Successfully connected
TLS 1.3 OK; HelloRetryRequest used;
Detailed description:
v.0.22.1-l
(This TLS-1.3-only server supports ESNI, HelloRetryRequest, KeyUpdate, ECDHE, FFDHE, etc.)
HelloRetryRequest used to (re)negotiate DH group
First ClientHello, key shares: 0x001D
Second ClientHello, key shares: 0x0017
CRYPTO_CONTEXT
Protocol version: 0x0304
Cipher suite: 0x1303 (TLS_CHACHA20_POLY1305_SHA256)
Key exchange: 0x0017 (Secp256r1)
(Handshake level)
Handshake secrets:
Client: 0x72E1791209888422FB191B0BE053DC7EB282D96462C222DB64B83B901BF727B2
Server: 0xC6C132830129C4D44D9F9F448410FFC16F9C125ECE648F09BAC25149CC8CE189
Handshake keys:
Client write: 0xF30301B29B21460FC5ED7DF6ED3FFD879CDEE00747CAC12D951E62D6208918B8
Server write: 0x02B6FDCC580E0D4DA429A8690A986FD1798C92904841364D86A77692F0703FCF
Handshake IVs:
Client write (IV): 0x1D6F9B457554BCB802C8AF35
Server write (IV): 0xA23B505EB94F1991CA0ECDC5
(Traffic level)
Traffic secrets:
Client: 0x3607F72058B7CF9DC04A04A573917EE108AAA044FE254652A21DB8C16857F080
Server: 0x084E3CEF926CF01D374D55D2E039703C3AFC6F634F1E32E2D5C493218700F782
Traffic keys:
Client write: 0x6807ABB5107B10E4C82DD5F7E0CB3AA9AE862547ED99C522FC9E53D4D77B38E3
Server write: 0xCF3595EEB579958B83CB6D45A00DF664EE0E3C5E2E716C7EE4532F938ECC4F1C
Traffic base IVs:
Client write (base IV): 0xC813FA8C42F29D511F471393
Server write (base IV): 0x9D162C2773B4D9A930B9E2A2
--- Messages ---
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1303,0x1301,0xC02C,0xC030,0xC02B,0xC02F,0xCCA9
0xCCA8,0x00A3,0x009F,0x00A2,0x009E,0xCCAA,0xC0AF,0xC0AD
0xC024,0xC028,0xC00A,0xC014,0xC0A3,0xC09F,0x006B,0x006A
0x0039,0x0038,0xC0AE,0xC0AC,0xC023,0xC027,0xC009,0xC013
0xC0A2,0xC09E,0x0067,0x0040,0x0033,0x0032,0xC05D,0xC061
0xC05C,0xC060,0xC073,0xC077,0xC072,0xC076,0xC057,0xC053
0xC056,0xC052,0x00C4,0x00C3,0x00BE,0x00BD,0x0088,0x0087
0x0045,0x0044,0x009D,0x009C,0xC0A1,0xC09D,0xC0A0,0xC09C
0x003D,0x003C,0x0035,0x002F,0xC051,0xC050,0x00C0,0x00BA
0x0084,0x0041,0x00FF
Client Random: BB:F4:C7:78:BE:C7:E8:11:FE:1D:86:9A:5B:8F:BE:78:8D:5A:C5:6D:2E:04:B5:EA:A7:3F:28:DA:87:E1:F1:8D
Client SessionID: E0:56:F6:CB:01:CF:56:9A:9A:DA:AF:F8:41:37:10:AE:00:24:B2:12:32:C3:A4:16:65:4B:21:17:83:12:0C:B5
Extensions:
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 11 (0x000B); /non-TLS-1.3/
03:00:01:02
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x001E (X448)
0x0019 (Secp521r1)
0x0018 (Secp384r1)
Type: 35 (0x0023); /non-TLS-1.3/
Type: 22 (0x0016); /non-TLS-1.3/
Type: 23 (0x0017); /non-TLS-1.3/
Type: 13 (0x000D); "signature_algorithms"
00:2E:04:03:05:03:06:03:08:07:08:08:08:09:08:0A
08:0B:08:04:08:05:08:06:04:01:05:01:06:01:03:03
02:03:03:01:02:01:03:02:02:02:04:02:05:02:06:02
Type: 43 (0x002B); "supported_versions"
0x0304
0x0303
0x0302
0x0301
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
X25519 (0x001D)
x = 0x41F6F59E6F5B4CE213CD25BD5881719C663B808FEE8FF81F74D1B31AB68FCC20
Type: 21 (0x0015); "padding"
length: 0x70 (112) octets
HELLO_RETRY_REQUEST (sent, server)
Legacy Version: 0x0303
Cipher suite: 0x1303 (TLS_CHACHA20_POLY1305_SHA256)
HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
SessionID: E0:56:F6:CB:01:CF:56:9A:9A:DA:AF:F8:41:37:10:AE:00:24:B2:12:32:C3:A4:16:65:4B:21:17:83:12:0C:B5
Extensions:
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
[Legacy ChangeCipherSpec message present (client)]
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1303,0x1301,0xC02C,0xC030,0xC02B,0xC02F,0xCCA9
0xCCA8,0x00A3,0x009F,0x00A2,0x009E,0xCCAA,0xC0AF,0xC0AD
0xC024,0xC028,0xC00A,0xC014,0xC0A3,0xC09F,0x006B,0x006A
0x0039,0x0038,0xC0AE,0xC0AC,0xC023,0xC027,0xC009,0xC013
0xC0A2,0xC09E,0x0067,0x0040,0x0033,0x0032,0xC05D,0xC061
0xC05C,0xC060,0xC073,0xC077,0xC072,0xC076,0xC057,0xC053
0xC056,0xC052,0x00C4,0x00C3,0x00BE,0x00BD,0x0088,0x0087
0x0045,0x0044,0x009D,0x009C,0xC0A1,0xC09D,0xC0A0,0xC09C
0x003D,0x003C,0x0035,0x002F,0xC051,0xC050,0x00C0,0x00BA
0x0084,0x0041,0x00FF
Client Random: BB:F4:C7:78:BE:C7:E8:11:FE:1D:86:9A:5B:8F:BE:78:8D:5A:C5:6D:2E:04:B5:EA:A7:3F:28:DA:87:E1:F1:8D
Client SessionID: E0:56:F6:CB:01:CF:56:9A:9A:DA:AF:F8:41:37:10:AE:00:24:B2:12:32:C3:A4:16:65:4B:21:17:83:12:0C:B5
Extensions:
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 11 (0x000B); /non-TLS-1.3/
03:00:01:02
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x001E (X448)
0x0019 (Secp521r1)
0x0018 (Secp384r1)
Type: 35 (0x0023); /non-TLS-1.3/
Type: 22 (0x0016); /non-TLS-1.3/
Type: 23 (0x0017); /non-TLS-1.3/
Type: 13 (0x000D); "signature_algorithms"
00:2E:04:03:05:03:06:03:08:07:08:08:08:09:08:0A
08:0B:08:04:08:05:08:06:04:01:05:01:06:01:03:03
02:03:03:01:02:01:03:02:02:02:04:02:05:02:06:02
Type: 43 (0x002B); "supported_versions"
0x0304
0x0303
0x0302
0x0301
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
x = 0x994F8A9BC138894592BDDFB9E23804ACAD0437CB392F8A6C43F7938AA42B0042
y = 0x5C54D773A5856A093EF4F0DD1578A06FC75E5382D7D2099FC416392E597D7F27
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 21 (0x0015); "padding"
length: 0x41 (65) octets
SERVER_HELLO (sent)
Legacy Version: 0x0303
Cipher suite: 0x1303 (TLS_CHACHA20_POLY1305_SHA256)
Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
SessionID: E0:56:F6:CB:01:CF:56:9A:9A:DA:AF:F8:41:37:10:AE:00:24:B2:12:32:C3:A4:16:65:4B:21:17:83:12:0C:B5
Extensions:
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
x = 0x1FADAC79156E08C8532CE88DF887273141ACE16E44E9C268CE496596F41B65FA
y = 0xF82394637B6ACF004AB253F956BD2CD6CA6C9AD8454BF1FBF281A6C54A93D99C
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
SERVER_HANDSHAKE_MESSAGES (sent)
Type: 8 (0x08) - "encrypted_extensions"
Length (octets, dec.): 2
00:00
Type: 11 (0x0B) - "certificate"
Length (octets, dec.): 3572
[...] /skipped 3572 data octets/
Type: 15 (0x0F) - "certificate_verify"
Length (octets, dec.): 107
05:03:00:67:30:65:02:30:73:C1:53:80:2D:F8:20:5E:5F:18:1A:87:BE:74:7F:81:8F:70:82:AC:9F:3B:7A:D6
B8:AD:EE:76:91:EA:E1:DA:C3:1B:BC:D7:EC:EF:80:7F:39:6B:C1:97:DC:6B:B5:EA:02:31:00:87:3E:B9:44:31
C8:E1:EA:42:B0:1A:29:87:71:6B:20:79:F3:4C:10:F8:C6:7E:8B:4C:2E:18:AC:80:17:63:39:35:06:38:AE:53
D9:E3:EC:14:47:80:90:91:B8:40:0A
Type: 20 (0x14) - "finished"
Length (octets, dec.): 32
F7:78:A1:80:A6:04:33:76:87:33:73:68:BE:ED:9F:BE:9B:22:36:D8:3D:60:CC:17:D0:02:EF:3C:7B:22:56:52
CLIENT_FINISHED (received)
Finished value: 0x94D0D1D8E7D01E92E94473A58B53F3169DA437649398A92F5FE13228DE11BF84
Client Finished status: OK
CLIENT_APPLICATION_DATA (recieved)
ASCII dump (filtered):
GET / HTTP/1.1..User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:60.0
) Gecko/20100101 Firefox/60.0..Accept: text/html,application/xht
ml+xml,application/xml;q=0.9,*/*;q=0.8..Referer: http://www.ezhe
.ru/fri/410/..Host: tls13.1d.pw....
TCP: server: 194.87.109.56:443; client: 198.27.81.59:40800; timestamp: 1666375779
Contacts: dxdt.ru, alex/()\/abaabb.xyz.
/\_/\
( 0.0 )
= ^ =
/|_|\
(") (")=~
Provide ESNI to get second ASCII cat
Elapsed server side: 212ms; ServerHello sent: 109ms (including HelloRetryRequest time); TLS connection established: 210ms.