I'm trying to make a forwarding proxy but I keep getting an
Alert(Level: Fatal, Description: Decode Error) after the Client sends...
Client Key Exchange, Change Cipher Spec, Encrypted Handshake Message 
Any ideas as to what I'm doing wrong?
I can't seem to get a grasp on what the error even means. Does it mean the initial encrypted packet by the client fails to be decrypted by the server? If so, then why?
UPDATE 1
I just was looking at the packets and I noticed a significant difference between using my proxy, and not using the proxy.
The DFE key isn't being interpereted with my proxy.
1 Answers
Answers 1
Any ideas as to what I'm doing wrong?
You're not forwarding the exact amount of data that the proxy is supposed to forward.
But I see you're going further now than at the beginning of your question (good !)
You are implementing a proxy which forwards every single byte which it receives, in both ways, and either it sends too much to the server, or not enough. Check your code again for any conditions when you stop reading the input data to forward, be sure you're forwarding exactly everything. Nothing more, nothing less.
RFC 5246, about Decode Error :
decode_error A message could not be decoded because some field was out of the specified range or the length of the message was incorrect. This message is always fatal and should never be observed in communication between proper implementations (except when messages were corrupted in the network).
0 comments:
Post a Comment