[stunnel-users] Stunnel stuck at SSL state (accept): before/accept initialization

Yucong Sun (叶雨飞) sunyucong at gmail.com
Tue Apr 26 05:00:30 CEST 2011


I guess in centos that's /var/log/messages
but in general, you should probably check everything in /var/log to make sure.

On Mon, Apr 25, 2011 at 5:38 PM, Jack Liu <jackliu92 at hotmail.com> wrote:
> Thank you for helping, but both logs r not presented in my var/log/ dir. Any
> other suggestions?
>
>
> Mr. Jack
>
>
>
>
>
>> From: sunyucong at gmail.com
>> Date: Mon, 25 Apr 2011 16:25:20 -0700
>> Subject: Re: [stunnel-users] Stunnel stuck at SSL state (accept):
>> before/accept initialization
>> To: jackliu92 at hotmail.com
>> CC: stunnel-users at stunnel.org
>>
>> Are you sure that's entire log? check /var/log/daemons.log and
>> syslog.log as well.
>>
>> On Sun, Apr 24, 2011 at 1:30 AM, Jack Liu <jackliu92 at hotmail.com> wrote:
>> > It anyone knows how to fix Stunnel stuck at SSL state (accept):
>> > before/accept initialization???
>> >
>> > Here is the log:
>> >
>> > -----------------------------------------------------------------------------------------------------------
>> > [root at vps1 ~]#stunnel /etc/stunnel/stunnel.conf
>> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: Snagged 64 random bytes from
>> > /root/.rnd
>> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: Wrote 1024 new random bytes
>> > to
>> > /root/.rnd
>> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: RAND_status claims
>> > sufficient
>> > entropy for the PRNG
>> > 2011.04.24 02:25:13 LOG6[32174:3085993680]: PRNG seeded successfully
>> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: Certificate:
>> > /etc/stunnel/stunnel.pem
>> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: Key file:
>> > /etc/stunnel/stunnel.pem
>> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: Verify directory set to
>> > /etc/stunnel/CA
>> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: CRL directory set to
>> > /etc/stunnel/CRL
>> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: SSL context initialized for
>> > service 3proxy
>> > 2011.04.24 02:25:13 LOG5[32174:3085993680]: stunnel 4.15 on
>> > i686-redhat-linux-gnu with OpenSSL 0.9.8e-fips-rhel5 01 Jul 2008
>> > 2011.04.24 02:25:13 LOG5[32174:3085993680]: Threading:PTHREAD SSL:ENGINE
>> > Sockets:POLL,IPv6 Auth:LIBWRAP
>> > 2011.04.24 02:25:13 LOG6[32174:3085993680]: file ulimit = 1024 (can be
>> > changed with 'ulimit -n')
>> > 2011.04.24 02:25:13 LOG6[32174:3085993680]: poll() used - no FD_SETSIZE
>> > limit for file descriptors
>> > 2011.04.24 02:25:13 LOG5[32174:3085993680]: 500 clients allowed
>> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: FD 3 in non-blocking mode
>> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: FD 4 in non-blocking mode
>> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: FD 5 in non-blocking mode
>> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: SO_REUSEADDR option set on
>> > accept socket
>> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: 3proxy bound to
>> > 0.0.0.0:30001
>> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: Created pid file
>> > /var/run/stunnel.pid
>> > 2011.04.24 02:25:20 LOG7[32174:3085993680]: 3proxy accepted FD=6 from
>> > xx.xxx.xxx.xx:41165
>> > 2011.04.24 02:25:20 LOG7[32174:3085990800]: 3proxy started
>> > 2011.04.24 02:25:20 LOG7[32174:3085990800]: FD 6 in non-blocking mode
>> > 2011.04.24 02:25:20 LOG7[32174:3085990800]: FD 7 in non-blocking mode
>> > 2011.04.24 02:25:20 LOG7[32174:3085990800]: FD 8 in non-blocking mode
>> > 2011.04.24 02:25:20 LOG7[32174:3085993680]: Cleaning up the signal pipe
>> > 2011.04.24 02:25:20 LOG6[32174:3085993680]: Child process 32176 finished
>> > with code 0
>> > 2011.04.24 02:25:20 LOG7[32174:3085990800]: Connection from
>> > xx.xxx.xxx.xx:41165 permitted by libwrap
>> > 2011.04.24 02:25:20 LOG5[32174:3085990800]: 3proxy connected from
>> > xx.xxx.xxx.xx:41165
>> > 2011.04.24 02:25:20 LOG7[32174:3085990800]: SSL state (accept):
>> > before/accept initialization          <-----------------------Stuck here
>> > forever!!!
>> > 2011.04.24 02:25:22 LOG3[32174:3085990800]: SSL_accept: Peer suddenly
>> > disconnected
>> > 2011.04.24 02:25:22 LOG5[32174:3085990800]: Connection reset: 0 bytes
>> > sent
>> > to SSL, 0 bytes sent to socket
>> > 2011.04.24 02:25:22 LOG7[32174:3085990800]: 3proxy finished (0 left)
>> > 2011.04.24 02:25:25 LOG3[32174:3085993680]: Received signal 2;
>> > terminating
>> > 2011.04.24 02:25:25 LOG7[32174:3085993680]: removing pid file
>> > /var/run/stunnel.pid
>> > [root at vps1 ~]#
>> >
>> > -----------------------------------------------------------------------------------------------------------
>> > stunnel.conf:
>> > cert = /etc/stunnel/stunnel.pem
>> > key = /etc/stunnel/stunnel.pem
>> > CApath = /etc/stunnel/CA
>> > CRLpath =  /etc/stunnel/CRL
>> > debug = 7
>> > foreground = yes
>> > verify = 1
>> > #
>> > [3proxy]
>> > accept = 30001
>> > connect = 127.0.0.1:33135
>> >
>> > -----------------------------------------------------------------------------------------------------------
>> >
>> > I am hosting with CentOS 5.5, and installed Stunnel via yum.
>> > Planning to use it with 3Proxy. However I experience the problem above,
>> > can
>> > someone please help with that?
>> > Thank you very much!
>> >
>> >
>> >
>> > Mr. Jack
>> >
>> > _______________________________________________
>> > stunnel-users mailing list
>> > stunnel-users at stunnel.org
>> > http://stunnel.mirt.net/mailman/listinfo/stunnel-users
>> >
>> >
>



More information about the stunnel-users mailing list