Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Network Logs: ALPN messages don't make much sense #4426

Open
2 of 4 tasks
Its-treason opened this issue Apr 3, 2025 · 1 comment
Open
2 of 4 tasks

Network Logs: ALPN messages don't make much sense #4426

Its-treason opened this issue Apr 3, 2025 · 1 comment
Labels
bug Something isn't working

Comments

@Its-treason
Copy link
Member

Its-treason commented Apr 3, 2025
edited
Loading

I have checked the following:

  • I have searched existing issues and found nothing related to my issue.

This bug is:

  • making Bruno unusable for me
  • slowing me down, but I'm able to continue working
  • annoying

Bruno version

2.0.1

Operating System

Windows 11 & Ubuntu 22.04

Describe the bug

Example timeline:

...
User-Agent: bruno-runtime/.0.1
Enable SSL validation
ALPN: offers h2, http/1.1
Using system default CA certificates
Trying httpbin.org:443...
DNS lookup: httpbin.org -> 54.227.146.83
DNS lookup: httpbin.org -> 3.224.7.64
Connected to httpbin.org (54.227.146.83) port 443
SSL connection using TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256 (TLSv1/SSLv3)
ALPN: server accepted None
Server certificate:
...

  1. The message ALPN: offers h2, http/1.1 should be moved down above ALPN: server accepted None because Bruno cannot offer protocols before connecting to the server, before it connected to it.

  2. ALPN: server accepted None This would cause the request to be aborted, because client and server couldn't negotiate an http version.

Here's a curl -vvv for example, which does it right:

...
* IPv4: 54.227.146.83, 3.224.7.64
*   Trying 54.227.146.83:443...
* Connected to httpbin.org (54.227.146.83) port 443
* ALPN: curl offers h2,http/1.1
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
*  CAfile: /etc/ssl/certs/ca-certificates.crt
*  CApath: /etc/ssl/certs
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
* TLSv1.2 (IN), TLS handshake, Server finished (14):
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.2 (OUT), TLS handshake, Finished (20):
* TLSv1.2 (IN), TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256 / prime256v1 / rsaEncryption
* ALPN: server accepted h2
* Server certificate:
...
@Its-treason Its-treason added the bug Something isn't working label Apr 3, 2025
@sreelakshmi-bruno
Copy link
Collaborator

Hi, we're working on this, will tag PR here when it's available. Thanks!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Its-treason @sreelakshmi-bruno