OpenSSL SSL_connect: SSL_ERROR_SYSCALL
Posted: 2018-11-08 20:52
Hello,
A client is using PHP version 7.1.0 to connect to my server running the latest 0.9.60
$curl = curl_init();
curl_setopt($curl, CURLOPT_USE_SSL, CURLFTPSSL_ALL);
curl_setopt($curl, CURLOPT_SSLVERSION, 6);
curl_setopt($curl, CURLOPT_TCP_NODELAY, 0);
curl_setopt($curl, CURLOPT_URL, "ftps://ben:benuiqw#__#<EMAIL email="wnm@ftp.example.com">wnm@ftp.example.com</EMAIL>/");
curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, 0);
curl_exec($curl);
curl_close ($curl);
fclose($file);
returns the following:
* Hostname ftp.example.com was found in DNS cache
* Trying xxx.xxx.xxx.xxx...
* TCP_NODELAY set
* Connected to ftp.example.com (xxx.xxx.xxx.xxx) port 990 (#0)
* successfully set certificate verify locations:
* CAfile: D:/inetpub/PHP/cacert.pem
CApath: none
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384
* Server certificate:
* subject: CN=ftp.example.com; C=US; ST=My State; L=My City; O=example, LLC; OU=example Team; emailAddress=<EMAIL email="support@example.com">support@example.com</EMAIL>
* start date: Apr 28 00:50:06 2018 GMT
* expire date: Apr 28 00:50:06 2019 GMT
* common name: ftp.example.com (matched)
* issuer: CN=ftp.example.com; C=US; ST=My State; L=My City; O=example, LLC; OU=example Team; emailAddress=<EMAIL email="support@example.com">support@example.com</EMAIL>
* SSL certificate verify ok.
< 220 Hello...now where to begin
> USER ben
< 331 Password required for ben
> PASS *************
< 230 Logged on
> PBSZ 0
< 200 PBSZ=0
> PROT P
< 200 Protection level set to P
> PWD
< 257 "/" is current directory.
* Entry path is '/'
> EPSV
* Connect data stream passively
* ftp_perform ends with SECONDARY: 0
< 229 Entering Extended Passive Mode (|||5086|)
* Trying xxx.xxx.xxx.xxx...
* TCP_NODELAY set
* Connecting to xxx.xxx.xxx.xxx (xxx.xxx.xxx.xxx) port 5086
* Connected to ftp.example.com (xxx.xxx.xxx.xxx) port 990 (#0)
> TYPE A
< 200 Type set to A
> LIST
< 150 Opening data channel for directory listing of "/"
* Maxdownload = -1
* Doing the SSL/TLS handshake on the data stream
* successfully set certificate verify locations:
* CAfile: D:/inetpub/PHP/cacert.pem
CApath: none
* SSL re-using session ID
* OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to ftp.example.com:990
* Closing connection 0
They say that they are not running a proxy and the passive ports range (5000 to 5100) are configured in their firewall. Any suggestions would be appreciated.</r>
A client is using PHP version 7.1.0 to connect to my server running the latest 0.9.60
$curl = curl_init();
curl_setopt($curl, CURLOPT_USE_SSL, CURLFTPSSL_ALL);
curl_setopt($curl, CURLOPT_SSLVERSION, 6);
curl_setopt($curl, CURLOPT_TCP_NODELAY, 0);
curl_setopt($curl, CURLOPT_URL, "ftps://ben:benuiqw#__#<EMAIL email="wnm@ftp.example.com">wnm@ftp.example.com</EMAIL>/");
curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, 0);
curl_exec($curl);
curl_close ($curl);
fclose($file);
returns the following:
* Hostname ftp.example.com was found in DNS cache
* Trying xxx.xxx.xxx.xxx...
* TCP_NODELAY set
* Connected to ftp.example.com (xxx.xxx.xxx.xxx) port 990 (#0)
* successfully set certificate verify locations:
* CAfile: D:/inetpub/PHP/cacert.pem
CApath: none
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384
* Server certificate:
* subject: CN=ftp.example.com; C=US; ST=My State; L=My City; O=example, LLC; OU=example Team; emailAddress=<EMAIL email="support@example.com">support@example.com</EMAIL>
* start date: Apr 28 00:50:06 2018 GMT
* expire date: Apr 28 00:50:06 2019 GMT
* common name: ftp.example.com (matched)
* issuer: CN=ftp.example.com; C=US; ST=My State; L=My City; O=example, LLC; OU=example Team; emailAddress=<EMAIL email="support@example.com">support@example.com</EMAIL>
* SSL certificate verify ok.
< 220 Hello...now where to begin
> USER ben
< 331 Password required for ben
> PASS *************
< 230 Logged on
> PBSZ 0
< 200 PBSZ=0
> PROT P
< 200 Protection level set to P
> PWD
< 257 "/" is current directory.
* Entry path is '/'
> EPSV
* Connect data stream passively
* ftp_perform ends with SECONDARY: 0
< 229 Entering Extended Passive Mode (|||5086|)
* Trying xxx.xxx.xxx.xxx...
* TCP_NODELAY set
* Connecting to xxx.xxx.xxx.xxx (xxx.xxx.xxx.xxx) port 5086
* Connected to ftp.example.com (xxx.xxx.xxx.xxx) port 990 (#0)
> TYPE A
< 200 Type set to A
> LIST
< 150 Opening data channel for directory listing of "/"
* Maxdownload = -1
* Doing the SSL/TLS handshake on the data stream
* successfully set certificate verify locations:
* CAfile: D:/inetpub/PHP/cacert.pem
CApath: none
* SSL re-using session ID
* OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to ftp.example.com:990
* Closing connection 0
They say that they are not running a proxy and the passive ports range (5000 to 5100) are configured in their firewall. Any suggestions would be appreciated.</r>