TlsHandshakeTimedOut when running scan commands #501

wondex · 2021-02-12T15:09:06Z

Describe the bug

Traceback (most recent call last):
  File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/scanner.py", line 264, in get_results
    result = implementation_cls.result_for_completed_scan_jobs(
  File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/plugins/session_resumption/implementation.py", line 230, in result_for_completed_scan_jobs
    result_enum, value = job.result()
  File "/opt/rh/rh-python38/root/usr/lib64/python3.8/concurrent/futures/_base.py", line 432, in result
    return self.__get_result()
  File "/opt/rh/rh-python38/root/usr/lib64/python3.8/concurrent/futures/_base.py", line 388, in __get_result
    raise self._exception
  File "/opt/rh/rh-python38/root/usr/lib64/python3.8/concurrent/futures/thread.py", line 57, in run
    result = self.fn(*self.args, **self.kwargs)
  File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/plugins/session_resumption/_resumption_with_ticket.py", line 40, in resume_with_tls_ticket
    session2 = resume_tls_session(server_info, tls_version_to_use, session1, should_enable_tls_ticket=True)
  File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/plugins/session_resumption/_resumption_with_id.py", line 35, in resume_tls_session
    ssl_connection.connect()
  File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/connection_helpers/tls_connection.py", line 300, in connect
    raise TlsHandshakeTimedOut(
sslyze.errors.TlsHandshakeTimedOut

Traceback (most recent call last):
 File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/scanner.py", line 264, in get_results
 result = implementation_cls.result_for_completed_scan_jobs(
 File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/plugins/robot/implementation.py", line 92, in result_for_completed_scan_jobs
 server_responses_per_robot_payloads = future.result()
 File "/opt/rh/rh-python38/root/usr/lib64/python3.8/concurrent/futures/_base.py", line 432, in result
 return self.__get_result()
 File "/opt/rh/rh-python38/root/usr/lib64/python3.8/concurrent/futures/_base.py", line 388, in __get_result
 raise self._exception
 File "/opt/rh/rh-python38/root/usr/lib64/python3.8/concurrent/futures/thread.py", line 57, in run
 result = self.fn(*self.args, **self.kwargs)
 File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/plugins/robot/_robot_tester.py", line 183, in test_robot
 server_responses_per_robot_payloads = _run_oracle_detection(
 File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/plugins/robot/_robot_tester.py", line 214, in _run_oracle_detection
 server_response = _send_robot_payload(
 File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/plugins/robot/_robot_tester.py", line 306, in _send_robot_payload
 ssl_connection.connect()
 File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/connection_helpers/tls_connection.py", line 300, in connect
 raise TlsHandshakeTimedOut

Traceback (most recent call last):
 File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/scanner.py", line 264, in get_results
 result = implementation_cls.result_for_completed_scan_jobs(
 File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/plugins/openssl_ccs_injection_plugin.py", line 78, in result_for_completed_scan_jobs
 return OpenSslCcsInjectionScanResult(is_vulnerable_to_ccs_injection=completed_scan_jobs[0].result())
 File "/opt/rh/rh-python38/root/usr/lib64/python3.8/concurrent/futures/_base.py", line 432, in result
 return self.__get_result()
 File "/opt/rh/rh-python38/root/usr/lib64/python3.8/concurrent/futures/_base.py", line 388, in __get_result
 raise self._exception
 File "/opt/rh/rh-python38/root/usr/lib64/python3.8/concurrent/futures/thread.py", line 57, in run
 result = self.fn(*self.args, **self.kwargs)
 File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/plugins/openssl_ccs_injection_plugin.py", line 99, in _test_for_ccs_injection
 ssl_connection.connect()
 File "/opt/rh/rh-python38/root/usr/local/lib/python3.8/site-packages/sslyze/connection_helpers/tls_connection.py", line 300, in connect
 raise TlsHandshakeTimedOut(
sslyze.errors.TlsHandshakeTimedOut

To Reproduce
Install SSLyze using: pip
Run the following command: /opt/rh/rh-python38/root/usr/bin/python3.8 -m sslyze --regular

Expected behavior
Successful scan

Python environment (please complete the following information):
OS: Red Hat Enterprise Linux Server release 7.9 (Maipo)
Python version: 3.8
SSLyzeL: 4.0.2

The text was updated successfully, but these errors were encountered:

nabla-c0d3 · 2021-02-15T20:28:01Z

Fix released as part of v4.0.3.

nabla-c0d3 changed the title ~~session_resumption BUG_IN_SSLYZE~~ TlsHandshakeTimedOut when running session_resumption Feb 13, 2021

nabla-c0d3 changed the title ~~TlsHandshakeTimedOut when running session_resumption~~ TlsHandshakeTimedOut when running scan commands Feb 13, 2021

nabla-c0d3 added the bug label Feb 13, 2021

nabla-c0d3 added a commit that referenced this issue Feb 15, 2021

[#501] Handle TlsHandshakeTimedOut when scanning flaky servers

9277eb5

nabla-c0d3 added the fix ready label Feb 15, 2021

nabla-c0d3 closed this as completed Feb 15, 2021

dependabot bot mentioned this issue Mar 16, 2021

Bump sslyze from 3.1.0 to 4.0.4 in /services/scanners/ssl canada-ca/tracker#1880

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

TlsHandshakeTimedOut when running scan commands #501

TlsHandshakeTimedOut when running scan commands #501

wondex commented Feb 12, 2021 •

edited by nabla-c0d3

Loading

nabla-c0d3 commented Feb 15, 2021

TlsHandshakeTimedOut when running scan commands #501

TlsHandshakeTimedOut when running scan commands #501

Comments

wondex commented Feb 12, 2021 • edited by nabla-c0d3 Loading

nabla-c0d3 commented Feb 15, 2021

wondex commented Feb 12, 2021 •

edited by nabla-c0d3

Loading