<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd">
<html lang="en">
<head>
<meta content="text/html; charset=US-ASCII" http-equiv="Content-Type">
<title>
GitLab
</title>


<style>img {
max-width: 100%; height: auto;
}
</style>
</head>
<body>
<div class="content">

<p class="details" style="font-style: italic; color: #777;">
<a href="https://gitlab.com/alla.gofman">Alla Gofman</a> created an issue:
</p>
<div></div>
<h2 dir="auto">
<a id="user-content-description-of-problem" class="anchor" href="#description-of-problem" aria-hidden="true"></a>Description of problem:</h2>
<p dir="auto">FileZilla client 3.46.x built against GnuTLS 3.6.7 - Failed to retrieve directory listing when connecting in TLS 1.3</p>
<h2 dir="auto">
<a id="user-content-version-of-gnutls-used" class="anchor" href="#version-of-gnutls-used" aria-hidden="true"></a>Version of gnutls used:</h2>
<p dir="auto">GnuTLS 3.6.7</p>
<h2 dir="auto">
<a id="user-content-distributor-of-gnutls-eg-ubuntu-fedora-rhel" class="anchor" href="#distributor-of-gnutls-eg-ubuntu-fedora-rhel" aria-hidden="true"></a>Distributor of gnutls (e.g., Ubuntu, Fedora, RHEL)</h2>
<h2 dir="auto">
<a id="user-content-how-reproducible" class="anchor" href="#how-reproducible" aria-hidden="true"></a>How reproducible:</h2>
<p dir="auto">Open FTP over SSL connection to remote server with protocol TLS 1.3
Directory listing fails
ERROR: | GNUTLS_A_USER_CANCELED | 90 | User canceled |</p>
<p dir="auto">I use Apache Mina ftp server.
We test other clients, one based on Apache FTP client and one on python ftp library, which succeeded to connect and retrieve directory listing.
Steps to Reproduce:</p>
<ul dir="auto">
<li>one</li>
<li>two</li>
<li>three</li>
</ul>
<h2 dir="auto">
<a id="user-content-actual-results" class="anchor" href="#actual-results" aria-hidden="true"></a>Actual results:</h2>
<p dir="auto">Please see FileZilla Ccient log in debug level:</p>
<ul dir="auto">
<li>Status:       Resolving address of ********</li>
<li>Status:       Connecting to ******...</li>
<li>Status:       Connection established, waiting for welcome message...</li>
<li>Status:       Initializing TLS...</li>
<li>Status:       Verifying certificate...</li>
<li>Status:       TLS connection established.</li>
<li>Status:       Logged in</li>
<li>Status:       Retrieving directory listing of "/"...</li>
<li>Command:      CWD /</li>
<li>Response:     250 Directory changed to /</li>
<li>Command:      TYPE I</li>
<li>Response:     200 Command TYPE okay.</li>
<li>Command:      PORT 137,72,216,12,225,198</li>
<li>Response:     200 Command PORT okay.</li>
<li>Command:      MLSD</li>
<li>Response:     150 File status okay; about to open data connection.</li>
<li><strong>Error:  Received TLS alert from the server: User canceled (90)</strong></li>
<li>Error:        Could not read from transfer socket: ECONNABORTED - Connection aborted</li>
<li>Response:     226 Closing data connection.</li>
<li>Error:        Failed to retrieve directory listing</li>
<li>Status:       Connection closed by server</li>
<li>Status:       Disconnected from server</li>
</ul>
<h2 dir="auto">
<a id="user-content-expected-results" class="anchor" href="#expected-results" aria-hidden="true"></a>Expected results:</h2>
<p dir="auto">Shows directory tree</p>

</div>
<div class="footer" style="margin-top: 10px;">
<p style="font-size: small; color: #777;">

<br>
Reply to this email directly or <a href="https://gitlab.com/gnutls/gnutls/issues/913">view it on GitLab</a>.
<br>
You're receiving this email because of your account on gitlab.com.
If you'd like to receive fewer emails, you can
<a href="https://gitlab.com/sent_notifications/1020bfdcce78f2288fb571ef452db4fe/unsubscribe">unsubscribe</a>
from this thread or
adjust your notification settings.
<script type="application/ld+json">{"@context":"http://schema.org","@type":"EmailMessage","action":{"@type":"ViewAction","name":"View Issue","url":"https://gitlab.com/gnutls/gnutls/issues/913"}}</script>


</p>
</div>
</body>
</html>