+++ This bug was initially created as a clone of Bug #566561 +++
Description of problem:
lftp does not perform a bi-directional TLS shutdown when used in CCC mode.
Upstream has a patch for this issue that works on the RHEL5 version of
Version-Release number of selected component (if applicable):
Always (for me)
Steps to Reproduce:
1. Set up FTP server that supports CCC (eg ProFTPD 1.3.2)
2. Connect to FTP server using lftp and TLS with the following options:
- debug 12
- set ftp:ssl-force true
- set ftp:ssl-protect-list yes
- set ftp:ssl-protect-data yes
- set ftp:ssl-use-ccc yes
3. Connect to the FTP site and attempt a directory listing.
Directory listing hangs. ProFTPD spits out an error similar to:
Oct 15 19:14:04 mod_tls/2.1.2: SSL_shutdown error :
(1) error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version number
TLS is shut down and directory listing proceeds normally.
ProFTPD has a bug that mentions this issue. Also see this thread
from the lftp-devel list which includes a patch that addresses the issue.
Assuming lftp releases a new version including this fix, I would like to see
the fix either backported to F11, F12, F13 (since rawhide is now branched),
or the versions in those versions of Fedora rebased to latest.
I can open bugs for those as well if you'd like.
lftp-4.0.5-2.fc13 has been submitted as an update for Fedora 13.
lftp-4.0.5-2.fc12 has been submitted as an update for Fedora 12.
lftp-3.7.14-3.fc11 has been submitted as an update for Fedora 11.
lftp-4.0.5-2.fc12 has been pushed to the Fedora 12 stable repository. If problems still persist, please make note of it in this bug report.
lftp-4.0.5-2.fc13 has been pushed to the Fedora 13 stable repository. If problems still persist, please make note of it in this bug report.
lftp-3.7.14-3.fc11 has been pushed to the Fedora 11 stable repository. If problems still persist, please make note of it in this bug report.