FileZilla 3.42.1 fails with Certificate of connection does not match expected certificate error
Posted: 2019-05-17 16:04
I just upgraded from 3.41.1 to 3.42.1 and previously working connections are now failing with this error:
11:50:16 Error: Certificate of connection does not match expected certificate.
11:50:16 Error: The data connection could not be established: ECONNABORTED - Connection aborted
Turning debug logs on, I see:
...
11:53:11 Trace: TLS Handshake successful
11:53:11 Trace: Protocol: TLS1.2, Key exchange: ECDHE-RSA, Cipher: AES-256-GCM, MAC: AEAD
11:53:12 Error: Certificate of connection does not match expected certificate.
11:53:12 Trace: CTlsSocketImpl::Failure(0)
11:53:12 Trace: CTlsSocketImpl::OnRead()
11:53:12 Error: The data connection could not be established: ECONNABORTED - Connection aborted
11:53:12 Trace: CTransferSocket::TransferEnd(3)
11:53:12 Trace: CFtpControlSocket::OnReceive()
11:53:12 Response: 226 Closing data connection, sent 3041 bytes
...
the same connection from 3.41.1 works correctly and shows:
...
11:55:42 Trace: TLS Handshake successful
11:55:42 Trace: Protocol: TLS1.2, Key exchange: ECDHE-RSA, Cipher: AES-256-GCM, MAC: AEAD
11:55:42 Status: Verifying certificate...
11:55:42 Status: TLS connection established.
11:55:42 Trace: CControlSocket::SendNextCommand()
11:55:42 Trace: CFtpLogonOpData::Send() in state 5
...
Is there something in the 3.42.1 version that has changed surrounding this, or is there some way to tell what about the certificate is no longer acceptable?
thanks,
-mike
11:50:16 Error: Certificate of connection does not match expected certificate.
11:50:16 Error: The data connection could not be established: ECONNABORTED - Connection aborted
Turning debug logs on, I see:
...
11:53:11 Trace: TLS Handshake successful
11:53:11 Trace: Protocol: TLS1.2, Key exchange: ECDHE-RSA, Cipher: AES-256-GCM, MAC: AEAD
11:53:12 Error: Certificate of connection does not match expected certificate.
11:53:12 Trace: CTlsSocketImpl::Failure(0)
11:53:12 Trace: CTlsSocketImpl::OnRead()
11:53:12 Error: The data connection could not be established: ECONNABORTED - Connection aborted
11:53:12 Trace: CTransferSocket::TransferEnd(3)
11:53:12 Trace: CFtpControlSocket::OnReceive()
11:53:12 Response: 226 Closing data connection, sent 3041 bytes
...
the same connection from 3.41.1 works correctly and shows:
...
11:55:42 Trace: TLS Handshake successful
11:55:42 Trace: Protocol: TLS1.2, Key exchange: ECDHE-RSA, Cipher: AES-256-GCM, MAC: AEAD
11:55:42 Status: Verifying certificate...
11:55:42 Status: TLS connection established.
11:55:42 Trace: CControlSocket::SendNextCommand()
11:55:42 Trace: CFtpLogonOpData::Send() in state 5
...
Is there something in the 3.42.1 version that has changed surrounding this, or is there some way to tell what about the certificate is no longer acceptable?
thanks,
-mike