unexplained net_error = -107 (ERR_SSL_PROTOCOL_ERROR)
Reported by
legendm...@gmail.com,
Jun 6 2018
|
|||||||||||||
Issue descriptionUserAgent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.62 Safari/537.36 Example URL: https://www.mail-archive.com/cisco-nsp@puck.nether.net/ Steps to reproduce the problem: 1. open URL What is the expected behavior? website loads properly What went wrong? ERR_SSL_PROTOCOL_ERROR Did this work before? N/A Chrome version: 67.0.3396.62 Channel: stable OS Version: Ubuntu 16.04 LTS Flash Version: I am able to reproduce this issue on MacOS High Sierra with Chrome stable using a different profile. Previously I ran into this particular issue with this site before using Chrome and no culprit with found. The URL loads fine with other browser, Chrome incognito mode or curl >>>packet capture after receiving/ACKing HTTP response, client sending encrypted alert followed by FIN >>>events 81984: URL_REQUEST https://www.mail-archive.com/cisco-nsp@puck.nether.net/ Start Time: 2018-06-05 18:28:03.087 t=3277 [st= 0] +REQUEST_ALIVE [dt=79] --> priority = "HIGHEST" --> url = "https://www.mail-archive.com/cisco-nsp@puck.nether.net/" t=3277 [st= 0] +URL_REQUEST_DELEGATE [dt=2] t=3277 [st= 0] DELEGATE_INFO [dt=1] --> delegate_blocked_by = "extension AdGuard AdBlocker" t=3278 [st= 1] DELEGATE_INFO [dt=1] --> delegate_blocked_by = "extension AdGuard AdBlocker" t=3279 [st= 2] -URL_REQUEST_DELEGATE t=3279 [st= 2] +URL_REQUEST_START_JOB [dt=73] --> load_flags = 18433 (MAIN_FRAME_DEPRECATED | MAYBE_USER_GESTURE | VALIDATE_CACHE) --> method = "GET" --> url = "https://www.mail-archive.com/cisco-nsp@puck.nether.net/" t=3279 [st= 2] +URL_REQUEST_DELEGATE [dt=2] t=3279 [st= 2] DELEGATE_INFO [dt=2] --> delegate_blocked_by = "extension AdGuard AdBlocker" t=3281 [st= 4] -URL_REQUEST_DELEGATE t=3282 [st= 5] HTTP_CACHE_GET_BACKEND [dt=0] t=3282 [st= 5] HTTP_CACHE_OPEN_ENTRY [dt=0] --> net_error = -2 (ERR_FAILED) t=3282 [st= 5] HTTP_CACHE_CREATE_ENTRY [dt=0] t=3282 [st= 5] HTTP_CACHE_ADD_TO_ENTRY [dt=0] t=3282 [st= 5] +HTTP_STREAM_REQUEST [dt=52] t=3282 [st= 5] HTTP_STREAM_JOB_CONTROLLER_BOUND --> source_dependency = 81987 (HTTP_STREAM_JOB_CONTROLLER) t=3334 [st=57] HTTP_STREAM_REQUEST_BOUND_TO_JOB --> source_dependency = 81988 (HTTP_STREAM_JOB) t=3334 [st=57] -HTTP_STREAM_REQUEST t=3334 [st=57] +HTTP_TRANSACTION_SEND_REQUEST [dt=0] t=3334 [st=57] HTTP_TRANSACTION_SEND_REQUEST_HEADERS --> GET /cisco-nsp@puck.nether.net/ HTTP/1.1 Host: www.mail-archive.com Connection: keep-alive Cache-Control: max-age=0 Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.62 Safari/537.36 DNT: 1 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8 Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9,zh-CN;q=0.8,zh;q=0.7 t=3334 [st=57] -HTTP_TRANSACTION_SEND_REQUEST t=3334 [st=57] +HTTP_TRANSACTION_READ_HEADERS [dt=17] t=3334 [st=57] HTTP_STREAM_PARSER_READ_HEADERS [dt=16] t=3350 [st=73] HTTP_TRANSACTION_READ_RESPONSE_HEADERS --> HTTP/1.1 200 OK Date: Wed, 06 Jun 2018 01:28:03 GMT Server: Apache/2.4.29 (Ubuntu) Link: <https://www.mail-archive.com/cisco-nsp@puck.nether.net/>; rel="canonical" Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 5141 Keep-Alive: timeout=5, max=500 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8 t=3351 [st=74] -HTTP_TRANSACTION_READ_HEADERS t=3351 [st=74] HTTP_CACHE_WRITE_INFO [dt=0] t=3351 [st=74] HTTP_CACHE_WRITE_DATA [dt=0] t=3351 [st=74] HTTP_CACHE_WRITE_INFO [dt=0] t=3351 [st=74] +URL_REQUEST_DELEGATE [dt=1] t=3351 [st=74] DELEGATE_INFO [dt=1] --> delegate_blocked_by = "extension AdGuard AdBlocker" t=3352 [st=75] DELEGATE_INFO [dt=0] --> delegate_blocked_by = "extension AdGuard AdBlocker" t=3352 [st=75] -URL_REQUEST_DELEGATE t=3352 [st=75] URL_REQUEST_FILTERS_SET --> filters = "GZIP" t=3352 [st=75] -URL_REQUEST_START_JOB t=3352 [st=75] +URL_REQUEST_DELEGATE [dt=3] t=3352 [st=75] DELEGATE_INFO [dt=3] --> delegate_blocked_by = "MojoAsyncResourceHandler" t=3355 [st=78] -URL_REQUEST_DELEGATE t=3355 [st=78] HTTP_TRANSACTION_READ_BODY [dt=0] t=3355 [st=78] URL_REQUEST_JOB_BYTES_READ --> byte_count = 10 t=3355 [st=78] HTTP_TRANSACTION_READ_BODY [dt=1] --> net_error = -107 (ERR_SSL_PROTOCOL_ERROR) t=3356 [st=79] FAILED --> net_error = -107 (ERR_SSL_PROTOCOL_ERROR) t=3356 [st=79] -REQUEST_ALIVE --> net_error = -107 (ERR_SSL_PROTOCOL_ERROR) > 81985: DISK_CACHE_ENTRY Start Time: 2018-06-05 18:28:03.092 t=3282 [st=0] +SIMPLE_CACHE_ENTRY [dt=0] --> entry_hash = "0x7bf1db511979928e" t=3282 [st=0] SIMPLE_CACHE_ENTRY_SET_KEY --> key = "https://www.mail-archive.com/cisco-nsp@puck.nether.net/" t=3282 [st=0] SIMPLE_CACHE_ENTRY_OPEN_CALL t=3282 [st=0] SIMPLE_CACHE_ENTRY_OPEN_END --> net_error = -2 (ERR_FAILED) t=3282 [st=0] -SIMPLE_CACHE_ENTRY > 81986: DISK_CACHE_ENTRY Start Time: 2018-06-05 18:28:03.092 t=3282 [st= 0] +SIMPLE_CACHE_ENTRY [dt=75] --> entry_hash = "0x7bf1db511979928e" t=3282 [st= 0] SIMPLE_CACHE_ENTRY_SET_KEY --> key = "https://www.mail-archive.com/cisco-nsp@puck.nether.net/" t=3282 [st= 0] SIMPLE_CACHE_ENTRY_CREATE_CALL t=3282 [st= 0] SIMPLE_CACHE_ENTRY_CREATE_OPTIMISTIC t=3282 [st= 0] SIMPLE_CACHE_ENTRY_CREATE_BEGIN t=3282 [st= 0] SIMPLE_CACHE_ENTRY_CREATE_END t=3351 [st=69] SIMPLE_CACHE_ENTRY_WRITE_CALL --> buf_len = 3940 --> index = 0 --> offset = 0 --> truncate = true t=3351 [st=69] SIMPLE_CACHE_ENTRY_WRITE_CALL --> buf_len = 0 --> index = 1 --> offset = 0 --> truncate = true t=3351 [st=69] SIMPLE_CACHE_ENTRY_WRITE_OPTIMISTIC --> bytes_copied = 0 t=3351 [st=69] SIMPLE_CACHE_ENTRY_WRITE_BEGIN --> buf_len = 0 --> index = 1 --> offset = 0 --> truncate = true t=3351 [st=69] SIMPLE_CACHE_ENTRY_WRITE_CALL --> buf_len = 0 --> index = 2 --> offset = 0 --> truncate = true t=3351 [st=69] SIMPLE_CACHE_ENTRY_WRITE_OPTIMISTIC --> bytes_copied = 0 t=3351 [st=69] SIMPLE_CACHE_ENTRY_WRITE_BEGIN --> buf_len = 0 --> index = 2 --> offset = 0 --> truncate = true t=3355 [st=73] SIMPLE_CACHE_ENTRY_WRITE_CALL --> buf_len = 10 --> index = 1 --> offset = 0 --> truncate = true t=3355 [st=73] SIMPLE_CACHE_ENTRY_WRITE_OPTIMISTIC --> bytes_copied = 10 t=3355 [st=73] SIMPLE_CACHE_ENTRY_WRITE_BEGIN --> buf_len = 10 --> index = 1 --> offset = 0 --> truncate = true t=3356 [st=74] SIMPLE_CACHE_ENTRY_DOOM_CALL t=3356 [st=74] SIMPLE_CACHE_ENTRY_DOOM_BEGIN t=3356 [st=74] SIMPLE_CACHE_ENTRY_CLOSE_CALL t=3356 [st=74] SIMPLE_CACHE_ENTRY_WRITE_END --> bytes_copied = 10 t=3356 [st=74] SIMPLE_CACHE_ENTRY_DOOM_END t=3356 [st=74] SIMPLE_CACHE_ENTRY_CLOSE_BEGIN t=3357 [st=75] SIMPLE_CACHE_ENTRY_CLOSE_END t=3357 [st=75] -SIMPLE_CACHE_ENTRY > 81987: HTTP_STREAM_JOB_CONTROLLER https://www.mail-archive.com/cisco-nsp@puck.nether.net/ Start Time: 2018-06-05 18:28:03.092 t=3282 [st= 0] +HTTP_STREAM_JOB_CONTROLLER [dt=52] --> is_preconnect = false --> url = "https://www.mail-archive.com/cisco-nsp@puck.nether.net/" t=3282 [st= 0] HTTP_STREAM_JOB_CONTROLLER_BOUND --> source_dependency = 81984 (URL_REQUEST) t=3282 [st= 0] +PROXY_RESOLUTION_SERVICE [dt=1] t=3283 [st= 1] PROXY_RESOLUTION_SERVICE_RESOLVED_PROXY_LIST --> pac_string = "DIRECT" t=3283 [st= 1] -PROXY_RESOLUTION_SERVICE t=3283 [st= 1] HTTP_STREAM_JOB_CONTROLLER_PROXY_SERVER_RESOLVED --> proxy_server = "DIRECT" t=3283 [st= 1] HTTP_STREAM_REQUEST_STARTED_JOB --> source_dependency = 81988 (HTTP_STREAM_JOB) t=3334 [st=52] -HTTP_STREAM_JOB_CONTROLLER > 81988: HTTP_STREAM_JOB https://www.mail-archive.com/ Start Time: 2018-06-05 18:28:03.093 t=3283 [st= 0] +HTTP_STREAM_JOB [dt=51] --> expect_spdy = "false" --> original_url = "https://www.mail-archive.com/" --> priority = "HIGHEST" --> source_dependency = 81987 (HTTP_STREAM_JOB_CONTROLLER) --> url = "https://www.mail-archive.com/" --> using_quic = "false" t=3283 [st= 0] HTTP_STREAM_JOB_WAITING [dt=0] --> should_wait = false t=3283 [st= 0] +HTTP_STREAM_JOB_INIT_CONNECTION [dt=51] t=3283 [st= 0] +HOST_RESOLVER_IMPL_REQUEST [dt=0] --> address_family = 0 --> allow_cached_response = true --> host = "www.mail-archive.com:443" --> is_speculative = false t=3283 [st= 0] HOST_RESOLVER_IMPL_IPV6_REACHABILITY_CHECK --> cached = true --> ipv6_available = true t=3283 [st= 0] -HOST_RESOLVER_IMPL_REQUEST --> net_error = -804 (ERR_DNS_CACHE_MISS) t=3283 [st= 0] +SOCKET_POOL [dt=51] t=3334 [st=51] SOCKET_POOL_BOUND_TO_CONNECT_JOB --> source_dependency = 81989 (SSL_CONNECT_JOB) t=3334 [st=51] SOCKET_POOL_BOUND_TO_SOCKET --> source_dependency = 81991 (SOCKET) t=3334 [st=51] -SOCKET_POOL t=3334 [st=51] -HTTP_STREAM_JOB_INIT_CONNECTION t=3334 [st=51] HTTP_STREAM_REQUEST_PROTO --> proto = "http/1.1" t=3334 [st=51] HTTP_STREAM_JOB_BOUND_TO_REQUEST --> source_dependency = 81984 (URL_REQUEST) t=3334 [st=51] -HTTP_STREAM_JOB > 81989: SSL_CONNECT_JOB ssl/www.mail-archive.com:443 Start Time: 2018-06-05 18:28:03.093 t=3283 [st= 0] +SOCKET_POOL_CONNECT_JOB [dt=51] --> group_name = "ssl/www.mail-archive.com:443" t=3283 [st= 0] +SOCKET_POOL_CONNECT_JOB_CONNECT [dt=51] t=3283 [st= 0] TCP_CLIENT_SOCKET_POOL_REQUESTED_SOCKET --> host_and_port = "www.mail-archive.com:443" t=3283 [st= 0] +SOCKET_POOL [dt=30] t=3313 [st=30] SOCKET_POOL_BOUND_TO_CONNECT_JOB --> source_dependency = 81990 (TRANSPORT_CONNECT_JOB) t=3313 [st=30] SOCKET_POOL_BOUND_TO_SOCKET --> source_dependency = 81991 (SOCKET) t=3313 [st=30] -SOCKET_POOL t=3334 [st=51] CONNECT_JOB_SET_SOCKET --> source_dependency = 81991 (SOCKET) t=3334 [st=51] -SOCKET_POOL_CONNECT_JOB_CONNECT t=3334 [st=51] -SOCKET_POOL_CONNECT_JOB > 81990: TRANSPORT_CONNECT_JOB ssl/www.mail-archive.com:443 Start Time: 2018-06-05 18:28:03.093 t=3283 [st= 0] +SOCKET_POOL_CONNECT_JOB [dt=30] --> group_name = "ssl/www.mail-archive.com:443" t=3283 [st= 0] +SOCKET_POOL_CONNECT_JOB_CONNECT [dt=30] t=3283 [st= 0] +HOST_RESOLVER_IMPL_REQUEST [dt=16] --> address_family = 0 --> allow_cached_response = true --> host = "www.mail-archive.com:443" --> is_speculative = false t=3283 [st= 0] HOST_RESOLVER_IMPL_IPV6_REACHABILITY_CHECK --> cached = true --> ipv6_available = true t=3283 [st= 0] HOST_RESOLVER_IMPL_JOB_ATTACH t=3299 [st=16] -HOST_RESOLVER_IMPL_REQUEST t=3299 [st=16] +HOST_RESOLVER_IMPL_REQUEST [dt=0] --> address_family = 0 --> allow_cached_response = true --> host = "www.mail-archive.com:443" --> is_speculative = false t=3299 [st=16] HOST_RESOLVER_IMPL_IPV6_REACHABILITY_CHECK --> cached = true --> ipv6_available = true t=3299 [st=16] HOST_RESOLVER_IMPL_CACHE_HIT --> address_list = ["72.52.77.8:443"] t=3299 [st=16] -HOST_RESOLVER_IMPL_REQUEST t=3313 [st=30] CONNECT_JOB_SET_SOCKET --> source_dependency = 81991 (SOCKET) t=3313 [st=30] -SOCKET_POOL_CONNECT_JOB_CONNECT t=3313 [st=30] -SOCKET_POOL_CONNECT_JOB > 81991: SOCKET ssl/www.mail-archive.com:443 Start Time: 2018-06-05 18:28:03.109 t=3299 [st= 0] +SOCKET_ALIVE [dt=57] --> source_dependency = 81990 (TRANSPORT_CONNECT_JOB) t=3299 [st= 0] +TCP_CONNECT [dt=14] --> address_list = ["72.52.77.8:443"] t=3299 [st= 0] TCP_CONNECT_ATTEMPT [dt=14] --> address = "72.52.77.8:443" t=3313 [st=14] -TCP_CONNECT --> source_address = "10.0.0.100:59960" t=3313 [st=14] +SOCKET_IN_USE [dt=43] --> source_dependency = 81989 (SSL_CONNECT_JOB) t=3313 [st=14] +SSL_CONNECT [dt=21] t=3313 [st=14] SSL_HANDSHAKE_MESSAGE_SENT --> hex_encoded_bytes = 01 00 02 11 03 03 04 02 BB DE 8B B3 1D D8 27 D1 . ............'. A1 A6 C8 A2 33 71 EB 13 F0 C7 6B 47 F5 87 8B C7 ....3q....kG.... 6F 06 DE 0D 9F 5B 20 8F 15 19 C7 03 81 67 EC B1 o....[ ......g.. C5 A0 92 5A 1B B4 65 BA 32 A4 0C DD 9E E3 42 C4 ...Z..e.2.....B. 52 35 61 2D 6F 39 11 00 22 8A 8A 13 01 13 02 13 R5a-o9. "....... 03 C0 2B C0 2F C0 2C C0 30 CC A9 CC A8 C0 13 C0 ..+./.,.0....... 14 00 9C 00 9D 00 2F 00 35 00 0A 01 00 01 A6 9A . . . / 5 .. ... 9A 00 00 FF 01 00 01 00 00 00 00 19 00 17 00 00 . .. . . . 14 77 77 77 2E 6D 61 69 6C 2D 61 72 63 68 69 76 .www.mail-archiv 65 2E 63 6F 6D 00 17 00 00 00 23 00 E0 9C EC 91 e.com . # .... F4 79 DE FE 2A D6 90 D5 7B D8 37 E5 EE B7 17 7B .y..*...{.7....{ E6 E3 9F B2 30 DF 8E 23 60 80 8E F2 42 B4 24 4A ....0..#`...B.$J 1A CD E1 FE A2 99 CA 7C A0 98 03 AD 8E 1C 67 64 .......|......gd D9 7B 7E B8 4C 59 33 75 A9 95 F4 D2 3E 89 39 62 .{~.LY3u....>.9b 20 1F 6D 71 FE 37 0B D1 68 28 5E 01 EC FF 9C 3C .mq.7..h(^....< 68 3F 79 47 CF 5F 82 6D 65 DA C9 2B AB 97 3E 41 h?yG._.me..+..>A 6A A9 75 3B 7D 98 23 47 C1 F6 94 EA 68 DE 20 A1 j.u;}.#G....h. . 16 44 05 6A 9B 90 DF 70 33 29 39 A4 65 F7 7C 8F .D.j...p3)9.e.|. 6D 01 37 C1 81 71 F2 8E 7F 9C 09 30 B8 64 57 9A m.7..q.....0.dW. A5 B5 D4 1E E5 CD 2C 76 70 62 47 CA 4C BB 5A E0 ......,vpbG.L.Z. BC 35 4B E3 64 EE 2C 64 CD FF EF F5 DC 24 33 35 .5K.d.,d.....$35 31 6E D4 A7 7E 5F 5C 8D 1A 75 8A 5A AB 61 E0 65 1n..~_\..u.Z.a.e 3D F8 A9 82 EC F4 CB 47 D7 9D 9C 44 41 46 23 94 =......G...DAF#. EA 3B F1 8A 82 65 13 60 AD 40 91 4A 80 00 0D 00 .;...e.`.@.J. . 14 00 12 04 03 08 04 04 01 05 03 08 05 05 01 08 . .............. 06 06 01 02 01 00 05 00 05 01 00 00 00 00 00 12 ..... . .. . 00 00 00 10 00 0E 00 0C 02 68 32 08 68 74 74 70 . . ..h2.http 2F 31 2E 31 75 50 00 00 00 0B 00 02 01 00 00 33 /1.1uP . .. 3 00 2B 00 29 7A 7A 00 01 00 00 1D 00 20 7C 76 0C + )zz . . |v. C4 41 08 7F A5 4D 9C 30 68 2C EC 1E FE 0D 91 EF .A...M.0h,...... AC B9 D3 5A DC 59 53 5A FB E3 CE 6B 3E 00 2D 00 ...Z.YSZ...k> - 02 01 01 00 2B 00 0B 0A DA DA 7F 17 03 03 03 02 ... + .......... 03 01 00 0A 00 0A 00 08 7A 7A 00 1D 00 17 00 18 .. . . .zz . . . 1A 1A 00 01 00 .. . --> type = 1 t=3313 [st=14] SOCKET_BYTES_SENT --> byte_count = 538 t=3333 [st=34] SOCKET_BYTES_RECEIVED --> byte_count = 156 t=3334 [st=35] SSL_HANDSHAKE_MESSAGE_RECEIVED --> hex_encoded_bytes = 02 00 00 60 03 03 06 E5 A0 C4 BC D8 5E 19 8A 7D . `........^..} 4D 27 6D F0 92 8C 86 FF 3C 0E 7F D4 DA 72 24 97 M'm.....<....r$. 38 3D C1 AA 13 4D 20 8F 15 19 C7 03 81 67 EC B1 8=...M ......g.. C5 A0 92 5A 1B B4 65 BA 32 A4 0C DD 9E E3 42 C4 ...Z..e.2.....B. 52 35 61 2D 6F 39 11 C0 2F 00 00 18 FF 01 00 01 R5a-o9../ ... . 00 00 17 00 00 00 10 00 0B 00 09 08 68 74 74 70 . . . ..http 2F 31 2E 31 /1.1 --> type = 2 t=3334 [st=35] SSL_HANDSHAKE_MESSAGE_RECEIVED --> hex_encoded_bytes = 14 00 00 0C 14 DF 2F 75 C7 E1 8F E0 FD F9 19 32 . .../u.......2 --> type = 20 t=3334 [st=35] SSL_HANDSHAKE_MESSAGE_SENT --> hex_encoded_bytes = 14 00 00 0C 2F 38 94 CF F0 CF CC AD 21 E4 E8 9A . ./8......!... --> type = 20 t=3334 [st=35] SOCKET_BYTES_SENT --> byte_count = 51 t=3334 [st=35] SSL_CERTIFICATES_RECEIVED --> certificates = -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIJANCp48UKCOwGMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTE3MDQyMjIzNTIwMFoX DTIwMDQyMjIzNTIwMFowQjEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRh dGVkMR0wGwYDVQQDExR3d3cubWFpbC1hcmNoaXZlLmNvbTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBANnpmLneevLDCaQPvF5BJS9z6iIv+6J8LABHGnCe 3MEWS+QFMOebxuezDRTJoJ+/ItiTGmm0eSdwjWpCZ38KsSx9Kfs4EGZOEVshvuMn UDhqCYNUruaZK6rQxrAEU5oL+YJTSS1uhc4B+W+SaZ0WjTyFCDtpdYhSWwgUG06h zT+VnqCpAivvfdQ3fcd4NBhCER8O4OcnTXaCTtNr5tg8rFcSTPsL8NnllTuHCKkk qGI9vYYq913HDR0WC5jHilA/T68IF23NM5RiVRuHQH7xun9IuKnG/fC6PO3Fbqzc Gu8oIxAsCXQTC7M7fMjODwYF5oqTrY2zHtfH5TmBtRKGnpMCAwEAAaOCAcQwggHA MAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMA4G A1UdDwEB/wQEAwIFoDA3BgNVHR8EMDAuMCygKqAohiZodHRwOi8vY3JsLmdvZGFk ZHkuY29tL2dkaWcyczEtNDg2LmNybDBdBgNVHSAEVjBUMEgGC2CGSAGG/W0BBxcB MDkwNwYIKwYBBQUHAgEWK2h0dHA6Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20v cmVwb3NpdG9yeS8wCAYGZ4EMAQIBMHYGCCsGAQUFBwEBBGowaDAkBggrBgEFBQcw AYYYaHR0cDovL29jc3AuZ29kYWRkeS5jb20vMEAGCCsGAQUFBzAChjRodHRwOi8v Y2VydGlmaWNhdGVzLmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvZ2RpZzIuY3J0MB8G A1UdIwQYMBaAFEDCvSeOzDSDMKIz1/tss/C0LIDOMDEGA1UdEQQqMCiCFHd3dy5t YWlsLWFyY2hpdmUuY29tghBtYWlsLWFyY2hpdmUuY29tMB0GA1UdDgQWBBS2sy1T e6jQQu0CfzD1gXYzYy+vwzANBgkqhkiG9w0BAQsFAAOCAQEAVFN9xhizJ2nBCYef lFIW1s3P7CQxbrQWTZuQYPVkM5/M1XMY7ls80l3NYZE9d3AN4r3sdX00KURy8w5W qW+S2nHLW41Fo0TNwVel6Wh8VE8+G5S/ILgQCY6cR9TxkeLREcYva1F2PQDGQAOr ylx9E5yz3YaHGRS+cGC+gwL8CH/OYfeES4BWUkFQeNjCaqHVYDyaIYMXlq1yDUmZ tv/7CY8R+4Nw2h75y4TM+Qc8NNT8BIIwaY8q7S+oF7QR63Mr1V1UTRAl9oPi5GGY Ze1tK7AaVP8O0qQFawCTxIptdYYFl0ISv+rnFPMH5Ew6eUN7szbKB3/ADI995cpr YBGSaQ== -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIBBzANBgkqhkiG9w0BAQsFADCBgzELMAkGA1UEBhMCVVMx EDAOBgNVBAgTB0FyaXpvbmExEzARBgNVBAcTClNjb3R0c2RhbGUxGjAYBgNVBAoT EUdvRGFkZHkuY29tLCBJbmMuMTEwLwYDVQQDEyhHbyBEYWRkeSBSb290IENlcnRp ZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTExMDUwMzA3MDAwMFoXDTMxMDUwMzA3 MDAwMFowgbQxCzAJBgNVBAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQH EwpTY290dHNkYWxlMRowGAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UE CxMkaHR0cDovL2NlcnRzLmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQD EypHbyBEYWRkeSBTZWN1cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC54MsQ1K92vdSTYuswZLiBCGzD BNliF44v/z5lz4/OYuY8UhzaFkVLVat4a2ODYpDOD2lsmcgaFItMzEUz6ojcnqOv K/6AYZ15V8TPLvQ/MDxdR/yaFrzDN5ZBUY4RS1T4KL7QjL7wMDge87Am+GZHY23e cSZHjzhHU9FGHbTj3ADqRay9vHHZqm8A29vNMDp5T19MR/gd71vCxJ1gO7GyQ5HY pDNO6rPWJ0+tJYqlxvTV0KaudAVkV4i1RFXULSo6Pvi4vekyCgKUZMQWOlDxSq7n eTOvDCAHf+jfBDnCaQJsY1L6d8EbyHSHyLmTGFBUNUtpTrw700kuH9zB0lL7AgMB AAGjggEaMIIBFjAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBBjAdBgNV HQ4EFgQUQMK9J47MNIMwojPX+2yz8LQsgM4wHwYDVR0jBBgwFoAUOpqFBxBnKLbv 9r0FQW4gwZTaD94wNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8v b2NzcC5nb2RhZGR5LmNvbS8wNQYDVR0fBC4wLDAqoCigJoYkaHR0cDovL2NybC5n b2RhZGR5LmNvbS9nZHJvb3QtZzIuY3JsMEYGA1UdIAQ/MD0wOwYEVR0gADAzMDEG CCsGAQUFBwIBFiVodHRwczovL2NlcnRzLmdvZGFkZHkuY29tL3JlcG9zaXRvcnkv MA0GCSqGSIb3DQEBCwUAA4IBAQAIfmyTEMg4uJapkEv/oV9PBO9sPpyIBslQj6Zz 91cxG7685C/b+LrTW+C05+Z5Yg4MotdqY3MxtfWoSKQ7CC2iXZDXtHwlTxFWMMS2 RJ17LJ3lXubvDGGqv+QqG+6EnriDfcFDzkSnE3ANkR/0yBOtg2DZ2HKocyQetawi DsoXiWJYRBuriSUBAA/NxBti21G00w9RKpv0vHP8ds42pM3Z2Czqrpv1KrKQ0U11 GIo/ikGQI31bS/6kA1ibRrLDYGCD+H1QQc7CoZDDu+8CL9IVVO5EFdkKrqeKM+2x LXY2JtwE65/3YR8V3Idv7kaWKK2hJn0KCacuBKONvPi8BDAB -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- MIIEfTCCA2WgAwIBAgIDG+cVMA0GCSqGSIb3DQEBCwUAMGMxCzAJBgNVBAYTAlVT MSEwHwYDVQQKExhUaGUgR28gRGFkZHkgR3JvdXAsIEluYy4xMTAvBgNVBAsTKEdv IERhZGR5IENsYXNzIDIgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkwHhcNMTQwMTAx MDcwMDAwWhcNMzEwNTMwMDcwMDAwWjCBgzELMAkGA1UEBhMCVVMxEDAOBgNVBAgT B0FyaXpvbmExEzARBgNVBAcTClNjb3R0c2RhbGUxGjAYBgNVBAoTEUdvRGFkZHku Y29tLCBJbmMuMTEwLwYDVQQDEyhHbyBEYWRkeSBSb290IENlcnRpZmljYXRlIEF1 dGhvcml0eSAtIEcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3Fi CPH6WTT3G8kYo/eASVjpIoMTpsUgQwE7hPHmhUmfJ+r2hBtOoLTbcJjHMgGxBT4H Tu70+k8vWTAi56sZVmvigAf88xZ1gDlRe+X5NbZ0TqmNghPktj+pA4P6or6KFWp/ 3gvDthkUBcrqw6gElDtGfDIN8wBmIsiNaW02jBEYt9OyHGC0OPoCjM7T3UYH3go+ 6118yHz7sCtTpJJiaVElBWEaRIGMLKlDliPfrDqBmg4pxRyp6V0etp6eMAo5zvGI gPtLXcwy7IViQyU0AlYnAZG0O3AqP26x6JyIAX2f1PnbU21gnb8s51iruF9G/M7E GwM8CetJMVxpRrPgRwIDAQABo4IBFzCCARMwDwYDVR0TAQH/BAUwAwEB/zAOBgNV HQ8BAf8EBAMCAQYwHQYDVR0OBBYEFDqahQcQZyi27/a9BUFuIMGU2g/eMB8GA1Ud IwQYMBaAFNLEsNKR1EwRcbNhyz2h/t2oatTjMDQGCCsGAQUFBwEBBCgwJjAkBggr BgEFBQcwAYYYaHR0cDovL29jc3AuZ29kYWRkeS5jb20vMDIGA1UdHwQrMCkwJ6Al oCOGIWh0dHA6Ly9jcmwuZ29kYWRkeS5jb20vZ2Ryb290LmNybDBGBgNVHSAEPzA9 MDsGBFUdIAAwMzAxBggrBgEFBQcCARYlaHR0cHM6Ly9jZXJ0cy5nb2RhZGR5LmNv bS9yZXBvc2l0b3J5LzANBgkqhkiG9w0BAQsFAAOCAQEAWQtTvZKGEacke+1bMc8d H2xwxbhuvk679r6XUOEwf7ooXGKUwuN+M/f7QnaF25UcjCJYdQkMiGVnOQoWCcWg OJekxSOTP7QYpgEGRJHjp2kntFolfzq3Ms3dhP8qOCkzpN1nsoX+oYggHFCJyNwq 9kIDN0zmiN/VryTyscPfzLXs4Jlet0lUIDyUGAzHHFIYSaRt4bNYC8nY7NmuHDKO KHAN4v6mF56ED71XcLNa6R+ghlO773z/aQvgSMO3kwvIClTErF0UZzdsyqUvMQg3 qm5vjLyb4lddJIGvl5echK1srDdMZvNhkREg5L4wn3qkKQmw4TRfZHcYQFHfjDCm rw== -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- MIIEADCCAuigAwIBAgIBADANBgkqhkiG9w0BAQUFADBjMQswCQYDVQQGEwJVUzEh MB8GA1UEChMYVGhlIEdvIERhZGR5IEdyb3VwLCBJbmMuMTEwLwYDVQQLEyhHbyBE YWRkeSBDbGFzcyAyIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTA0MDYyOTE3 MDYyMFoXDTM0MDYyOTE3MDYyMFowYzELMAkGA1UEBhMCVVMxITAfBgNVBAoTGFRo ZSBHbyBEYWRkeSBHcm91cCwgSW5jLjExMC8GA1UECxMoR28gRGFkZHkgQ2xhc3Mg MiBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTCCASAwDQYJKoZIhvcNAQEBBQADggEN ADCCAQgCggEBAN6d1+pXGEmhW+vXX0iG6r7d/+TvZxz0ZWizV3GgXne77ZtJ6XCA PVYYYwhv2vLM0D9/AlQiVBDYsoHUwHU9S3/Hd8M+eKsaA7Ugay9qK7HFiH7Eux6w wdhFJ2+qN1j3hybX2C32qRe3H3I2TqYXP2WYktsqbl2i/ojgC95/5Y0V4evLOtXi EqITLdiOr18SPaAIBQi2XKVlOARFmR6jYGB0xUGlcmIbYsUfb18aQr4CUWWoriMY avx4A6lNf4DD+qta/KFApMoZFv6yyO9ecw3ud72a9nmYvLEHZ6IVDd2gWMZEewo+ YihfukEHU1jPEX44dMX4/7VpkI+EdOqXG68CAQOjgcAwgb0wHQYDVR0OBBYEFNLE sNKR1EwRcbNhyz2h/t2oatTjMIGNBgNVHSMEgYUwgYKAFNLEsNKR1EwRcbNhyz2h /t2oatTjoWekZTBjMQswCQYDVQQGEwJVUzEhMB8GA1UEChMYVGhlIEdvIERhZGR5 IEdyb3VwLCBJbmMuMTEwLwYDVQQLEyhHbyBEYWRkeSBDbGFzcyAyIENlcnRpZmlj YXRpb24gQXV0aG9yaXR5ggEAMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQEFBQAD ggEBADJL87LKPpH8EsahB4yOd6AzBhRckB4Y9wimPQoZ+YeAEW5p5JYXMP80kWNy OO7MHAGjHZQopDH2esRU1/blMVgDoszOYtuURXO1v0XJJLXVggKtI3lpjbi2Tc7P TMozI+gciKqdi0FuFskg5YmezTvacPd+mSYgFFQlq25zheabIZ0KbIIOqPjCDPoQ HmyW74cNxA9hi63ugyuV+I6ShHI56yDqg+2DzZduCLzrTia2cyvk0/ZM/iZx4mER dEr/VxqHD3VILs9RaRegAhJhldXRQLIQTO7ErBBDpqWeCtWVYpoNz4iCxTIM5Cuf ReYNnyicsbkqWletNw+vHX/bvZ8= -----END CERTIFICATE----- t=3334 [st=35] SIGNED_CERTIFICATE_TIMESTAMPS_RECEIVED --> embedded_scts = "" --> scts_from_ocsp_response = "" --> scts_from_tls_extension = "" t=3334 [st=35] SIGNED_CERTIFICATE_TIMESTAMPS_CHECKED --> scts = [] t=3334 [st=35] CERT_CT_COMPLIANCE_CHECKED --> certificate = -----BEGIN CERTIFICATE----- MIIFQDCCBCigAwIBAgIJANCp48UKCOwGMA0GCSqGSIb3DQEBCwUAMIG0MQswCQYD VQQGEwJVUzEQMA4GA1UECBMHQXJpem9uYTETMBEGA1UEBxMKU2NvdHRzZGFsZTEa MBgGA1UEChMRR29EYWRkeS5jb20sIEluYy4xLTArBgNVBAsTJGh0dHA6Ly9jZXJ0 cy5nb2RhZGR5LmNvbS9yZXBvc2l0b3J5LzEzMDEGA1UEAxMqR28gRGFkZHkgU2Vj dXJlIENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTE3MDQyMjIzNTIwMFoX DTIwMDQyMjIzNTIwMFowQjEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRh dGVkMR0wGwYDVQQDExR3d3cubWFpbC1hcmNoaXZlLmNvbTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBANnpmLneevLDCaQPvF5BJS9z6iIv+6J8LABHGnCe 3MEWS+QFMOebxuezDRTJoJ+/ItiTGmm0eSdwjWpCZ38KsSx9Kfs4EGZOEVshvuMn UDhqCYNUruaZK6rQxrAEU5oL+YJTSS1uhc4B+W+SaZ0WjTyFCDtpdYhSWwgUG06h zT+VnqCpAivvfdQ3fcd4NBhCER8O4OcnTXaCTtNr5tg8rFcSTPsL8NnllTuHCKkk qGI9vYYq913HDR0WC5jHilA/T68IF23NM5RiVRuHQH7xun9IuKnG/fC6PO3Fbqzc Gu8oIxAsCXQTC7M7fMjODwYF5oqTrY2zHtfH5TmBtRKGnpMCAwEAAaOCAcQwggHA MAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMA4G A1UdDwEB/wQEAwIFoDA3BgNVHR8EMDAuMCygKqAohiZodHRwOi8vY3JsLmdvZGFk ZHkuY29tL2dkaWcyczEtNDg2LmNybDBdBgNVHSAEVjBUMEgGC2CGSAGG/W0BBxcB MDkwNwYIKwYBBQUHAgEWK2h0dHA6Ly9jZXJ0aWZpY2F0ZXMuZ29kYWRkeS5jb20v cmVwb3NpdG9yeS8wCAYGZ4EMAQIBMHYGCCsGAQUFBwEBBGowaDAkBggrBgEFBQcw AYYYaHR0cDovL29jc3AuZ29kYWRkeS5jb20vMEAGCCsGAQUFBzAChjRodHRwOi8v Y2VydGlmaWNhdGVzLmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvZ2RpZzIuY3J0MB8G A1UdIwQYMBaAFEDCvSeOzDSDMKIz1/tss/C0LIDOMDEGA1UdEQQqMCiCFHd3dy5t YWlsLWFyY2hpdmUuY29tghBtYWlsLWFyY2hpdmUuY29tMB0GA1UdDgQWBBS2sy1T e6jQQu0CfzD1gXYzYy+vwzANBgkqhkiG9w0BAQsFAAOCAQEAVFN9xhizJ2nBCYef lFIW1s3P7CQxbrQWTZuQYPVkM5/M1XMY7ls80l3NYZE9d3AN4r3sdX00KURy8w5W qW+S2nHLW41Fo0TNwVel6Wh8VE8+G5S/ILgQCY6cR9TxkeLREcYva1F2PQDGQAOr ylx9E5yz3YaHGRS+cGC+gwL8CH/OYfeES4BWUkFQeNjCaqHVYDyaIYMXlq1yDUmZ tv/7CY8R+4Nw2h75y4TM+Qc8NNT8BIIwaY8q7S+oF7QR63Mr1V1UTRAl9oPi5GGY Ze1tK7AaVP8O0qQFawCTxIptdYYFl0ISv+rnFPMH5Ew6eUN7szbKB3/ADI995cpr YBGSaQ== -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIBBzANBgkqhkiG9w0BAQsFADCBgzELMAkGA1UEBhMCVVMx EDAOBgNVBAgTB0FyaXpvbmExEzARBgNVBAcTClNjb3R0c2RhbGUxGjAYBgNVBAoT EUdvRGFkZHkuY29tLCBJbmMuMTEwLwYDVQQDEyhHbyBEYWRkeSBSb290IENlcnRp ZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTExMDUwMzA3MDAwMFoXDTMxMDUwMzA3 MDAwMFowgbQxCzAJBgNVBAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQH EwpTY290dHNkYWxlMRowGAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjEtMCsGA1UE CxMkaHR0cDovL2NlcnRzLmdvZGFkZHkuY29tL3JlcG9zaXRvcnkvMTMwMQYDVQQD EypHbyBEYWRkeSBTZWN1cmUgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IC0gRzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC54MsQ1K92vdSTYuswZLiBCGzD BNliF44v/z5lz4/OYuY8UhzaFkVLVat4a2ODYpDOD2lsmcgaFItMzEUz6ojcnqOv K/6AYZ15V8TPLvQ/MDxdR/yaFrzDN5ZBUY4RS1T4KL7QjL7wMDge87Am+GZHY23e cSZHjzhHU9FGHbTj3ADqRay9vHHZqm8A29vNMDp5T19MR/gd71vCxJ1gO7GyQ5HY pDNO6rPWJ0+tJYqlxvTV0KaudAVkV4i1RFXULSo6Pvi4vekyCgKUZMQWOlDxSq7n eTOvDCAHf+jfBDnCaQJsY1L6d8EbyHSHyLmTGFBUNUtpTrw700kuH9zB0lL7AgMB AAGjggEaMIIBFjAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBBjAdBgNV HQ4EFgQUQMK9J47MNIMwojPX+2yz8LQsgM4wHwYDVR0jBBgwFoAUOpqFBxBnKLbv 9r0FQW4gwZTaD94wNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUFBzABhhhodHRwOi8v b2NzcC5nb2RhZGR5LmNvbS8wNQYDVR0fBC4wLDAqoCigJoYkaHR0cDovL2NybC5n b2RhZGR5LmNvbS9nZHJvb3QtZzIuY3JsMEYGA1UdIAQ/MD0wOwYEVR0gADAzMDEG CCsGAQUFBwIBFiVodHRwczovL2NlcnRzLmdvZGFkZHkuY29tL3JlcG9zaXRvcnkv MA0GCSqGSIb3DQEBCwUAA4IBAQAIfmyTEMg4uJapkEv/oV9PBO9sPpyIBslQj6Zz 91cxG7685C/b+LrTW+C05+Z5Yg4MotdqY3MxtfWoSKQ7CC2iXZDXtHwlTxFWMMS2 RJ17LJ3lXubvDGGqv+QqG+6EnriDfcFDzkSnE3ANkR/0yBOtg2DZ2HKocyQetawi DsoXiWJYRBuriSUBAA/NxBti21G00w9RKpv0vHP8ds42pM3Z2Czqrpv1KrKQ0U11 GIo/ikGQI31bS/6kA1ibRrLDYGCD+H1QQc7CoZDDu+8CL9IVVO5EFdkKrqeKM+2x LXY2JtwE65/3YR8V3Idv7kaWKK2hJn0KCacuBKONvPi8BDAB -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- MIIDxTCCAq2gAwIBAgIBADANBgkqhkiG9w0BAQsFADCBgzELMAkGA1UEBhMCVVMx EDAOBgNVBAgTB0FyaXpvbmExEzARBgNVBAcTClNjb3R0c2RhbGUxGjAYBgNVBAoT EUdvRGFkZHkuY29tLCBJbmMuMTEwLwYDVQQDEyhHbyBEYWRkeSBSb290IENlcnRp ZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTA5MDkwMTAwMDAwMFoXDTM3MTIzMTIz NTk1OVowgYMxCzAJBgNVBAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQH EwpTY290dHNkYWxlMRowGAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjExMC8GA1UE AxMoR28gRGFkZHkgUm9vdCBDZXJ0aWZpY2F0ZSBBdXRob3JpdHkgLSBHMjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL9xYgjx+lk09xvJGKP3gElY6SKD E6bFIEMBO4Tx5oVJnyfq9oQbTqC023CYxzIBsQU+B07u9PpPL1kwIuerGVZr4oAH /PMWdYA5UXvl+TW2dE6pjYIT5LY/qQOD+qK+ihVqf94Lw7YZFAXK6sOoBJQ7Rnwy DfMAZiLIjWltNowRGLfTshxgtDj6AozO091GB94KPutdfMh8+7ArU6SSYmlRJQVh GkSBjCypQ5Yj36w6gZoOKcUcqeldHraenjAKOc7xiID7S13MMuyFYkMlNAJWJwGR tDtwKj9useiciAF9n9T521NtYJ2/LOdYq7hfRvzOxBsDPAnrSTFcaUaz4EcCAwEA AaNCMEAwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYE FDqahQcQZyi27/a9BUFuIMGU2g/eMA0GCSqGSIb3DQEBCwUAA4IBAQCZ21151fmX WWcDYfF+OwYxdS2hII5PZYe096acvNjpL9DbWu7PdIxztDhC2gV7+AJ1uP2lsdeu 9tfeE8tTEH6KRtGX+rcuKxGrkLAngPnon1rpN5+r5N9ss4UXnT3ZJE95kTXWXwTr gIOrmgIttRD02JDHBHNA7XIloKmf7J6raBKZV8aPEjoJpL1E/QYVN8Gb5DKj7Tjo 2GTzLH4U/ALqn83/B2gX2yKQOC16jdFU8WnjXzPKej17CuPKf1855eJ1usV2GDPO LPAvTK33sefOT6jEm0pUBsV/fdUID+Ic/n4XuKxe9tQWskMJDE32p2u0mYRlynqI 4uJEvlz36hz1 -----END CERTIFICATE----- --> build_timely = true --> ct_compliance_status = "NOT_ENOUGH_SCTS" t=3334 [st=35] -SSL_CONNECT --> cipher_suite = 49199 --> is_resumed = true --> next_proto = "http/1.1" --> version = "TLS 1.2" t=3334 [st=35] +SOCKET_IN_USE [dt=22] --> source_dependency = 81988 (HTTP_STREAM_JOB) t=3334 [st=35] SOCKET_BYTES_SENT --> byte_count = 492 t=3334 [st=35] SSL_SOCKET_BYTES_SENT --> byte_count = 463 t=3350 [st=51] SOCKET_BYTES_RECEIVED --> byte_count = 2896 t=3350 [st=51] SSL_SOCKET_BYTES_RECEIVED --> byte_count = 345 t=3355 [st=56] SOCKET_BYTES_RECEIVED --> byte_count = 2667 t=3355 [st=56] SOCKET_BYTES_SENT --> byte_count = 31 t=3356 [st=57] SSL_ALERT_SENT --> hex_encoded_bytes = 02 14 .. t=3356 [st=57] SSL_READ_ERROR --> error_lib = 16 --> error_reason = 139 --> file = "../../third_party/boringssl/src/ssl/tls_record.cc" --> line = 298 --> net_error = -107 (ERR_SSL_PROTOCOL_ERROR) --> ssl_error = 1 t=3356 [st=57] -SOCKET_IN_USE t=3356 [st=57] -SOCKET_IN_USE t=3356 [st=57] -SOCKET_ALIVE
,
Jun 6 2018
,
Jun 6 2018
Unable to reproduce the issue on ubuntu 17.10 and mac 10.13.3 using chrome reported version #67.0.3396.62 and latest canary #69.0.3450.0. Attached a screen cast for reference. Following are the steps followed to reproduce the issue. ------------ 1. Opened the url: https://www.mail-archive.com/cisco-nsp@puck.nether.net/ and refreshed the page 2-3 times. 2. Observed that website loaded properly every time without any issues. legendmove@ - Could you please check this issue on latest canary #69.0.3450.0 by creating a new profile without any apps and extensions and please let us know if the issue still persist or not. Thanks...!!
,
Jun 6 2018
t=3356 [st=57] SSL_READ_ERROR
--> error_lib = 16
--> error_reason = 139
--> file = "../../third_party/boringssl/src/ssl/tls_record.cc"
--> line = 298
--> net_error = -107 (ERR_SSL_PROTOCOL_ERROR)
--> ssl_error = 1
This is us not being able to decrypt the record. The cipher suite is TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256. From comment #2, it sounds like whatever you're hitting is infrequent.
If it still happens in later releases (since you're on Linux, Dev channel will do; install google-chrome-unstable. It runs and installs in parallel with google-chrome-stable so it won't affect your usual profile), the next thing to do is to figure out whether the server sent us a bad record, or if we got a good record couldn't decrypt it for some reason.
Unfortunately, the only way to do this is a bit invasive...
IMPORTANT: These instructions will log all the traffic Chrome's net stack sends and receives over the network, the corresponding TLS session keys that decrypt it, and the unencrypted data.
Obviously, we don't want to log this from your main profile, which contains all kinds of state, so I'm going to have you pass --user-data-dir to Chrome. That points it at a different profile directory entirely, so it won't load cookies, etc. You can even run both instances at the same time.
My goal is to confirm whether or not something got encrypted wrong and, if it did, which part was wrong. So I'm going to check the crypto and make sure it's all correct.
1. Run google-chrome --user-data-dir=/tmp/whatever --ssl-key-log-file=sslkeylog.txt
2. Don't sign in to anything from that browser session, of course. :-)
3. Go to chrome://net-export as before, but turn on "Include raw bytes (will include cookies and credentials)" before enabling logging.
4. Reproduce the issue.
5. Exit Chrome.
6. Email me both the NetLog and sslkeylog.txt.
Would you be willing to do that? This log is a bit more invasive than the NetLog, so I understand if you would rather not.
,
Jun 6 2018
Doesn't HTTP 200 confirm decryption is successful? I will grab the logs when I get a chance.
,
Jun 6 2018
Thank you for providing more feedback. Adding the requester to the cc list. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Jun 6 2018
No, the HTTP 200 means the first couple of records containing the response headers were okay, but some later one containing part of the response body was not. I'm hoping to find out whether that's our bug rejecting good records, or a bug on the server or your network sending bad ones.
,
Jun 6 2018
(Restoring Needs-Feedback label. sheriffbot is not very good at this.)
,
Jun 9 2018
Currently unable to reproduce it. I will generate the log when it happens again. I ran into this issue from time to time.
,
Jun 9 2018
Thank you for providing more feedback. Adding the requester to the cc list. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Jun 11 2018
As per comment #9 adding Needs-Feedback label to this issue. Thanks.!
,
Jul 9
Archiving out old issue based on Comment #9. If the problem appears again, please file a new issue if the problem reproduces and you're able to grab a log, and we'd be happy to keep investigating :)
,
Sep 28
I was able to reproduce it in Issue 889805 |
|||||||||||||
►
Sign in to add a comment |
|||||||||||||
Comment 1 by legendm...@gmail.com
, Jun 6 2018