cURL / Mailing Lists / curl-users / Single Mail

curl-users

curl writes confusing SSLv2, Unknown...

From: Michael Osipov <1983-01-06_at_gmx.net>
Date: Wed, 29 Apr 2015 10:04:57 +0200

Hi folks,

I am retrieving a resource from a web server over HTTPS, the connection is
negotiated with TLS 1.2 but I constantly see SSLv2, Unknown (xy) in the verbose
output. See below:

* Trying <ip>...
* Connected to <hostname> (<ip>) port 443 (#0)
* ALPN, offering http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* successfully set certificate verify locations:
* CAfile: /usr/local/share/certs/combined-ca.pem
  CApath: none
* TLSv1.2, TLS Unknown, Unknown (22):
} [5 bytes data]
* TLSv1.2, TLS handshake, Client hello (1):
} [512 bytes data]
* SSLv2, Unknown (22):
{ [5 bytes data]
* TLSv1.2, TLS handshake, Server hello (2):
{ [81 bytes data]
* TLSv1.2, TLS handshake, CERT (11):
{ [3296 bytes data]
* TLSv1.2, TLS handshake, Server finished (14):
{ [4 bytes data]
* SSLv2, Unknown (22):
} [5 bytes data]
* TLSv1.2, TLS handshake, Client key exchange (16):
} [262 bytes data]
* SSLv2, Unknown (20):
} [5 bytes data]
* TLSv1.2, TLS change cipher, Client hello (1):
} [1 bytes data]
* SSLv2, Unknown (22):
} [5 bytes data]
* TLSv1.2, TLS handshake, Finished (20):
} [16 bytes data]
* SSLv2, Unknown (20):
{ [5 bytes data]
* TLSv1.2, TLS change cipher, Client hello (1):
{ [1 bytes data]
* SSLv2, Unknown (22):
{ [5 bytes data]
* TLSv1.2, TLS handshake, Finished (20):
{ [16 bytes data]
* SSL connection using TLSv1.2 / AES128-SHA256
* ALPN, server did not agree to a protocol
* Server certificate:
* subject: ...
* start date: 2014-10-30 14:30:19 GMT
* expire date: 2015-11-06 14:30:19 GMT
* common name: <hostname> (matched)
* issuer: ...
* SSL certificate verify ok.
* SSLv2, Unknown (23):
} [5 bytes data]
> GET /webapp/path?docid=d9cd03bc-c876-11e4-8f02-00306e5db158&archivid=I3 HTTP/1.1
> Host: <hostname>
> User-Agent: curl/7.42.0
> Accept: */*
>
* SSLv2, Unknown (23):
{ [5 bytes data]
< HTTP/1.1 401 Unauthorized
< Content-Type: text/html
< Server: Kermit
< WWW-Authenticate: Negotiate
< WWW-Authenticate: NTLM
< X-Frame-Options: sameorigin
< X-XSS-Protection: 1; mode=block
< X-Content-Type-Options: nosniff
< Date: Wed, 29 Apr 2015 07:58:44 GMT
< Content-Length: 1293
<
* Ignoring the response-body
{ [1293 bytes data]
* Connection #0 to host <hostname> left intact
* Issue another request to this URL: 'https://<hostname>/webapp/path?docid=d9cd03bc-c876-11e4-8f02-00306e5db158&archivid=I3'
* Found bundle for host <hostname>: 0x28828c50
* Re-using existing connection! (#0) with host <hostname>
* Connected to <hostname> (<ip>) port 443 (#0)
* Server auth using Negotiate with user ''
* SSLv2, Unknown (23):
} [5 bytes data]
> GET /webapp/path?docid=d9cd03bc-c876-11e4-8f02-00306e5db158&archivid=I3 HTTP/1.1
> Host: <hostname>
> Authorization: Negotiate YIIXkgYGKwYBBQUCoIIXhjC...
> User-Agent: curl/7.42.0
> Accept: */*
>
* SSLv2, Unknown (23):
{ [5 bytes data]
< HTTP/1.1 307 Temporary Redirect
< Cache-Control: private
< Content-Length: 0
< Location: https://internal-archive...
< Server: Kermit
< Persistent-Auth: false
< X-Frame-Options: sameorigin
< X-XSS-Protection: 1; mode=block
< X-Content-Type-Options: nosniff
< WWW-Authenticate: Negotiate oYG3MIG0oAMKAQChCwYJKoZIhv...
< Date: Wed, 29 Apr 2015 07:58:44 GMT
<
* Closing connection 0
* SSLv2, Unknown (21):
} [5 bytes data]
* TLSv1.2, TLS alert, Client hello (1):
} [2 bytes data]

What it is this SSLv2? It looks very confusing.

I use:

curl 7.42.0 (i386-portbld-freebsd9.3) libcurl/7.42.0 OpenSSL/1.0.2a zlib/1.2.8
Protocols: dict file ftp ftps gopher http https imap imaps pop3 pop3s rtsp smb smbs smtp smtps telnet tftp
Features: AsynchDNS IPv6 Largefile GSS-API Kerberos SPNEGO NTLM NTLM_WB SSL libz UnixSockets

Thanks,

Michael
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-users
FAQ: http://curl.haxx.se/docs/faq.html
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2015-04-29