовать все возможности Вход или Регистрация.

Уведомление

Icon
Error
3 Страницы<123
stunnel - не пойму в чем затык
Опции
К последнему сообщению К первому непрочитанному
Предыдущая тема Следующая тема
Offline gkarpov  
#21 Оставлено : 27 февраля 2025 г. 23:03:13(UTC)
gkarpov

Статус: Новичок

Группы: Участники
Зарегистрирован: 27.02.2025(UTC)
Сообщений: 7
**** Error 0x80090326 returned by InitializeSecurityContext (2)
Что при проверке csptest, что в stunnel. В системном журнале (eventolog) ничего связанного с этим событием.
В Yandex.Browser что ЛК, что просто dmdk.ru открывается с этим же сертификатом без проблем.
Что ещё можно сделать, куда копать?
Вверх
Offline Русев Андрей  
#22 Оставлено : 27 февраля 2025 г. 23:26:14(UTC)
Русев Андрей

Статус: Сотрудник

Группы: Администраторы, Участники
Зарегистрирован: 16.04.2008(UTC)
Сообщений: 1,479

Сказал(а) «Спасибо»: 41 раз
Поблагодарили: 596 раз в 415 постах
Автор: gkarpov Перейти к цитате
**** Error 0x80090326 returned by InitializeSecurityContext (2)
...
dmdk.ru
Можно попробовать tls_client_disable_extension_SigAlgsCert=1 из соседней темы.

Официальная техподдержка. Официальная база знаний.
Вверх
Offline gkarpov  
#23 Оставлено : 28 февраля 2025 г. 12:28:47(UTC)
gkarpov

Статус: Новичок

Группы: Участники
Зарегистрирован: 27.02.2025(UTC)
Сообщений: 7
После добавления
Цитата:
tls_client_disable_extension_SigAlgsCert=1
соединение устанавливается, но дальше данные не проходят через тунель.
Цитата:
2025.02.28 12:12:04 LOG5[24884:1744]: Handshake was successful
2025.02.28 12:12:04 LOG5[24884:1744]: PerformClientHandshake finish
2025.02.28 12:12:04 LOG5[24884:1744]: Verify_level = 0, skipping Server certificate verification
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 0,c->sock_ptr=0,want_rd = 0
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 0 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: data reciev from socket = 193
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 0,c->sock_ptr=193,want_rd = 0
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 0 c->sock_ptr=c1
2025.02.28 12:12:04 LOG5[24884:1744]: SSPI_write start
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_write data is GET
2025.02.28 12:12:04 LOG7[24884:1744]: send all data after encrypt
2025.02.28 12:12:04 LOG7[24884:1744]: data send to ssl_socket =193
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 0,c->sock_ptr=0,want_rd = 0
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 0 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read start
2025.02.28 12:12:04 LOG7[24884:1744]: recv ok on SSPI_read err= 1525
2025.02.28 12:12:04 LOG5[24884:1744]: Received 1525 bytes from ssl socket
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read data in ssl_buff is HTTP
2025.02.28 12:12:04 LOG7[24884:1744]: data read from ssl_sock =1504
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 1504,c->sock_ptr=0,want_rd = 0
2025.02.28 12:12:04 LOG7[24884:1744]: add write socket to poll
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 5e0 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: data send to socket = 1504
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 0,c->sock_ptr=0,want_rd = 0
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 0 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read start
2025.02.28 12:12:04 LOG7[24884:1744]: recv ok on SSPI_read err= 6850
2025.02.28 12:12:04 LOG5[24884:1744]: Received 6850 bytes from ssl socket
2025.02.28 12:12:04 LOG7[24884:1744]: Zerro bytes read
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 0,c->sock_ptr=0,want_rd = 1
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 0 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read start
2025.02.28 12:12:04 LOG7[24884:1744]: add data from last call = 6850
2025.02.28 12:12:04 LOG7[24884:1744]: recv ok on SSPI_read err= 3050
2025.02.28 12:12:04 LOG5[24884:1744]: Received 3050 bytes from ssl socket
2025.02.28 12:12:04 LOG7[24884:1744]: Zerro bytes read
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 0,c->sock_ptr=0,want_rd = 1
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 0 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read start
2025.02.28 12:12:04 LOG7[24884:1744]: add data from last call = 9900
2025.02.28 12:12:04 LOG7[24884:1744]: recv ok on SSPI_read err= 7965
2025.02.28 12:12:04 LOG5[24884:1744]: Received 7965 bytes from ssl socket
2025.02.28 12:12:04 LOG7[24884:1744]: Recieve 1460 bytes EXTRA_DATA
2025.02.28 12:12:04 LOG7[24884:1744]: data read return 16384, c->ssl_ptr = 0
2025.02.28 12:12:04 LOG7[24884:1744]: data read from ssl_sock =16384
2025.02.28 12:12:04 LOG7[24884:1744]: add write socket to poll
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 4000 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: data send to socket = 16384
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read start
2025.02.28 12:12:04 LOG7[24884:1744]: add data from last call = 1460
2025.02.28 12:12:04 LOG7[24884:1744]: recv ok on SSPI_read err= -1
2025.02.28 12:12:04 LOG3[24884:1744]: Reading failed. recv returned: -1 errno =0
2025.02.28 12:12:04 LOG7[24884:1744]: Win issue with nonblocking socket, lets try wait and read again
2025.02.28 12:12:04 LOG7[24884:1744]: Zerro bytes read
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 0,c->sock_ptr=0,want_rd = 1
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 0 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read start
2025.02.28 12:12:04 LOG7[24884:1744]: add data from last call = 1460
2025.02.28 12:12:04 LOG7[24884:1744]: recv ok on SSPI_read err= 7240
2025.02.28 12:12:04 LOG5[24884:1744]: Received 7240 bytes from ssl socket
2025.02.28 12:12:04 LOG7[24884:1744]: Zerro bytes read
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 0,c->sock_ptr=0,want_rd = 1
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 0 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read start
2025.02.28 12:12:04 LOG7[24884:1744]: add data from last call = 8700
2025.02.28 12:12:04 LOG7[24884:1744]: recv ok on SSPI_read err= 9733
2025.02.28 12:12:04 LOG5[24884:1744]: Received 9733 bytes from ssl socket
2025.02.28 12:12:04 LOG7[24884:1744]: Recieve 4380 bytes EXTRA_DATA
2025.02.28 12:12:04 LOG7[24884:1744]: data read return 14032, c->ssl_ptr = 0
2025.02.28 12:12:04 LOG7[24884:1744]: data read from ssl_sock =14032
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 14032,c->sock_ptr=0,want_rd = 1
2025.02.28 12:12:04 LOG7[24884:1744]: add write socket to poll
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 36d0 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: data send to socket = 14032
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read start
2025.02.28 12:12:04 LOG7[24884:1744]: add data from last call = 4380
2025.02.28 12:12:04 LOG7[24884:1744]: recv ok on SSPI_read err= -1
2025.02.28 12:12:04 LOG3[24884:1744]: Reading failed. recv returned: -1 errno =0
2025.02.28 12:12:04 LOG7[24884:1744]: Win issue with nonblocking socket, lets try wait and read again
2025.02.28 12:12:04 LOG7[24884:1744]: Zerro bytes read
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 0,c->sock_ptr=0,want_rd = 1
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 0 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read start
2025.02.28 12:12:04 LOG7[24884:1744]: add data from last call = 4380
2025.02.28 12:12:04 LOG7[24884:1744]: recv ok on SSPI_read err= 12025
2025.02.28 12:12:04 LOG5[24884:1744]: Received 12025 bytes from ssl socket
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read data in ssl_buff is 7ed0
2025.02.28 12:12:04 LOG7[24884:1744]: data read from ssl_sock =16384
2025.02.28 12:12:04 LOG7[24884:1744]: add write socket to poll
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 4000 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: data send to socket = 16384
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 0,c->sock_ptr=0,want_rd = 0
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 0 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read start
2025.02.28 12:12:04 LOG7[24884:1744]: recv ok on SSPI_read err= 11680
2025.02.28 12:12:04 LOG5[24884:1744]: Received 11680 bytes from ssl socket
2025.02.28 12:12:04 LOG7[24884:1744]: Zerro bytes read
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 0,c->sock_ptr=0,want_rd = 1
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 0 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read start
2025.02.28 12:12:04 LOG7[24884:1744]: add data from last call = 11680
2025.02.28 12:12:04 LOG7[24884:1744]: recv ok on SSPI_read err= 4455
2025.02.28 12:12:04 LOG5[24884:1744]: Received 4455 bytes from ssl socket
2025.02.28 12:12:04 LOG7[24884:1744]: Recieve 26 bytes EXTRA_DATA
2025.02.28 12:12:04 LOG7[24884:1744]: data read return 16088, c->ssl_ptr = 0
2025.02.28 12:12:04 LOG7[24884:1744]: data read from ssl_sock =16088
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 16088,c->sock_ptr=0,want_rd = 1
2025.02.28 12:12:04 LOG7[24884:1744]: add write socket to poll
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 3ed8 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: data send to socket = 16088
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read start
2025.02.28 12:12:04 LOG7[24884:1744]: add data from last call = 26
2025.02.28 12:12:04 LOG7[24884:1744]: SSPI_read data in ssl_buff is 0


2025.02.28 12:12:04 LOG7[24884:1744]: data read from ssl_sock =5
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 5,c->sock_ptr=0,want_rd = 0
2025.02.28 12:12:04 LOG7[24884:1744]: add write socket to poll
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 5 c->sock_ptr=0
2025.02.28 12:12:04 LOG7[24884:1744]: data send to socket = 5
2025.02.28 12:12:04 LOG7[24884:1744]: add ssl read socket to pool
2025.02.28 12:12:04 LOG7[24884:1744]: ssl_rd = 1, c->ssl_ptr = 0,c->sock_ptr=0,want_rd = 0
2025.02.28 12:12:04 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:12:04 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = -1 ((sock_rd && ssl_rd)=1) c->ssl_ptr = 0 c->sock_ptr=0
2025.02.28 12:13:09 LOG7[24884:1744]: SSPI_read start
2025.02.28 12:13:09 LOG7[24884:1744]: recv ok on SSPI_read err= 23
2025.02.28 12:13:09 LOG5[24884:1744]: Received 23 bytes from ssl socket
2025.02.28 12:13:09 LOG5[24884:1744]: SEC_I_CONTEXT_EXPIRED,
2025.02.28 12:13:09 LOG5[24884:1744]: SSPI_read return SEC_I_CONTEXT_EXPIRED
2025.02.28 12:13:09 LOG7[24884:1744]: Socket write shutdown
2025.02.28 12:13:09 LOG7[24884:1744]: c->ssl_ptr = 0
2025.02.28 12:13:09 LOG7[24884:1744]: Enter pool section on transfer
2025.02.28 12:13:09 LOG7[24884:1744]: !!!!!Call s_poll_wait with timeout = 60 ((sock_rd && ssl_rd)=0) c->ssl_ptr = 0 c->sock_ptr=0
2025.02.28 12:13:09 LOG5[24884:1744]: 23 bytes of close_notify data sent
2025.02.28 12:13:09 LOG6[24884:1744]: SSL_shutdown successfully sent close_notify
2025.02.28 12:13:09 LOG5[24884:1744]: Connection closed: 193 bytes sent to SSL, 64397 bytes sent to socket
2025.02.28 12:13:09 LOG7[24884:1744]: free Buffers
2025.02.28 12:13:09 LOG7[24884:1744]: delete c->hContext
2025.02.28 12:13:09 LOG7[24884:1744]: delete c->hClientCreds
2025.02.28 12:13:09 LOG5[24884:1744]: incomp_mess = 16, extra_data = 4
2025.02.28 12:13:09 LOG7[24884:1744]: https finished (0 left)

Отредактировано пользователем 28 февраля 2025 г. 12:29:20(UTC)  | Причина: Не указана
Вверх
Offline Русев Андрей  
#24 Оставлено : 28 февраля 2025 г. 12:45:18(UTC)
Русев Андрей

Статус: Сотрудник

Группы: Администраторы, Участники
Зарегистрирован: 16.04.2008(UTC)
Сообщений: 1,479

Сказал(а) «Спасибо»: 41 раз
Поблагодарили: 596 раз в 415 постах
Автор: gkarpov Перейти к цитате
После добавления
Цитата:
tls_client_disable_extension_SigAlgsCert=1
соединение устанавливается, но дальше данные не проходят через тунель.
Давайте лучше выдачу "csptest -tlsc -v..." А что в системном журнале?

Официальная техподдержка. Официальная база знаний.
Вверх
Offline gkarpov  
#25 Оставлено : 28 февраля 2025 г. 12:53:19(UTC)
gkarpov

Статус: Новичок

Группы: Участники
Зарегистрирован: 27.02.2025(UTC)
Сообщений: 7
csptest -tlsc -server 195.209.130.9 -user xxxxx..xxxxx -file /ws/v3/exchange3.wsdl -verbose -nosave -nocheck
Цитата:

...
клиентский сертификат
...

20 algorithms supported:
Algid Class OID
[00] 0x661e 0x6000 1.2.643.2.2.21 (GOST 28147-89)
[01] 0x6631 0x6000 1.2.643.7.1.1.5.2.1 (GOST R 34.12-2015 Kuznyechik CTR-ACPKM)
[02] 0x6630 0x6000 1.2.643.7.1.1.5.1.1 (GOST R 34.12-2015 Magma CTR-ACPKM)
[03] 0x801e 0x8000 1.2.643.2.2.9 (GOST R 34.11-94)
[04] 0x8021 0x8000 1.2.643.7.1.1.2.2 (GOST R 34.11-2012 256 bit)
[05] 0x801f 0x8000
[06] 0x803d 0x8000
[07] 0x803c 0x8000
[08] 0x2e23 0x2000 1.2.643.2.2.19 (GOST R 34.10-2001)
[09] 0x2e49 0x2000 1.2.643.7.1.1.1.1 (GOST R 34.10-2012 256 bit)
[10] 0x2e3d 0x2000 1.2.643.7.1.1.1.2 (GOST R 34.10-2012 512 bit)
[11] 0x660e 0x6000
[12] 0x6610 0x6000
[13] 0x6603 0x6000 1.2.840.113549.3.7 (3des)
[14] 0x8004 0x8000 1.3.14.3.2.26 (sha1)
[15] 0x800c 0x8000 2.16.840.1.101.3.4.2.1 (SHA256)
[16] 0x800d 0x8000 2.16.840.1.101.3.4.2.2 (SHA384)
[17] 0x800e 0x8000 2.16.840.1.101.3.4.2.3 (SHA512)
[18] 0x2400 0x2000 1.2.840.113549.1.1.1 (RSA)
[19] 0xae06 0xa000
Cipher strengths: 128..256
Supported protocols: 0x2a00:
Transport Layer Security 1.1 client side
Transport Layer Security 1.2 client side
Transport Layer Security 1.3 client side
dwProtocolMask: 0x800e2aaa
Protocol version: 3.3
ClientHello: RecordLayer: TLS, Len: 19
SessionId: 4fe137db7bfeb6c1b7184ed82db04f696617a5b991f457ee275290a7eccde4a5
Cipher Suites: (c1 03) (c1 05) (c1 04) (c1 06) (c1 00) (c1 01) (c1 02) (ff 85) (00 81)
280 bytes of handshake data sent
4381 bytes of handshake data received
Handshake extra buffer: 2891 bytes
1130 bytes of handshake data received
4951 bytes of handshake data sent
63 bytes of handshake data received
Handshake was successful
SECPKG_ATTR_SESSION_INFO: Reuse: 0, SessionId: 3b5640123a4e0b7d059cd9d8e6296e88feafe099f47f2ecd5c552f6dd448fa7c

SECPKG_ATTR_CIPHER_INFO: Version: 1
SECPKG_ATTR_CIPHER_INFO: Protocol: 303
SECPKG_ATTR_CIPHER_INFO: CipherSuite: c100, TLS_GOSTR341112_256_WITH_KUZNYECHIK_CTR_OMAC
SECPKG_ATTR_CIPHER_INFO: BaseCipherSuite: c100
SECPKG_ATTR_CIPHER_INFO: Cipher: GR 34.12-15 K, Len: 256, BlockLen: 1
SECPKG_ATTR_CIPHER_INFO: Hash: GR 34.11-2012 256, Len: 256
SECPKG_ATTR_CIPHER_INFO: Exchange: GOST DH 34.10-2012 256, MinLen: 512, MaxLen: 512
SECPKG_ATTR_CIPHER_INFO: Certificate: GR 34.10-2012 256, KeyType: 23

SECPKG_ATTR_CONNECTION_INFO: Protocol: 0x800 (TLS 1.2)
SECPKG_ATTR_CONNECTION_INFO: Cipher: 0x6631 (GOST R 34.12-2015 Kuznyechik)
SECPKG_ATTR_CONNECTION_INFO: Cipher strength: 256
SECPKG_ATTR_CONNECTION_INFO: Hash: 0x8021 (GOST R 34.11-2012 (256))
SECPKG_ATTR_CONNECTION_INFO: Hash strength: 256
SECPKG_ATTR_CONNECTION_INFO: Exch: 0xaa47 (GOST R 34.10-2012 (256) Ephemeral)
SECPKG_ATTR_CONNECTION_INFO: Key exchange strength: 512

SECPKG_ATTR_KEY_INFO: KeySize: 256
SECPKG_ATTR_KEY_INFO: SignatureAlgorithm: 0x2e49, Name: GOST R 34.11 2012 256
SECPKG_ATTR_KEY_INFO: EncryptAlgorithm: 0x6631, Name: GR 34.12-2015 Kuznyechik

SECPKG_ATTR_SUPPORTED_SIGNATURES: Supported signatures: (ee ee) (08 40) (ef ef) (08 41) (ed ed)

SECPKG_ATTR_NAMES: E=mtg_oib@goznak.ru, O="АО ""Гознак""", L=Санкт-Петербург, S=78 г. Санкт-Петербург, C=RU, CN="АО ""Гознак"""

SECPKG_ATTR_PACKAGE_INFO: fCapabilities: 0x4107B3
SECPKG_ATTR_PACKAGE_INFO: wVersion: 1
SECPKG_ATTR_PACKAGE_INFO: wRPCID: 65535
SECPKG_ATTR_PACKAGE_INFO: cbMaxToken: 16379
SECPKG_ATTR_PACKAGE_INFO: Name: CryptoPro SSP
SECPKG_ATTR_PACKAGE_INFO: Comment: CryptoPro Security Package

Server certificate:
Subject: E=mtg_oib@goznak.ru, O="АО ""Гознак""", L=Санкт-Петербург, S=78 г. Санкт-Петербург, C=RU, CN="АО ""Гознак"""
Valid : 22.11.2024 11:30:54 - 22.11.2025 11:40:54 (UTC)
Issuer : INNLE=7717107991, OGRN=1037700085444, C=RU, S=Moscow, L=Moscow, O="LLC ""Crypto-Pro""", CN=CryptoPro TLS CA

SECPKG_ATTR_STREAM_SIZES: Header: 5, Trailer: 16, MaxMessage: 16384
SECPKG_ATTR_STREAM_SIZES: Buffers: 4, BlockSize: 1

SECPKG_ATTR_SIZES: MaxToken: 16384
SECPKG_ATTR_SIZES: MaxSignature: 16
SECPKG_ATTR_SIZES: BlockSize: 1
SECPKG_ATTR_SIZES: SecurityTrailer: 21

HTTP request: GET /ws/v3/exchange3.wsdl HTTP/1.1
User-Agent: Webclient
Accept:*/*
Host: 195.209.130.9
Connection: close


Sending plaintext: 113 bytes
155 bytes of application data sent
8374 bytes of (encrypted) application data received
Decrypted data: 1499 bytes
Extra data: 6854 bytes
9572 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 11136 bytes
Extra data: 5269 bytes
11157 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
16405 bytes of (encrypted) application data received
Decrypted data: 8 bytes
Extra data: 16397 bytes
29 bytes of (encrypted) application data received
Decrypted data: 16384 bytes
Extra data: 21 bytes
3543 bytes of (encrypted) application data received
Decrypted data: 3494 bytes
Extra data: 49 bytes
Decrypted data: 5 bytes
Extra data: 23 bytes
Context expired: OK if file is completely downloaded
Reply status: HTTP/1.1 200 OK
Sending Close Notify
23 bytes of handshake data sent
1 connections, 802750 bytes in 0.442 seconds;
Total: SYS: 0,125 sec USR: 0,031 sec UTC: 0,556 sec
[ErrorCode: 0x00000000]

вроде как всё хорошо.

В eventlog ничего нет.
Вверх
Offline gkarpov  
#26 Оставлено : 28 февраля 2025 г. 12:56:39(UTC)
gkarpov

Статус: Новичок

Группы: Участники
Зарегистрирован: 27.02.2025(UTC)
Сообщений: 7
Так обмен stunnel выглядит в wireshark
Screenshot 2025-02-28 123754.png (66kb) загружен 4 раз(а).
Вверх
Offline gkarpov  
#27 Оставлено : 28 февраля 2025 г. 14:16:45(UTC)
gkarpov

Статус: Новичок

Группы: Участники
Зарегистрирован: 27.02.2025(UTC)
Сообщений: 7
Как оказалось, в браузере ответ от сервера на http://localhost:1500/ws/v3/exchange3.wsdl получаю. А в PoSh бесконечное
Цитата:
Reading web response stream [Downloaded: 0 Bytes of 0 Bytes ]
Для меня этот вопрос решен, спасибо за помощь.

Отредактировано пользователем 28 февраля 2025 г. 14:17:40(UTC)  | Причина: Не указана
Вверх
RSS Лента  Atom Лента
Пользователи, просматривающие эту тему
Guest (2)
3 Страницы<123
Быстрый переход  
Вы не можете создавать новые темы в этом форуме.
Вы не можете отвечать в этом форуме.
Вы не можете удалять Ваши сообщения в этом форуме.
Вы не можете редактировать Ваши сообщения в этом форуме.
Вы не можете создавать опросы в этом форуме.
Вы не можете голосовать в этом форуме.

Privacy Policy | Форум YAF.NET | YAF.NET © 2003-2025, Yet Another Forum.NET