Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 112487

Summary: lftp-3.3.3 blocks at end of SSL transfer
Product: Gentoo Linux Reporter: Spider (RETIRED) <spider>
Component: Current packagesAssignee: Daniel Black (RETIRED) <dragonheart>
Status: RESOLVED FIXED    
Severity: normal    
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---
Attachments: patch from author
diff

Description Spider (RETIRED) gentoo-dev 2005-11-14 02:11:42 UTC 
At least with USE="-gnutls" this version is unusable due to blocking and not
closing ftp+ssl transfers at 100%.

USE="gnutls"  fails post-login while getting directory listings. (same as
previous version, no big news)
Comment 1 Daniel Black (RETIRED) gentoo-dev 2005-11-14 03:14:01 UTC 
Created attachment 72866 [details, diff]
patch from author

this fix it? from the upstream email list
Comment 2 Spider (RETIRED) gentoo-dev 2005-11-15 09:04:57 UTC 
Negative, doesn't fix the issue.


mirror(0x8205ce0) enters state TARGET_REMOVE_OLD_FIRST
mirror(0x8205ce0) enters state WAITING_FOR_TRANSFER
mirror(0x8205ce0) enters state WAITING_FOR_TRANSFER
---> PASV
<--- 227 Entering Passive Mode (IP.HIDDEN)
---- Connecting data socket to (IP.HIDDEN) port 30254
---- Data connection established
---> STOR Filename
<--- 150 Ok to send data.
Certificate depth: 0; subject:  HIDDEN
WARNING: Certificate verification: self signed certificate
WARNING: Certificate verification: certificate signature failure
copy: get hit eof
copy: waiting for put confirmation
`Filename' at 1446486 (100%) eta:0s [Sending data/TLS]


.... And stalls.
  appears the fix is only for "GET" not for "PUT" or other such targets.
Comment 3 Spider (RETIRED) gentoo-dev 2005-11-20 09:42:36 UTC 
same with 3.3.4,
its probably introduced with the 3.3.1 fix for empty files with ssl data
protection enabled.
Comment 4 Daniel Black (RETIRED) gentoo-dev 2005-11-22 11:34:22 UTC 
Created attachment 73388 [details, diff]
diff

This is the patch the author created specifically for this bug
Comment 5 Daniel Black (RETIRED) gentoo-dev 2005-11-23 11:44:21 UTC 
lftp-3.3.4-r1 fixes ssl transfer with above patch. 
 
Still need to work on the gnutls problem.
Comment 6 Spider (RETIRED) gentoo-dev 2005-11-23 15:15:28 UTC 
Yep.   The patch is confirmed and works.  good job :)
Comment 7 Daniel Black (RETIRED) gentoo-dev 2005-11-24 02:11:20 UTC 
is was all the Author's work thanks to your explanation. 
 
Is 'USE="gnutls" fails post-login while getting directory listings.' still a 
problem?  What does "no big news" mean?
Comment 8 Spider (RETIRED) gentoo-dev 2005-11-24 02:48:07 UTC 
No big news, in this case means that its not the first time I've seen this
behaviour.  gnutls has a tendency to be far pickier in implementations.

( fex, it reports a failure on self-signed certificates where O != $hostname,
amongst other things )

I'll test gnutls post-login and other behaviour with the new version too.
Comment 9 Spider (RETIRED) gentoo-dev 2005-11-24 02:53:39 UTC 
<--- 226 Directory send OK.
**** gnutls_record_recv: A TLS packet with unexpected length was received.
---- Closing data socket
---- Closing control socket


yep, still an issue with gnutls
Comment 10 Daniel Black (RETIRED) gentoo-dev 2006-01-05 02:24:28 UTC 
from 3.4.0 release notes
* treat GNUTLS_E_UNEXPECTED_PACKET_LENGTH as EOF indicator - this fixes
  secure ftp with ProFTPD server.

maybe hopefully fixed although I haven't checked.

Tim in bug 117810 thinks it is fixed.
Comment 11 Daniel Black (RETIRED) gentoo-dev 2006-01-14 01:40:36 UTC 
assumed to be fixed - reopen if this isn't the case