Issue 451839 in chromium: Err Connection Closed on one site, IE and Firefox work just fine
106 views
Skip to first unread message
chro...@googlecode.com
Jan 25, 2015, 2:16:13 PM1/25/15
to chromi...@chromium.org
Status: Unconfirmed
Owner: ----
Labels: Pri-2 Via-Wizard Type-Compat OS-Windows
New issue 451839 by nef...@gmail.com: Err Connection Closed on one site, IE
and Firefox work just fine
https://code.google.com/p/chromium/issues/detail?id=451839
UserAgent: Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML,
like Gecko) Chrome/40.0.2214.91 Safari/537.36
Example URL:
https://webadvisor.ctcd.org/WebAdvisor/WebAdvisor
Steps to reproduce the problem:
1. Opening https://webadvisor.ctcd.org/WebAdvisor/WebAdvisor webpage
2.
3.
What is the expected behavior?
opens the webadvisor login page
What went wrong?
19950: URL_REQUEST
https://webadvisor.ctcd.org/WebAdvisor/WebAdvisor
Start Time: 2015-01-25 13:08:18.697
t=2007 [st= 0] +REQUEST_ALIVE [dt=257]
t=2007 [st= 0] URL_REQUEST_DELEGATE [dt=0]
t=2007 [st= 0] URL_REQUEST_START_JOB [dt=0]
--> load_flags = 168329217 (BYPASS_DATA_REDUCTION_PROXY
| MAIN_FRAME | MAYBE_USER_GESTURE | VALIDATE_CACHE | VERIFY_EV_CERT)
--> method = "GET"
--> priority = "HIGHEST"
--> url
= "https://webadvisor.ctcd.org/WebAdvisor/WebAdvisor"
t=2007 [st= 0] +URL_REQUEST_START_JOB [dt=257]
--> load_flags = 168329217 (BYPASS_DATA_REDUCTION_PROXY
| MAIN_FRAME | MAYBE_USER_GESTURE | VALIDATE_CACHE | VERIFY_EV_CERT)
--> method = "GET"
--> priority = "HIGHEST"
--> url
= "https://webadvisor.ctcd.org/WebAdvisor/WebAdvisor"
t=2007 [st= 0] URL_REQUEST_DELEGATE [dt=0]
t=2007 [st= 0] HTTP_CACHE_GET_BACKEND [dt=0]
t=2007 [st= 0] HTTP_CACHE_OPEN_ENTRY [dt=0]
--> net_error = -2 (ERR_FAILED)
t=2007 [st= 0] HTTP_CACHE_CREATE_ENTRY [dt=1]
t=2008 [st= 1] HTTP_CACHE_ADD_TO_ENTRY [dt=0]
t=2008 [st= 1] URL_REQUEST_DELEGATE [dt=0]
t=2008 [st= 1] +HTTP_STREAM_REQUEST [dt=60]
t=2068 [st= 61] SSL_VERSION_FALLBACK
--> TLS 1.2 ==> TLS 1.1
--> host_and_port = "webadvisor.ctcd.org:443"
--> net_error = -100 (ERR_CONNECTION_CLOSED)
t=2068 [st= 61] -HTTP_STREAM_REQUEST
t=2068 [st= 61] +HTTP_STREAM_REQUEST [dt=60]
t=2128 [st=121] SSL_VERSION_FALLBACK
--> TLS 1.1 ==> TLS 1.0
--> host_and_port = "webadvisor.ctcd.org:443"
--> net_error = -100 (ERR_CONNECTION_CLOSED)
t=2128 [st=121] -HTTP_STREAM_REQUEST
t=2128 [st=121] HTTP_STREAM_REQUEST [dt=136]
t=2264 [st=257] -URL_REQUEST_START_JOB
--> net_error = -100 (ERR_CONNECTION_CLOSED)
t=2264 [st=257] URL_REQUEST_DELEGATE [dt=0]
t=2264 [st=257] -REQUEST_ALIVE
--> net_error = -100 (ERR_CONNECTION_CLOSED)
Does it occur on multiple sites: No
Is it a problem with a plugin? No
Did this work before? Yes December '14
Does this work in other browsers? Yes
Chrome version: 40.0.2214.91 Channel: stable
OS Version: 6.3
Flash Version: Shockwave Flash 16.0 r0
--
You received this message because this project is configured to send all
issue notifications to this address.
You may adjust your notification preferences at:
https://code.google.com/hosting/settings
Owner: ----
Labels: Pri-2 Via-Wizard Type-Compat OS-Windows
New issue 451839 by nef...@gmail.com: Err Connection Closed on one site, IE
and Firefox work just fine
https://code.google.com/p/chromium/issues/detail?id=451839
UserAgent: Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML,
like Gecko) Chrome/40.0.2214.91 Safari/537.36
Example URL:
https://webadvisor.ctcd.org/WebAdvisor/WebAdvisor
Steps to reproduce the problem:
1. Opening https://webadvisor.ctcd.org/WebAdvisor/WebAdvisor webpage
2.
3.
What is the expected behavior?
opens the webadvisor login page
What went wrong?
19950: URL_REQUEST
https://webadvisor.ctcd.org/WebAdvisor/WebAdvisor
Start Time: 2015-01-25 13:08:18.697
t=2007 [st= 0] +REQUEST_ALIVE [dt=257]
t=2007 [st= 0] URL_REQUEST_DELEGATE [dt=0]
t=2007 [st= 0] URL_REQUEST_START_JOB [dt=0]
--> load_flags = 168329217 (BYPASS_DATA_REDUCTION_PROXY
| MAIN_FRAME | MAYBE_USER_GESTURE | VALIDATE_CACHE | VERIFY_EV_CERT)
--> method = "GET"
--> priority = "HIGHEST"
--> url
= "https://webadvisor.ctcd.org/WebAdvisor/WebAdvisor"
t=2007 [st= 0] +URL_REQUEST_START_JOB [dt=257]
--> load_flags = 168329217 (BYPASS_DATA_REDUCTION_PROXY
| MAIN_FRAME | MAYBE_USER_GESTURE | VALIDATE_CACHE | VERIFY_EV_CERT)
--> method = "GET"
--> priority = "HIGHEST"
--> url
= "https://webadvisor.ctcd.org/WebAdvisor/WebAdvisor"
t=2007 [st= 0] URL_REQUEST_DELEGATE [dt=0]
t=2007 [st= 0] HTTP_CACHE_GET_BACKEND [dt=0]
t=2007 [st= 0] HTTP_CACHE_OPEN_ENTRY [dt=0]
--> net_error = -2 (ERR_FAILED)
t=2007 [st= 0] HTTP_CACHE_CREATE_ENTRY [dt=1]
t=2008 [st= 1] HTTP_CACHE_ADD_TO_ENTRY [dt=0]
t=2008 [st= 1] URL_REQUEST_DELEGATE [dt=0]
t=2008 [st= 1] +HTTP_STREAM_REQUEST [dt=60]
t=2068 [st= 61] SSL_VERSION_FALLBACK
--> TLS 1.2 ==> TLS 1.1
--> host_and_port = "webadvisor.ctcd.org:443"
--> net_error = -100 (ERR_CONNECTION_CLOSED)
t=2068 [st= 61] -HTTP_STREAM_REQUEST
t=2068 [st= 61] +HTTP_STREAM_REQUEST [dt=60]
t=2128 [st=121] SSL_VERSION_FALLBACK
--> TLS 1.1 ==> TLS 1.0
--> host_and_port = "webadvisor.ctcd.org:443"
--> net_error = -100 (ERR_CONNECTION_CLOSED)
t=2128 [st=121] -HTTP_STREAM_REQUEST
t=2128 [st=121] HTTP_STREAM_REQUEST [dt=136]
t=2264 [st=257] -URL_REQUEST_START_JOB
--> net_error = -100 (ERR_CONNECTION_CLOSED)
t=2264 [st=257] URL_REQUEST_DELEGATE [dt=0]
t=2264 [st=257] -REQUEST_ALIVE
--> net_error = -100 (ERR_CONNECTION_CLOSED)
Does it occur on multiple sites: No
Is it a problem with a plugin? No
Did this work before? Yes December '14
Does this work in other browsers? Yes
Chrome version: 40.0.2214.91 Channel: stable
OS Version: 6.3
Flash Version: Shockwave Flash 16.0 r0
--
You received this message because this project is configured to send all
issue notifications to this address.
You may adjust your notification preferences at:
https://code.google.com/hosting/settings
chro...@googlecode.com
Jan 27, 2015, 12:09:43 PM1/27/15
to chromi...@chromium.org
Updates:
Cc: chi...@chromium.org
Labels: Needs-Feedback
Comment #2 on issue 451839 by chi...@chromium.org: Err Connection Closed on
Issue is not reproducible on Windows 7 with the reported version
40.0.2214.91.
nefink@: Can you please retest this issue by creating a new profile in
chrome://settings.
Thankyou!
Cc: chi...@chromium.org
Labels: Needs-Feedback
Comment #2 on issue 451839 by chi...@chromium.org: Err Connection Closed on
Issue is not reproducible on Windows 7 with the reported version
40.0.2214.91.
nefink@: Can you please retest this issue by creating a new profile in
chrome://settings.
Thankyou!
chro...@googlecode.com
Jan 29, 2015, 9:36:40 AM1/29/15
to chromi...@chromium.org
Comment #3 on issue 451839 by nef...@gmail.com: Err Connection Closed on
Tried it and still the same issue =/
chro...@googlecode.com
Jan 29, 2015, 9:57:50 PM1/29/15
to chromi...@chromium.org
Updates:
Labels: -Cr-Internals-Network Cr-Internals-Network-SSL
Comment #4 on issue 451839 by asa...@chromium.org: Err Connection Closed on
Could you provide a net-internals log as described in
http://dev.chromium.org/for-testers/providing-network-details ? The events
you've included in the report are helpful, but the socket events might also
help figure out what's going on.
Labels: -Cr-Internals-Network Cr-Internals-Network-SSL
Comment #4 on issue 451839 by asa...@chromium.org: Err Connection Closed on
Could you provide a net-internals log as described in
http://dev.chromium.org/for-testers/providing-network-details ? The events
you've included in the report are helpful, but the socket events might also
help figure out what's going on.
chro...@googlecode.com
Feb 7, 2015, 9:15:24 PM2/7/15
to chromi...@chromium.org
Comment #5 on issue 451839 by chrod...@gmail.com: Err Connection Closed
on one site, IE and Firefox work just fine
https://code.google.com/p/chromium/issues/detail?id=451839
The server is vulnerable to CVE-2009-3555 insecure renegotiation
https://code.google.com/p/chromium/issues/detail?id=451839
vulnerability, doesn't support secure renegotiation, supports only SSL 3.0
(insecure) and TLS 1.0, intolerant to TLS 1.1 and TLS 1.2 ClientHello, uses
static RSA key exchange and supports only RC4 cipher, which I disabled in
both Internet Explorer and Google Chrome because of its weakness. Regarding
my last statement, read more:
http://threatpost.com/attack-exploits-weakness-rc4-cipher-decrypt-user-sessions-031413/77628
Using Firefox with Calomel SSL validation addon, I can see the score is 23%.
Full security report here:
https://www.ssllabs.com/ssltest/analyze.html?d=webadvisor.ctcd.org
As you can see, all modern clients get "Protocol or cipher suite mismatch".
What's the point of asking network logs? I wonder how long Chromium bug
tracker will suffer from reports about these obsolete and FUBAR servers run
by educational institutions. Enough!
Attachments:
webadvisor.ctcd.org SSL validation.png 136 KB
webadvisor.ctcd.org SSL Labs.png 49.6 KB
chro...@googlecode.com
Feb 9, 2015, 6:31:55 PM2/9/15
to chromi...@chromium.org
Comment #6 on issue 451839 by davi...@chromium.org: Err Connection Closed
on one site, IE and Firefox work just fine
https://code.google.com/p/chromium/issues/detail?id=451839
nefink: chrodev2015 isn't affiliated with the Chromium project. We do
https://code.google.com/p/chromium/issues/detail?id=451839
appreciate your report, even if it seems the server is partly at fault. It
does look like the server is intolerant to TLS 1.1 and above. This is a bug
in the server and should be fixed; if you contact the people maintaining
the website and ask them to update their software, that may well resolve
the issue.
That said, I am able to connect to it fine on my machine, so there may be
some additional issue. Chrome, like other browsers, has a fallback
mechanism to workaround such buggy servers. I get ERR_CONNECTION_CLOSED on
the first two connection attempts, but the TLS 1.0 leg of the fallback
succeeds, while you seem to be finishing with ERR_CONNECTION_CLOSED. Would
you be willing to attach a full net-internals dump? That might have more
information. Feel free to email me privately if you do not wish to post the
log publicly.
Do you know of any interesting configuration on your machine or network,
like a firewall or proxy or anti-virus?
Thanks!
chro...@googlecode.com
Mar 27, 2015, 2:19:40 PM3/27/15
to chromi...@chromium.org
Updates:
Status: Archived
Comment #7 on issue 451839 by mme...@chromium.org: Err Connection Closed on
Archived due to lack of response from user.
Status: Archived
Comment #7 on issue 451839 by mme...@chromium.org: Err Connection Closed on
Archived due to lack of response from user.
Reply all
Reply to author
Forward
0 new messages