[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #8353 [Ooni]: ooni: Add support for manual TLS/SSL handshakes to tls_handshake.py

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #8353 [Ooni]: ooni: Add support for manual TLS/SSL handshakes to tls_handshake.py
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 28 Feb 2013 12:06:05 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 28 Feb 2013 07:06:15 -0500
In-reply-to: <044.754a6e2bbdbab39fe5441f7fde856215@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.754a6e2bbdbab39fe5441f7fde856215@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#8353: ooni: Add support for manual TLS/SSL handshakes to tls_handshake.py
-------------------------+--------------------------------------------------
 Reporter:  isis         |          Owner:  isis        
     Type:  enhancement  |         Status:  needs_review
 Priority:  normal       |      Milestone:              
Component:  Ooni         |        Version:              
 Keywords:               |         Parent:              
   Points:               |   Actualpoints:              
-------------------------+--------------------------------------------------

Comment(by aagbsn):

 A few minor things:

 in the report:
 cert_public_key is of type OpenSSL.crypto.PKey object
 cert_subject is of type X509Name object
 server_cert has extra newlines. I'm not sure why this is though.

 would be nice:
 add the ciphersuite that was selected to the report (in addition to
 server_ciphersuite)


 input arguments:
 it would be nice if hostnames would work in addition to ip addresses.
 tls_handshake -3 -h ipaddress -p 443 fails with error:
 {{{
 Traceback (most recent call last):
   File "/home/user/.virtualenvs/ooni/lib/python2.7/site-
 packages/twisted/internet/defer.py", line 294, in addCallbacks
     self._runCallbacks()
   File "/home/user/.virtualenvs/ooni/lib/python2.7/site-
 packages/twisted/internet/defer.py", line 576, in _runCallbacks
     current.result = callback(current.result, *args, **kw)
   File "/home/user/.virtualenvs/ooni/lib/python2.7/site-
 packages/twisted/internet/defer.py", line 422, in errback
     self._startRunCallbacks(fail)
   File "/home/user/.virtualenvs/ooni/lib/python2.7/site-
 packages/twisted/internet/defer.py", line 489, in _startRunCallbacks
     self._runCallbacks()
 --- <exception caught here> ---
   File "/home/user/.virtualenvs/ooni/lib/python2.7/site-
 packages/twisted/internet/defer.py", line 576, in _runCallbacks
     current.result = callback(current.result, *args, **kw)
   File "/home/user/code/ooni-
 probe/nettests/experimental/tls_handshake.py", line 584, in
 handshakeFailed
     addr, port = host
 exceptions.TypeError: 'NoneType' object is not iterable
 }}}

 tls_handshake -2 -f ssl_host (a.google.ip:443) fails with error:

 {{{
 [!] [Failure instance: Traceback: <class 'OpenSSL.SSL.Error'>: [('SSL
 routines', 'SSL_CTX_set_cipher_list', 'no cipher match')]
 /home/user/code/ooni-probe/ooni/runner.py:233:runTestCasesWithInput
 /home/user/.virtualenvs/ooni/lib/python2.7/site-
 packages/twisted/internet/defer.py:138:maybeDeferred
 /home/user/code/ooni-
 probe/nettests/experimental/tls_handshake.py:602:test_tlsv1_handshake
 /home/user/.virtualenvs/ooni/lib/python2.7/site-
 packages/twisted/internet/defer.py:1214:unwindGenerator
 --- <exception caught here> ---
 /home/user/.virtualenvs/ooni/lib/python2.7/site-
 packages/twisted/internet/defer.py:1071:_inlineCallbacks
 /home/user/code/ooni-
 probe/nettests/experimental/tls_handshake.py:594:deferMakeConnection
 /home/user/code/ooni-
 probe/nettests/experimental/tls_handshake.py:218:makeConnection
 /home/user/code/ooni-
 probe/nettests/experimental/tls_handshake.py:186:getContext
 ]
 }}}

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8353#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #8353 [Ooni]: ooni: Add support for manual TLS/SSL handshakes to tls_handshake.py
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #6752 [Tor]: TestingTorNetwork doesn't lower the dir fetch retry schedules
Next by Author: Re: [tor-bugs] #8353 [Ooni]: ooni: Add support for manual TLS/SSL handshakes to tls_handshake.py
Previous by thread: Re: [tor-bugs] #8353 [Ooni]: ooni: Add support for manual TLS/SSL handshakes to tls_handshake.py
Next by thread: Re: [tor-bugs] #8353 [Ooni]: ooni: Add support for manual TLS/SSL handshakes to tls_handshake.py
Index(es):
- Author
- Thread