SSL: error:14094123:SSL routines:ssl3_read_bytes:application data after close notify

[wahello]

xrdp version

0.10.0

Detailed xrdp version, build options

Paste the result between `~~~`.  Please DO NOT remove `~~~`!

Operating system & version

Rocky Linux 8

Installation method

dnf / apt / zypper / pkg / etc

Which backend do you use?

tigvnc 1.13.1-11.el8_10

What desktop environment do you use?

macbook

Environment xrdp running on

Rocky Linux 8

What's your client?

MS remote desktop form AppStore.

Area(s) with issue?

Network

Steps to reproduce

1. installd xrdp
2. configure in MS remote desktop
3. connect

✔️ Expected Behavior

open remote destkop

❌ Actual Behavior

MS remote desktop shutdown the opened window.

Jul 23 18:57:18 localhost xrdp[122532]: [ERROR] VNC server closed connection
Jul 23 18:57:18 localhost xrdp[122532]: [ERROR] SSL_shutdown: Failure in SSL library (protocol error?)
Jul 23 18:57:18 localhost xrdp[122532]: [ERROR] SSL: error:14094123:SSL routines:ssl3_read_bytes:application data after close notify

Anything else?

No response

[matt335672]

@wahello - we need some more information.

1. We need to know how you have installed xrdp. Filling in the Detailed xrdp version, build options section above will help.
2. can you post the contents of /var/log/xrdp.log from around the time the problem was encountered?
3. can you post the contents of /var/log/xrdp-sesman.log from around the time the problem was encountered?

Finally, are you sure the RDP user is not logged in on the console? (see the FAQ)

[wahello]

@matt335672

1. dnf install xrdp, from epel.
2. /var/log/xrdp.log

[2024-07-24T11:36:06.826+0800] [INFO ] Socket 14: connection accepted from [::ffff:10.11.11.252]:58750
[2024-07-24T11:36:06.846+0800] [INFO ] Using default X.509 certificate: /etc/xrdp/cert.pem
[2024-07-24T11:36:06.861+0800] [INFO ] Using default X.509 key file: /etc/xrdp/key.pem
[2024-07-24T11:36:06.878+0800] [INFO ] Security protocol: configured [SSL|RDP], requested [SSL|HYBRID|HYBRID_EX|RDP], selected [SSL]
[2024-07-24T11:36:06.926+0800] [INFO ] Connected client computer name: macbookp
[2024-07-24T11:36:06.945+0800] [INFO ] client supports gfx protocol
[2024-07-24T11:36:06.962+0800] [WARN ] Received [MS-RDPBCGR] TS_UD_HEADER type 0xc006 is unknown (ignored)
[2024-07-24T11:36:06.978+0800] [WARN ] Received [MS-RDPBCGR] TS_UD_HEADER type 0xc00a is unknown (ignored)
[2024-07-24T11:36:06.998+0800] [INFO ] xrdp_load_keyboard_layout: Keyboard information sent by the RDP client, keyboard_type:[0x04], keyboard_subtype:[0x00], keylayout:[0x00000409]
[2024-07-24T11:36:07.206+0800] [INFO ] xrdp_load_keyboard_layout: model [] variant [] layout [us] options []
[2024-07-24T11:36:07.371+0800] [INFO ] TLS connection established from [::ffff:10.11.11.252]:58750 TLSv1.3 with cipher TLS_AES_256_GCM_SHA384
[2024-07-24T11:36:07.768+0800] [INFO ] Client supports single-screen resizes by xrdp
[2024-07-24T11:36:07.954+0800] [INFO ] xrdp_caps_process_pointer: client supports new(color) cursor
[2024-07-24T11:36:07.112+0800] [INFO ] xrdp_process_offscreen_bmpcache: support level 0 cache size 0 MB cache entries 0
[2024-07-24T11:36:07.128+0800] [INFO ] xrdp_caps_process_codecs: NSCodec(CA8D1BB9-000F-154F-589F-AE2D1A87E2D6), codec id [1], properties len [3]
[2024-07-24T11:36:07.145+0800] [INFO ] Client Capability: LARGE_POINTER_FLAG_96x96 supported
[2024-07-24T11:36:07.165+0800] [INFO ] Loading keymap file /etc/xrdp/km-00000409.ini
[2024-07-24T11:36:07.187+0800] [WARN ] local keymap file for 0x00000409 found and doesn't match built in keymap, using local keymap file
[2024-07-24T11:36:07.204+0800] [INFO ] Login screen monitor height is 1080 pixels over 335 mm (81 DPI)
[2024-07-24T11:36:07.223+0800] [INFO ] xrdp_egfx_create: error 0 channel_id 1
[2024-07-24T11:36:07.245+0800] [INFO ] xrdp_mm_egfx_caps_advertise:
[2024-07-24T11:36:07.262+0800] [INFO ]   version 0x00080004 flags 0x00000002 (index: 0)
[2024-07-24T11:36:07.279+0800] [INFO ]   version 0x00080105 flags 0x00000002 (index: 1)
[2024-07-24T11:36:07.295+0800] [INFO ]   version 0x000a0002 flags 0x00000022 (index: 2)
[2024-07-24T11:36:07.312+0800] [INFO ]   version 0x000a0200 flags 0x00000022 (index: 3)
[2024-07-24T11:36:07.329+0800] [INFO ]   version 0x000a0301 flags 0x00000020 (index: 4)
[2024-07-24T11:36:07.345+0800] [INFO ]   version 0x000a0400 flags 0x00000002 (index: 5)
[2024-07-24T11:36:07.362+0800] [INFO ]   version 0x000a0701 flags 0x00000082 (index: 6)
[2024-07-24T11:36:07.379+0800] [INFO ]   version 0x000b0101 flags 0x00000082 (index: 7)
[2024-07-24T11:36:07.395+0800] [INFO ] unknown version 0x000b0101
[2024-07-24T11:36:07.412+0800] [INFO ]   replying version 0x000a0701 flags 0x00000082
[2024-07-24T11:36:07.429+0800] [INFO ] xrdp_mm_egfx_caps_advertise: xrdp_egfx_send_capsconfirm error 0 best_index 6
[2024-07-24T11:36:07.445+0800] [INFO ] xrdp_egfx_reset_graphics:
[2024-07-24T11:36:07.462+0800] [INFO ] xrdp_egfx_reset_graphics: width 1920 height 1080 monitorcount 1
[2024-07-24T11:36:07.479+0800] [INFO ] xrdp_mm_egfx_caps_advertise: xrdp_egfx_send_reset_graphics error 0 monitorCount 0
[2024-07-24T11:36:07.496+0800] [INFO ] xrdp_mm_egfx_create_surfaces: map surface_id 0 left 0 top 0 width 1920 height 1080
[2024-07-24T11:36:07.512+0800] [INFO ] xrdp_encoder_create: starting gfx rfx pro codec session
[2024-07-24T11:36:07.529+0800] [INFO ] xrdp_mm_egfx_invalidate_wm_screen:
[2024-07-24T11:36:07.546+0800] [INFO ] xrdp_mm_egfx_caps_advertise: egfx created.
[2024-07-24T11:36:07.562+0800] [WARN ] Ignoring obsolete SCP port value '3350'
[2024-07-24T11:36:07.579+0800] [INFO ] xrdp_wm_log_msg: sesman connect ok
[2024-07-24T11:36:07.596+0800] [INFO ] xrdp_wm_log_msg: Performing login request for xxx
[2024-07-24T11:36:07.721+0800] [INFO ] xrdp_wm_log_msg: login was successful - creating session
[2024-07-24T11:36:08.854+0800] [INFO ] xrdp_wm_log_msg: session is available on display 10 for user xxx
[2024-07-24T11:36:08.871+0800] [INFO ] xrdp_wm_log_msg: Connecting to session
[2024-07-24T11:36:08.888+0800] [INFO ] loaded module 'libvnc.so' ok, interface size 4832, version 4
[2024-07-24T11:36:08.913+0800] [INFO ] VNC: Clipboard (if available) is provided by chansrv facility
[2024-07-24T11:36:08.929+0800] [INFO ] xrdp_wm_log_msg: Connecting to chansrv
[2024-07-24T11:36:08.963+0800] [INFO ] Layout from ClientLayout (geom=1920x1080 #screens=1) : 0:(1920x1080+0+0)
[2024-07-24T11:36:09.295+0800] [INFO ] Layout from OldServerLayout (geom=1920x1080 #screens=1) : 1804289383:(1920x1080+0+0)
[2024-07-24T11:36:09.581+0800] [ERROR] VNC server closed connection
[2024-07-24T11:36:09.679+0800] [ERROR] SSL_shutdown: Failure in SSL library (protocol error?)
[2024-07-24T11:36:09.804+0800] [ERROR] SSL: error:14094123:SSL routines:ssl3_read_bytes:application data after close notify

3./var/log/xrdp-sesman.log

[2024-07-24T11:36:07.579+0800] [INFO ] Socket 13: connection accepted from AF_UNIX
[2024-07-24T11:36:07.621+0800] [INFO ] Received system login request from xrdp for user: xxx IP: ::ffff:10.11.11.252
[2024-07-24T11:36:07.639+0800] [INFO ] starting xrdp-sesexec with pid 324928
[2024-07-24T11:36:07.680+0800] [INFO ] TerminalServerUsers group tsusers doesn't exist. Access granted for xxx
[2024-07-24T11:36:07.704+0800] [INFO ] Access permitted for user: xxx
[2024-07-24T11:36:07.721+0800] [INFO ] Received sys login status for xxx : logged in
[2024-07-24T11:36:07.737+0800] [INFO ] Received request from xrdp to create a session for user xxx
[2024-07-24T11:36:07.765+0800] [INFO ] Starting X server on display 10: Xvnc :10 -auth .Xauthority -geometry 1920x1080 -depth 32 -rfbauth /home/xxx/.vnc/sesman_passwd-xxx@yyyy:10 -bs -nolisten tcp -localhost -dpi 96 
[2024-07-24T11:36:08.767+0800] [INFO ] X server :10 is working
[2024-07-24T11:36:08.787+0800] [INFO ] Starting window manager for display :10
[2024-07-24T11:36:08.804+0800] [INFO ] Starting the xrdp channel server for display :10
[2024-07-24T11:36:08.805+0800] [INFO ] Using the default window manager on display 10: /usr/libexec/xrdp/startwm-bash.sh
[2024-07-24T11:36:08.821+0800] [INFO ] Session in progress on display :10. Waiting until the window manager (pid 324960) exits to end the session
[2024-07-24T11:36:09.357+0800] [INFO ] Window manager (pid 324960, display 10) finished normally in 1 secs
[2024-07-24T11:36:09.446+0800] [WARN ] Window manager (pid 324960, display 10) exited quickly (1 secs). This could indicate a window manager config problem
[2024-07-24T11:36:09.512+0800] [INFO ] Terminating X server (pid 324932) on display :10
[2024-07-24T11:36:09.580+0800] [INFO ] Terminating the xrdp channel server (pid 324961) on display :10
[2024-07-24T11:36:09.679+0800] [INFO ] X server pid 324932 on display :10 finished
[2024-07-24T11:36:10.107+0800] [INFO ] xrdp channel server pid 324961 on display :10 finished
[2024-07-24T11:36:10.465+0800] [INFO ] Session on display 10 has finished.

[matt335672]

Thanks.

Your session manager is exiting quickly:-

[2024-07-24T11:36:08.821+0800] [INFO ] Session in progress on display :10. Waiting until the window manager (pid 324960) exits to end the session
[2024-07-24T11:36:09.357+0800] [INFO ] Window manager (pid 324960, display 10) finished normally in 1 secs
[2024-07-24T11:36:09.446+0800] [WARN ] Window manager (pid 324960, display 10) exited quickly (1 secs). This could indicate a window manager config problem

Can you confirm the RDP user is not logged in on the console?

[wahello]

This is a newly added part of xrdp-sesman.log:

[2024-07-25T09:27:20.544+0600] [INFO ] X server :10 is working
[2024-07-25T09:27:20.564+0600] [INFO ] Starting window manager for display :10
[2024-07-25T09:27:20.582+0600] [INFO ] Starting the xrdp channel server for display :10
[2024-07-25T09:27:20.582+0600] [INFO ] Using the default window manager on display 10: /usr/libexec/xrdp/startwm-bash.sh
[2024-07-25T09:27:20.598+0600] [INFO ] Session in progress on display :10. Waiting until the window manager (pid 416204) exits to end the session
[2024-07-25T09:27:21.119+0600] [INFO ] Window manager (pid 416204, display 10) finished normally in 1 secs
[2024-07-25T09:27:21.216+0600] [WARN ] Window manager (pid 416204, display 10) exited quickly (1 secs). This could indicate a window manager config problem
[2024-07-25T09:27:21.298+0600] [INFO ] Terminating X server (pid 416166) on display :10
[2024-07-25T09:27:21.374+0600] [INFO ] Terminating the xrdp channel server (pid 416205) on display :10
[2024-07-25T09:27:21.465+0600] [INFO ] X server pid 416166 on display :10 finished
[2024-07-25T09:27:21.707+0600] [INFO ] xrdp channel server pid 416205 on display :10 finished
[2024-07-25T09:27:21.740+0600] [INFO ] Session on display 10 has finished.

Window manager pid is changed, once I connect to xrdp.

[wahello]

It was resolved by the following

systemctl set-default  multi-user.target
reboot 

It from this.

It's amazing.