|
|
problem with 3.26 version of stunnel: msg#00026network.stunnel.user
We use stunnel to port forward html internal systems to the outside of our firewall. After the upgrade last week to 3.26, stunnel exits with a SIGSEGV. The only happens on 1 of the 3 systems we use stunnel with, but it happens everytime. Thanks, Curt Here are my particulars: /usr/sbin/stunnel -f -D7 -p /usr/share/ssl/certs/ipop3d.pem -dxxx:443 -r yyy:80 LOG5[20156:1024]: Using 'yyy.80' as tcpwrapper service name LOG4[20156:1024]: Wrong permissions on /usr/share/ssl/certs/ipop3d.pem LOG7[20156:1024]: Snagged 64 random bytes from /root/.rnd LOG7[20156:1024]: Wrote 1024 new random bytes to /root/.rnd LOG7[20156:1024]: RAND_status claims sufficient entropy for the PRNG LOG6[20156:1024]: PRNG seeded successfully LOG7[20156:1024]: Certificate: /usr/share/ssl/certs/ipop3d.pem LOG5[20156:1024]: stunnel 3.26 on i386-redhat-linux-gnu PTHREAD+LIBWRAP with OpenSSL 0.9.6b [engine] 9 Jul 2001 LOG7[20156:1024]: Created pid file /var/run/stunnel.yyy.80.pid LOG5[20156:1024]: FD_SETSIZE=1024, file ulimit=1024 -> 500 clients allowed LOG7[20156:1024]: SO_REUSEADDR option set on accept socket LOG7[20156:1024]: yyy.80 bound to xxx:443 LOG7[20156:1024]: yyy.80 accepted FD=6 from xxx:2670 LOG7[20173:1026]: yyy.80 started LOG5[20173:1026]: yyy.80 connected from xxx:2670 LOG7[20173:1026]: yyy.80 connecting yyy:80 LOG7[20173:1026]: Remote FD=9 initialized LOG7[20173:1026]: Stunnel manual RSA blinding enabled LOG7[20173:1026]: SSL state (accept): before/accept initialization LOG7[20173:1026]: SSL state (accept): SSLv3 read client hello A LOG7[20173:1026]: SSL state (accept): SSLv3 write server hello A LOG7[20173:1026]: SSL state (accept): SSLv3 write certificate A LOG7[20173:1026]: SSL state (accept): SSLv3 write server done A LOG7[20173:1026]: SSL state (accept): SSLv3 flush data LOG7[20173:1026]: SSL state (accept): SSLv3 read client key exchange A LOG7[20173:1026]: SSL state (accept): SSLv3 read finished A LOG7[20173:1026]: SSL state (accept): SSLv3 write change cipher spec A LOG7[20173:1026]: SSL state (accept): SSLv3 write finished A LOG7[20173:1026]: SSL state (accept): SSLv3 flush data LOG7[20173:1026]: 1 items in the session cache LOG7[20173:1026]: 0 client connects (SSL_connect()) LOG7[20173:1026]: 0 client connects that finished LOG7[20173:1026]: 0 client renegotiatations requested LOG7[20173:1026]: 1 server connects (SSL_accept()) LOG7[20173:1026]: 1 server connects that finished LOG7[20173:1026]: 0 server renegotiatiations requested LOG7[20173:1026]: 0 session cache hits LOG7[20173:1026]: 0 session cache misses LOG7[20173:1026]: 0 session cache timeouts LOG6[20173:1026]: Negotiated ciphers: RC4-MD5 SSLv3 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5 LOG7[20173:1026]: SSL socket closed on SSL_read LOG5[20173:1026]: Connection closed: 0 bytes sent to SSL, 0 bytes sent to socket LOG7[20173:1026]: yyy.80 finished (0 left) LOG7[20156:1024]: yyy.80 accepted FD=6 from xxx:2672 LOG7[20178:2050]: yyy.80 started LOG5[20178:2050]: yyy.80 connected from xxx:2672 LOG7[20178:2050]: yyy.80 connecting yyy:80 LOG7[20178:2050]: Remote FD=9 initialized LOG7[20178:2050]: Stunnel manual RSA blinding enabled LOG7[20178:2050]: SSL state (accept): before/accept initialization LOG7[20178:2050]: SSL state (accept): SSLv3 read client hello A LOG7[20178:2050]: SSL state (accept): SSLv3 write server hello A LOG7[20178:2050]: SSL state (accept): SSLv3 write change cipher spec A LOG7[20178:2050]: SSL state (accept): SSLv3 write finished A LOG7[20178:2050]: SSL state (accept): SSLv3 flush data LOG7[20178:2050]: SSL state (accept): SSLv3 read finished A LOG7[20178:2050]: 1 items in the session cache LOG7[20178:2050]: 0 client connects (SSL_connect()) LOG7[20178:2050]: 0 client connects that finished LOG7[20178:2050]: 0 client renegotiatations requested LOG7[20178:2050]: 2 server connects (SSL_accept()) LOG7[20178:2050]: 2 server connects that finished LOG7[20178:2050]: 0 server renegotiatiations requested LOG7[20178:2050]: 1 session cache hits LOG7[20178:2050]: 0 session cache misses LOG7[20178:2050]: 0 session cache timeouts LOG6[20178:2050]: Negotiated ciphers: RC4-MD5 SSLv3 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5 LOG7[20178:2050]: Socket closed on read LOG7[20178:2050]: SSL alert (write): warning: close notify LOG7[20178:2050]: SSL write shutdown (output buffer empty) LOG7[20156:1024]: yyy.80 accepted FD=10 from xxx:2674 LOG7[20156:1024]: yyy.80 accepted FD=11 from xxx:2675 LOG7[20179:3075]: yyy.80 started LOG5[20179:3075]: yyy.80 connected from xxx:2674 LOG7[20179:3075]: yyy.80 connecting yyy:80 LOG7[20179:3075]: Remote FD=12 initialized LOG7[20179:3075]: Stunnel manual RSA blinding enabled LOG7[20179:3075]: SSL state (accept): before/accept initialization LOG7[20179:3075]: SSL state (accept): SSLv3 read client hello A LOG7[20179:3075]: SSL state (accept): SSLv3 write server hello A LOG7[20179:3075]: SSL state (accept): SSLv3 write change cipher spec A LOG7[20179:3075]: SSL state (accept): SSLv3 write finished A LOG7[20179:3075]: SSL state (accept): SSLv3 flush data LOG7[20180:4100]: yyy.80 started LOG5[20180:4100]: yyy.80 connected from xxx:2675 LOG7[20180:4100]: yyy.80 connecting yyy:80 LOG7[20156:1024]: yyy.80 accepted FD=14 from xxx:2676 LOG7[20180:4100]: Remote FD=13 initialized LOG7[20179:3075]: SSL state (accept): SSLv3 read finished A LOG7[20179:3075]: 1 items in the session cache LOG7[20179:3075]: 0 client connects (SSL_connect()) LOG7[20179:3075]: 0 client connects that finished LOG7[20179:3075]: 0 client renegotiatations requested LOG7[20179:3075]: 3 server connects (SSL_accept()) LOG7[20179:3075]: 3 server connects that finished LOG7[20179:3075]: 0 server renegotiatiations requested LOG7[20179:3075]: 2 session cache hits LOG7[20179:3075]: 0 session cache misses LOG7[20179:3075]: 0 session cache timeouts LOG6[20179:3075]: Negotiated ciphers: RC4-MD5 SSLv3 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5 LOG7[20179:3075]: Socket closed on read LOG7[20179:3075]: SSL alert (write): warning: close notify LOG7[20179:3075]: SSL write shutdown (output buffer empty) LOG7[20180:4100]: Stunnel manual RSA blinding enabled LOG7[20180:4100]: SSL state (accept): before/accept initialization LOG7[20180:4100]: SSL state (accept): SSLv3 read client hello A LOG7[20180:4100]: SSL state (accept): SSLv3 write server hello A LOG7[20180:4100]: SSL state (accept): SSLv3 write change cipher spec A LOG7[20180:4100]: SSL state (accept): SSLv3 write finished A LOG7[20180:4100]: SSL state (accept): SSLv3 flush data LOG7[20181:5125]: yyy.80 started LOG5[20181:5125]: yyy.80 connected from xxx:2676 LOG7[20181:5125]: yyy.80 connecting yyy:80 LOG7[20179:3075]: SSL socket closed on SSL_read LOG5[20179:3075]: Connection closed: 224 bytes sent to SSL, 354 bytes sent to socket LOG7[20179:3075]: yyy.80 finished (3 left) LOG7[20156:1024]: yyy.80 accepted FD=10 from xxx:2680 LOG7[20180:4100]: SSL state (accept): SSLv3 read finished A LOG7[20180:4100]: 1 items in the session cache LOG7[20180:4100]: 0 client connects (SSL_connect()) LOG7[20180:4100]: 0 client connects that finished LOG7[20180:4100]: 0 client renegotiatations requested LOG7[20180:4100]: 4 server connects (SSL_accept()) LOG7[20180:4100]: 4 server connects that finished LOG7[20180:4100]: 0 server renegotiatiations requested LOG7[20180:4100]: 3 session cache hits LOG7[20180:4100]: 0 session cache misses LOG7[20180:4100]: 0 session cache timeouts LOG6[20180:4100]: Negotiated ciphers: RC4-MD5 SSLv3 Kx=RSA Au=RSA Enc=RC4(128) Mac=MD5 LOG7[20181:5125]: Remote FD=15 initialized LOG7[20182:6147]: yyy.80 started LOG5[20182:6147]: yyy.80 connected from xxx:2680 LOG7[20182:6147]: yyy.80 connecting yyy:80 LOG7[20182:6147]: Remote FD=12 initialized Segmentation fault stunnel -V stunnel 3.26 on i386-redhat-linux-gnu PTHREAD+LIBWRAP with OpenSSL 0.9.6b [engine] 9 Jul 2001 Default behaviour: run in inetd mode (unless -d used) run in background (unless -f used) run in ssl server mode (unless -c used) Compile time defaults: -v level no verify -a directory /usr/share/ssl/trusted -A file /usr/share/ssl/cert.pem -S sources 2 -t timeout 300 seconds -B bytes 64 -D level 5 -P pid dir /var/run/ -p pemfile in server mode: /usr/share/ssl/certs/stunnel.pem in client mode: none Socket option defaults: Option Accept Local Remote OS default SO_DEBUG -- -- -- 0 SO_DONTROUTE -- -- -- 0 SO_KEEPALIVE -- -- -- 0 SO_LINGER -- -- -- 0:0 SO_OOBINLINE -- -- -- 0 SO_RCVBUF -- -- -- 87380 SO_SNDBUF -- -- -- 16384 SO_RCVLOWAT -- -- -- 1 SO_SNDLOWAT -- -- -- 1 SO_RCVTIMEO -- -- -- 0:0 SO_SNDTIMEO -- -- -- 0:0 SO_REUSEADDR 1 -- -- 0 SO_BINDTODEVICE -- -- -- -- IP_TOS -- -- -- 0 IP_TTL -- -- -- 64 TCP_NODELAY -- -- -- 0 uname -a Linux djb 2.4.20-24.7smp #1 SMP Mon Dec 1 13:08:24 EST 2003 i686 unknown rpm -qa | grep libc glibc-kernheaders-2.4-7.16 glibc-2.2.5-44 openssl version OpenSSL 0.9.6b [engine] 9 Jul 2001 |
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| Previous by Date: | Re: Solaris 9 make fails.: 00026, Richard Levitte - VMS Whacker |
|---|---|
| Next by Date: | Re: problem with 3.26 version of stunnel: 00026, Michal Trojnara |
| Previous by Thread: | Solaris 9 make fails.i: 00026, Peters, Michael D. |
| Next by Thread: | Re: problem with 3.26 version of stunnel: 00026, Michal Trojnara |
| Indexes: | [Date] [Thread] [Top] [All Lists] |
| News | Mail Home | sitemap | FAQ | advertise |