Bug 112487 - lftp-3.3.3 blocks at end of SSL transfer
Bug#: 112487 Product:  Gentoo Linux Version: unspecified Platform: All
OS/Version: Linux Status: RESOLVED Severity: normal Priority: P2
Resolution: FIXED Assigned To: dragonheart@gentoo.org Reported By: spider@gentoo.org
Component: Applications
URL: 
Summary: lftp-3.3.3 blocks at end of SSL transfer
Keywords:  
Status Whiteboard: 
Opened: 2005-11-14 02:11 0000
Description:   Opened: 2005-11-14 02:11 0000 
At least with USE="-gnutls" this version is unusable due to blocking and not
closing ftp+ssl transfers at 100%.

USE="gnutls"  fails post-login while getting directory listings. (same as
previous version, no big news)

------- Comment #1 From Daniel Black 2005-11-14 03:14:01 0000 ------- 
Created an attachment (id=72866) [details]
patch from author

this fix it? from the upstream email list

------- Comment #2 From Spider (RETIRED) 2005-11-15 09:04:57 0000 ------- 
Negative, doesn't fix the issue.


mirror(0x8205ce0) enters state TARGET_REMOVE_OLD_FIRST
mirror(0x8205ce0) enters state WAITING_FOR_TRANSFER
mirror(0x8205ce0) enters state WAITING_FOR_TRANSFER
---> PASV
<--- 227 Entering Passive Mode (IP.HIDDEN)
---- Connecting data socket to (IP.HIDDEN) port 30254
---- Data connection established
---> STOR Filename
<--- 150 Ok to send data.
Certificate depth: 0; subject:  HIDDEN
WARNING: Certificate verification: self signed certificate
WARNING: Certificate verification: certificate signature failure
copy: get hit eof
copy: waiting for put confirmation
`Filename' at 1446486 (100%) eta:0s [Sending data/TLS]


.... And stalls.
  appears the fix is only for "GET" not for "PUT" or other such targets.

------- Comment #3 From Spider (RETIRED) 2005-11-20 09:42:36 0000 ------- 
same with 3.3.4,
its probably introduced with the 3.3.1 fix for empty files with ssl data
protection enabled.

------- Comment #4 From Daniel Black 2005-11-22 11:34:22 0000 ------- 
Created an attachment (id=73388) [details]
diff

This is the patch the author created specifically for this bug

------- Comment #5 From Daniel Black 2005-11-23 11:44:21 0000 ------- 
lftp-3.3.4-r1 fixes ssl transfer with above patch. 
 
Still need to work on the gnutls problem.

------- Comment #6 From Spider (RETIRED) 2005-11-23 15:15:28 0000 ------- 
Yep.   The patch is confirmed and works.  good job :)

------- Comment #7 From Daniel Black 2005-11-24 02:11:20 0000 ------- 
is was all the Author's work thanks to your explanation. 
 
Is 'USE="gnutls" fails post-login while getting directory listings.' still a 
problem?  What does "no big news" mean?

------- Comment #8 From Spider (RETIRED) 2005-11-24 02:48:07 0000 ------- 
No big news, in this case means that its not the first time I've seen this
behaviour.  gnutls has a tendency to be far pickier in implementations.

( fex, it reports a failure on self-signed certificates where O != $hostname,
amongst other things )

I'll test gnutls post-login and other behaviour with the new version too.

------- Comment #9 From Spider (RETIRED) 2005-11-24 02:53:39 0000 ------- 
<--- 226 Directory send OK.
**** gnutls_record_recv: A TLS packet with unexpected length was received.
---- Closing data socket
---- Closing control socket


yep, still an issue with gnutls

------- Comment #10 From Daniel Black 2006-01-05 02:24:28 0000 ------- 
from 3.4.0 release notes
* treat GNUTLS_E_UNEXPECTED_PACKET_LENGTH as EOF indicator - this fixes
  secure ftp with ProFTPD server.

maybe hopefully fixed although I haven't checked.

Tim in bug 117810 thinks it is fixed.

------- Comment #11 From Daniel Black 2006-01-14 01:40:36 0000 ------- 
assumed to be fixed - reopen if this isn't the case