RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.
Bug 839257 - vsftpd doesn't accept legacy ipv4 connections when set to listen on ipv6
Summary: vsftpd doesn't accept legacy ipv4 connections when set to listen on ipv6
Keywords:
Status: CLOSED WONTFIX
Alias: None
Product: Red Hat Enterprise Linux 6
Classification: Red Hat
Component: vsftpd
Version: 6.5
Hardware: All
OS: Linux
high
urgent
Target Milestone: rc
: ---
Assignee: Jiri Skala
QA Contact: BaseOS QE Security Team
URL:
Whiteboard:
Depends On:
Blocks: 508685
TreeView+ depends on / blocked
 
Reported: 2012-07-11 11:47 UTC by Vadim Grinco
Modified: 2014-11-09 22:35 UTC (History)
4 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2012-10-29 11:38:33 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)
vsftpd init script for ipv6 (2.80 KB, text/plain)
2012-10-24 19:44 UTC, Paul Wouters 		no flags Details
vsftpd spec file with ipv6 update (21.28 KB, text/plain)
2012-10-24 19:46 UTC, Paul Wouters 		no flags Details
View All

Description Vadim Grinco 2012-07-11 11:47:26 UTC 
Description of problem:
vsftpd doesn't accept legacy ipv4 connections when set to listen on ipv6.

Version-Release number of selected component (if applicable):
vsftpd-2.2.2-11.el6.x86_64

How reproducible:
Always

Steps to Reproduce:
1. change listen=YES to listen_ipv6=yes
2. restart vsftpd
3. telnet 127.0.0.1 21
  
Actual results:
Trying 127.0.0.1...
telnet: connect to address 127.0.0.1: Connection refused
telnet: Unable to connect to remote host: Connection refused


Expected results:
Trying ::1...
Connected to chaos.brq.redhat.com (::1).
Escape character is '^]'.
220 (vsFTPd 2.2.2)


Additional info:
This has been broken by bug 592850.
Comment 8 Jiri Skala 2012-07-23 14:33:59 UTC 
The issue was really introduced intentionally by BZ#592850.

The vsftpd can be configured using two configure files. The first one will set listen=YES. The second on will set listen_ipv6=YES. So configured vsftpd will start two instances listening on different IP versions.

With respect to intention of BZ#592850 and described solution I close the bug with the status 'wontfix'.
Comment 9 Paul Wouters 2012-10-24 19:43:40 UTC 
there are more problems then just using two config files. Since vsftpd does not write pid files, there is no way you can have the two services running using the same daemon name.

As a work around, I created a softlink to vsftpd6 and install an additional initscript that uses prog=vsftpd6.

spec file and vsftpd6.init attached.

This change allows me to properly run v4 and v6 with the current patched vsftpd code. Hoever, I concur with #592850 that it should just listen to both v4 and v6 using one daemon and one config file. But if you're unwilling to do so, at least apply the attached files to properly run 2 separate services.
Comment 10 Paul Wouters 2012-10-24 19:44:29 UTC 
Created attachment 633003 [details]
vsftpd init script for ipv6
Comment 11 Paul Wouters 2012-10-24 19:46:23 UTC 
Created attachment 633004 [details]
vsftpd spec file with ipv6 update
Comment 12 RHEL Program Management 2012-10-24 19:49:24 UTC 
This request was evaluated by Red Hat Product Management for
inclusion in the current release of Red Hat Enterprise Linux.
Because the affected component is not scheduled to be updated
in the current release, Red Hat is unable to address this
request at this time.

Red Hat invites you to ask your support representative to
propose this request, if appropriate, in the next release of
Red Hat Enterprise Linux.
Comment 13 Paul Wouters 2012-10-24 20:08:55 UTC 
https://fedorahosted.org/fesco/ticket/693

Fesco seemed to have agreed for the fedora branches.....
Comment 14 Jiri Skala 2012-10-29 11:38:33 UTC 
(In reply to comment #9)
> there are more problems then just using two config files. Since vsftpd does
> not write pid files, there is no way you can have the two services running
> using the same daemon name.
> 
> As a work around, I created a softlink to vsftpd6 and install an additional
> initscript that uses prog=vsftpd6.
> 
Hi Paul,
there is no necessity to have more initscripts for particular instances of vsftpd. This is enough to create two or more config files in /etc/vsftpd directory that pass to mask *.conf. (e. g. vsftpd.conf, vsftpd1.conf).

Using 'service vsftpd start' will start appropriate number of daemon instances to number of correct configuration files.

You are able to have more running daemons and each of them is listening on different IP version, address or port. You can split configuration for listening to port 21 & 990 (ftp & ftps) and a lot of other variation.

If you have a trouble with starting more vsftpd instances and you are convinced this is a bug, please, open new bug and put there your conf files and other details necessary for reproducing.
I currently have no issue with running more instances.

Best regards

Jiri
Comment 15 Paul Wouters 2012-10-31 16:52:12 UTC 
sigh

The FESCO decision makes sense. We should not have multiple init scripts or multiple config files to support v4 and v6.

If I enable vsftpd, it should be enabled for v4 and v6, using a single config file. 

I'm not sure why you excluded the RHEL branch from FESCO's advise. It seems petty

Supporting multiple conf files is fine, requiring multiple config files for the simple case of running ftp on 4+6 is not.
Note You need to log in before you can comment on or make changes to this bug.