238691 – net-ftp/proftpd-1.3.1 problems with TLS

Bug 238691 - net-ftp/proftpd-1.3.1 problems with TLS

Summary: net-ftp/proftpd-1.3.1 problems with TLS

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	[OLD] Server (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Luca Longinotti (RETIRED)

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2008-09-25 20:52 UTC by Philipp Rosenberger
Modified:	2008-11-06 12:54 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Philipp Rosenberger 2008-09-25 20:52:31 UTC

with the release of filezilla-3.1.0 it was impossible to connect to my proftpd-server over TLS.
Status: Resolving address of hostname.tld
Status: Connecting to x.x.x.x:21...
Status: Connection established, waiting for welcome message...
Response: 220 Iluminat23's FTP
Command: AUTH TLS
Response: 234 AUTH TLS successful
Status: Initializing TLS...
Status: Verifying certificate...
Command: USER philipp
Status: TLS/SSL connection established.
Response: 331 Password required for philipp
Command: PASS *******
Response: 230 User philipp logged in
Command: SYST
Response: 215 UNIX Type: L8
Command: FEAT
Response: 211-Features:
Response: MDTM
Response: AUTH TLS
Response: PBSZ
Response: PROT
Response: REST STREAM
Response: SIZE
Response: 211 End
Command: PBSZ 0
Response: 200 PBSZ 0 successful
Command: PROT P
Response: 200 Protection set to Private
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/" is the current directory
Command: TYPE I
Response: 200 Type set to I
Command: PASV
Response: 227 Entering Passive Mode (x,x,31,145,248,168).
Command: LIST
Response: 150 Opening ASCII mode data connection for file list
Status: Server did not properly shut down TLS connection
Error: Could not read from transfer socket: ECONNABORTED - Connection aborted
Response: 226 Transfer complete
Error: Failed to retrieve directory listing
Status: Server did not properly shut down TLS connection
Error: Disconnected from server: ECONNABORTED - Connection aborted

first i thought it was a bug in Filezilla, but the author of filezilla has described the new behavior here: http://forum.filezilla-project.org/viewtopic.php?f=2&t=7688

so it seems to be a fault of proftpd. searching for this problem in the proftpd bugzilla i found this: http://bugs.proftpd.org/show_bug.cgi?id=3094

with a patch for proftpd: http://bugs.proftpd.org/attachment.cgi?id=2836&action=view

i tested this patch on my box and it works pretty well. hope this patch goes in portage a fast as possible.

kind regards,

Philip

Reproducible: Always

Steps to Reproduce:
1. start filezilla
2. connect to a proftpd <= 1.3.1 server
3. get an error

Comment 1 Christian Hoffmann (RETIRED) gentoo-dev

2008-11-06 12:54:44 UTC

Supposed to be fixed with proftpd-1.3.2_rc2, which I just committed to the tree for security bug 238762.