SSL + Passive Mode = Crash

Advertisement

moony871
Guest

SSL + Passive Mode = Crash

Hi,

I'm using WinScp 4.2.9 on Windows 7 and every time I try to connect to my FTP Server over SSL the program crashes (no response).

Here the debug output:
. 2011-02-05 05:16:54.190 --------------------------------------------------------------------------
. 2011-02-05 05:16:54.190 WinSCP Version 4.2.9 (Build 938) (OS 6.1.7600)
. 2011-02-05 05:16:54.190 Login time: Samstag, 5. Februar 2011 05:16:54
. 2011-02-05 05:16:54.190 --------------------------------------------------------------------------
. 2011-02-05 05:16:54.190 Session name: xxx
. 2011-02-05 05:16:54.190 Host name: xxx (Port: 21)
. 2011-02-05 05:16:54.190 User name: xxx (Password: Yes, Key file: No)
. 2011-02-05 05:16:54.190 Tunnel: No
. 2011-02-05 05:16:54.190 Transfer Protocol: FTP
. 2011-02-05 05:16:54.190 Ping type: C, Ping interval: 30 sec; Timeout: 15 sec
. 2011-02-05 05:16:54.190 Proxy: none
. 2011-02-05 05:16:54.190 FTP: FTPS: Explicit SSL; Passive: Yes [Force IP: No]
. 2011-02-05 05:16:54.190 Local directory: default, Remote directory: home, Update: No, Cache: Yes
. 2011-02-05 05:16:54.190 Cache directory changes: Yes, Permanent: Yes
. 2011-02-05 05:16:54.190 DST mode: 1
. 2011-02-05 05:16:54.190 --------------------------------------------------------------------------
. 2011-02-05 05:16:54.221 Connecting to xxx ...
. 2011-02-05 05:16:54.377 m_pSslLayer changed state from 0 to 1
. 2011-02-05 05:16:54.377 m_pSslLayer changed state from 1 to 2
. 2011-02-05 05:16:54.377 m_pSslLayer changed state from 2 to 4
. 2011-02-05 05:16:54.377 Connected with xxx, negotiating SSL connection...
< 2011-02-05 05:16:54.392 220 ProFTPD 1.3.3c Server (Moony's Server) [xxx.xxx.xxx.xxx]
> 2011-02-05 05:16:54.392 AUTH SSL
< 2011-02-05 05:16:54.408 234 AUTH SSL successful
. 2011-02-05 05:16:54.938 SSL_connect: SSLv3 read server hello A
. 2011-02-05 05:16:54.938 SSL_connect: SSLv3 read server certificate A
. 2011-02-05 05:16:54.938 SSL_connect: SSLv3 read server key exchange A
. 2011-02-05 05:16:54.938 SSL_connect: SSLv3 read server done A
. 2011-02-05 05:16:54.938 SSL_connect: SSLv3 write client key exchange A
. 2011-02-05 05:16:54.938 SSL_connect: SSLv3 write change cipher spec A
. 2011-02-05 05:16:54.938 SSL_connect: SSLv3 write finished A
. 2011-02-05 05:16:54.938 SSL_connect: SSLv3 flush data
. 2011-02-05 05:16:54.985 SSL_connect: SSLv3 read finished A
. 2011-02-05 05:16:54.985 Using TLSv1, cipher TLSv1/SSLv3: DHE-RSA-AES256-SHA, 1024 bit RSA
. 2011-02-05 05:16:54.985 SSL connection established. Waiting for welcome message...
> 2011-02-05 05:16:54.985 USER xxx
< 2011-02-05 05:16:54.985 331 Password required for xxx
> 2011-02-05 05:16:54.985 PASS ************
< 2011-02-05 05:16:55.001 230 User xxx logged in
> 2011-02-05 05:16:55.001 SYST
< 2011-02-05 05:16:55.001 215 UNIX Type: L8
> 2011-02-05 05:16:55.001 FEAT
< 2011-02-05 05:16:55.001 211-Features:
< 2011-02-05 05:16:55.001  MDTM
< 2011-02-05 05:16:55.001  MFMT
< 2011-02-05 05:16:55.001  LANG en-US
< 2011-02-05 05:16:55.001  TVFS
< 2011-02-05 05:16:55.001  UTF8
< 2011-02-05 05:16:55.001  AUTH TLS
< 2011-02-05 05:16:55.001  MFF modify;UNIX.group;UNIX.mode;
< 2011-02-05 05:16:55.001  MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.mode*;UNIX.owner*;
< 2011-02-05 05:16:55.001  PBSZ
< 2011-02-05 05:16:55.001  PROT
< 2011-02-05 05:16:55.001  REST STREAM
< 2011-02-05 05:16:55.001  SIZE
< 2011-02-05 05:16:55.001 211 End
> 2011-02-05 05:16:55.001 OPTS UTF8 ON
< 2011-02-05 05:16:55.001 200 UTF8 set to on
> 2011-02-05 05:16:55.001 PBSZ 0
< 2011-02-05 05:16:55.016 200 PBSZ 0 successful
> 2011-02-05 05:16:55.016 PROT P
< 2011-02-05 05:16:55.016 200 Protection set to Private
. 2011-02-05 05:16:55.016 Connected
. 2011-02-05 05:16:55.016 Got reply 1 to the command 1
. 2011-02-05 05:16:55.016 --------------------------------------------------------------------------
. 2011-02-05 05:16:55.016 Using FTP protocol.
. 2011-02-05 05:16:55.016 Doing startup conversation with host.
> 2011-02-05 05:16:55.016 PWD
< 2011-02-05 05:16:55.016 257 "/" is the current directory
. 2011-02-05 05:16:55.016 Got reply 1 to the command 16
. 2011-02-05 05:16:55.016 Getting current directory name.
. 2011-02-05 05:16:55.016 Retrieving directory listing...
> 2011-02-05 05:16:55.016 TYPE A
< 2011-02-05 05:16:55.032 200 Type set to A
> 2011-02-05 05:16:55.032 PASV
< 2011-02-05 05:16:55.032 227 Entering Passive Mode (xxx,xxx,xxx,xxx,xxx,xxx).
> 2011-02-05 05:16:55.032 LIST -a
. 2011-02-05 05:16:55.032 m_pSslLayer changed state from 0 to 4
. 2011-02-05 05:16:55.032 m_pSslLayer changed state from 4 to 6
. 2011-02-05 05:16:55.032 <Empty directory listing>

Reply with quote

Advertisement

martin
Site Admin
martin avatar
Joined:
Posts:
40,476
Location:
Prague, Czechia

Re: SSL + Passive Mode = Crash

Can you try 4.3.1 beta?
If it crashes as well, can you send me an email, so I can send you back a debug version of WinSCP to track the problem? Please include link back to this topic in your email. Also note in this topic that you have sent the email. Thanks.

You will find my address (if you log in) in my forum profile.

Reply with quote

Guest

With the Beta Version I got an other behavior. Now an connection error appears.

. 2011-02-08 22:05:51.183 --------------------------------------------------------------------------
. 2011-02-08 22:05:51.183 WinSCP Version 4.3.1 (Build 1099) (OS 6.1.7600)
. 2011-02-08 22:05:51.183 Login time: Dienstag, 8. Februar 2011 22:05:51
. 2011-02-08 22:05:51.183 --------------------------------------------------------------------------
. 2011-02-08 22:05:51.183 Session name: test
. 2011-02-08 22:05:51.183 Host name: xxxx (Port: 21)
. 2011-02-08 22:05:51.183 User name: xxxx (Password: Yes, Key file: No)
. 2011-02-08 22:05:51.183 Tunnel: No
. 2011-02-08 22:05:51.183 Transfer Protocol: FTP
. 2011-02-08 22:05:51.183 Ping type: C, Ping interval: 30 sec; Timeout: 15 sec
. 2011-02-08 22:05:51.183 Proxy: none
. 2011-02-08 22:05:51.183 FTP: FTPS: Explicit SSL; Passive: Yes [Force IP: No]
. 2011-02-08 22:05:51.183 Local directory: default, Remote directory: home, Update: No, Cache: Yes
. 2011-02-08 22:05:51.184 Cache directory changes: Yes, Permanent: Yes
. 2011-02-08 22:05:51.184 DST mode: 1
. 2011-02-08 22:05:51.184 --------------------------------------------------------------------------
. 2011-02-08 22:05:51.219 Connecting to xxxx ...
. 2011-02-08 22:05:51.219 m_pSslLayer changed state from 0 to 1
. 2011-02-08 22:05:51.219 m_pSslLayer changed state from 1 to 2
. 2011-02-08 22:05:51.248 m_pSslLayer changed state from 2 to 4
. 2011-02-08 22:05:51.251 Connected with xxxx, negotiating SSL connection...
< 2011-02-08 22:05:51.344 220 ProFTPD 1.3.3c Server (Moony's Server) [xxx.xxx.xxx.xxx]
> 2011-02-08 22:05:51.344 AUTH SSL
< 2011-02-08 22:05:51.437 234 AUTH SSL successful
. 2011-02-08 22:05:51.534 SSL_connect: error in SSLv3 read server hello B
. 2011-02-08 22:05:51.535 Can't establish SSL connection
. 2011-02-08 22:05:51.535 SSL_connect: error in SSLv3 read server hello B
. 2011-02-08 22:05:51.535 Disconnected from server
. 2011-02-08 22:05:51.535 Connection failed.
. 2011-02-08 22:05:51.535 Got reply 1004 to the command 1
* 2011-02-08 22:05:51.538 (ESshFatal) Connection failed.
* 2011-02-08 22:05:51.538 SSL_connect: error in SSLv3 read server hello B
* 2011-02-08 22:05:51.538 Can't establish SSL connection
* 2011-02-08 22:05:51.538 SSL_connect: error in SSLv3 read server hello B
* 2011-02-08 22:05:51.538 Disconnected from server
* 2011-02-08 22:05:51.538 Connection failed.
* 2011-02-08 22:05:51.538 AUTH SSL successful

Here also some output from the logfiles of the server:

Feb 08 22:05:38 mod_tls/2.4.1[10272]: SSL/TLS-P requested, starting TLS handshake
Feb 08 22:05:38 mod_tls/2.4.1[10272]: unable to accept TLS connection: received EOF that violates protocol
Feb 08 22:05:38 mod_tls/2.4.1[10272]: SSL/TLS-P negotiation failed on control channel

Reply with quote

martin
Site Admin
martin avatar
Joined:
Posts:
40,476
Location:
Prague, Czechia

Can you send me an email, so I can send you back a debug version of WinSCP to track the problem? Please include link back to this topic in your email. Also note in this topic that you have sent the email. Thanks.

You will find my address (if you log in) in my forum profile.

Reply with quote

Advertisement

Advertisement

You can post new topics in this forum