Hi,
I have problems with TLS session reasumption when using ftps servers with 64-bit TotalCommander.
The datachannel cannot be established.
150 Opening data channel for directory listing of "/"
Data handshake failed: -2146893052
ABOR
The ftps connection works fine if i start the 32-bit Version of Totalcommander (totalcmd.exe)
150 Opening data channel for directory listing of "/"
Download
Waiting for server...
I see in the ftp log that for 32/64 bit TotalCommander there are different dlls used.
totalcmd64.exe: --> Using sChannel (Secur32.dll) for SSL/TLS connection.
totalcmd.exe: --> SSL: Libraries loaded OK! c:\wtool\totalcmd\libeay32.dll
Somebody here who could help me with this issue ?
Thanks a lot,
br
ftps Problem only with 64bit Totalcommander
Moderators: white, Hacker, petermad, Stefan2
- sqa_wizard
- Power Member
- Posts: 3864
- Joined: 2003-02-06, 11:41 UTC
- Location: Germany
Re: ftps Problem only with 64bit Totalcommander
Obviously you have installed the 32-bit version of SSL library "libeay32.dll" => TC uses the OpenSSL library correctlytotalcmd.exe: --> SSL: Libraries loaded OK! c:\wtool\totalcmd\libeay32.dll
All you need is the same library (same name but in 64-bit) copied to c:\wtool\totalcmd\64\libeay32.dll
#5767 Personal license
Re: ftps Problem only with 64bit Totalcommander
Hi,
Thanks for your reply.
I did what you've suggested, but it still does not work.
ftp log shows still
Using sChannel (Secur32.dll) for SSL/TLS connection.
However if i monitor totalcmd64.exe with sysinternals procmon i see that libeay32, libssl32 and ssleay32.dll are loaded from .\64\ directory.
Thanks for your reply.
I did what you've suggested, but it still does not work.
ftp log shows still
Using sChannel (Secur32.dll) for SSL/TLS connection.
However if i monitor totalcmd64.exe with sysinternals procmon i see that libeay32, libssl32 and ssleay32.dll are loaded from .\64\ directory.
- ghisler(Author)
- Site Admin
- Posts: 48093
- Joined: 2003-02-04, 09:46 UTC
- Location: Switzerland
- Contact:
Re: ftps Problem only with 64bit Totalcommander
When TC reports that it uses sChannel (Secur32.dll), then OpenSSL is not used.Using sChannel (Secur32.dll) for SSL/TLS connection.
Unfortunately Microsoft has completely broken SSL session resumption in sChannel (Secur32.dll) in the recent security update:
KB4517389 (Windows 10 1903)
KB4520008 (Windows 10 1803)
KB4520005 (Windows 8.1).
sChannel no longer works with ANY servers which need SSL session resumption.
Therefore the only solution now is to use OpenSSL.
I have just tested it - it works with the latest OpenSSL dlls both in TC 32-bit and 64-bit. You can download them here:
https://indy.fulgan.com/SSL/?C=N;O=D
For the 64-bit version, make sure to put the two dlls in the folder "64" below the folder where TC 64-bit is installed!
To find the right base folder, paste the following command in the command line above F5, F6 buttons and press ENTER;
cd %commander_path%
Here you need to create folder "64" (without the quotes) and then put the dlls inside.
Author of Total Commander
https://www.ghisler.com
https://www.ghisler.com
Re: ftps Problem only with 64bit Totalcommander
Thank you very much for your efforts to check this issue.
Session reasumption is working now!!
SSL: Libraries loaded OK! C:\wtool\totalcmd\64\libeay32.dll
br,
Session reasumption is working now!!
SSL: Libraries loaded OK! C:\wtool\totalcmd\64\libeay32.dll
br,