[stunnel-users] Bug or bad configuration ?

fwd forwarder at ifrance.com
Sun Oct 3 14:44:21 CEST 2004


Hello, 

I have a litte problem with stunnel & qmail, i don't if it's a bug or
because of a bad configuration. Thanks in advance for answers & solutions.

Find, this working a little (ten hours and more) and crashing after : 

----------------------------------------------------------------------------
-----

stunnel: md_rand.c:312: ssleay_rand_add: Assertion `md_c[1] == md_count[1]'
failed.
2004.10.03 10:14:44 LOG5[30267:1024]: Received signal 15; terminating

--------------

And Qmail/TLS doesn't responding anymore.

--------------

# /etc/init.d/qmail stop
stopping qmaild/etc/init.d/qmail: kill: (10574) - No such pid
                                                           [  OK  ]
----------------------------------------------------------------------------
------

For information, i have the problem on 4.04, i upgrade to 4.05 and still
have the problem. Result of stunnel version : 

# stunnel -version
stunnel 4.05 on i686-pc-linux-gnu PTHREAD+LIBWRAP with OpenSSL 0.9.7c 30 Sep
2003

Global options
cert            = /usr/local/etc/stunnel/stunnel.pem
ciphers         = ALL:!ADH:+RC4:@STRENGTH
debug           = 5
key             = /usr/local/etc/stunnel/stunnel.pem
pid             = /usr/local/var/run/stunnel.pid
RNDbytes        = 64
RNDfile         = /dev/urandom
RNDoverwrite    = yes
session         = 300 seconds
verify          = none

Service-level options
TIMEOUTbusy     = 300 seconds
TIMEOUTclose    = 60 seconds
TIMEOUTidle     = 43200 seconds

----------------------------------------------------------------------------
------

# uname -a
Linux 2.4.19 #2 SMP mer nov 20 17:40:06 CET 2002 i686 unknown

----------------------------------------------------------------------------
------

# gcc -v
/usr/local/lib/gcc-lib/i686-pc-linux-gnu/3.3.2/specs
../configure
posix
gcc 3.3.2

-----------------------------------------------------------

The way i launch qmail with stunnel, in /etc/init.d/qmail : 

  start)
        cd /
        echo -n "Starting: "
        env - PATH="/var/qmail/bin:/usr/local/bin" \
    /var/qmail/bin/qmail-start ./Maildir/ /usr/local/bin/tai64n \
    | /usr/local/bin/setuidgid qmaill /usr/local/bin/multilog /var/log/qmail
&
        echo -n "qmail"

        env - PATH="/var/qmail/bin:/usr/local/bin" \
        /usr/local/bin/tcpserver -H -R -c100 0 pop-3
/var/qmail/bin/qmail-popup \
        ns2138.ovh.net \
        /home/vpopmail/bin/vchkpw /var/qmail/bin/qmail-pop3d Maildir &
        echo -n "pop "


/usr/local/sbin/stunnel /usr/local/etc/stunnel/stunneli.conf &
echo -n " pop3s via stunnel "

    env - PATH="/var/qmail/bin:/usr/local/bin" \
        tcpserver -H -R -x /etc/tcp.smtp.cdb -c100 -u503 -g503 0 2525 \
        /var/qmail/bin/qmail-smtpd 2>&1 > /dev/null &
        echo "smtp_qmail"

    env - PATH="/var/qmailbis/qmail/bin:/usr/local/bin" \
        tcpserver -H -R -x /etc/tcp.smtp.cdb -c100 -u503 -g503 0 2524 \
       /var/qmailbis/qmail/bin/qmail-smtpd 2>&1 > /dev/null &
      echo "smtp_qmail_bis"

/usr/local/sbin/stunnel /usr/local/etc/stunnel/stunnelj.conf &
echo -n " smtp via stunnel "

csh -cf '/var/qmailbis/qmail/rc &'
csh -cf '/var/qmail/rc &'
     ;;

----------------------------------------------------------------------------
---------

My stunnel configuration files : 

# cat stunneli.conf
foreground = yes
client = no
pid = /var/run/stunnel.pid
cert = /etc/ssl/servercert.pem
[pop3s]
accept  = 995
connect = 110

# cat stunnelj.conf
foreground = yes
client = no
pid = /var/run/stunneli.pid
cert = /etc/ssl/servercert.pem
[smtp]
accept  = 2523
connect = 2524

----------------------------------------------------------------------------
-------

When running well : 

# cat /var/run/stunnel*
13930
13933

----------------------------------------------------------------------------
-------

# openssl version
OpenSSL 0.9.7c 30 Sep 2003

----------------------------------------------------------------------------
-------

When starting qmail & stunnel 

# /etc/init.d/qmail start
Starting: qmailpop  pop3s via stunnel smtp_qmail
smtp_qmail_bis
 smtp via stunnel 2004.10.03 12:32:07 LOG5[13930:1024]: stunnel 4.05 on
i686-pc-linux-gnu PTHREAD+LIBWRAP with OpenSSL 0.9.7c 30 Sep 2003
2004.10.03 12:32:07 LOG5[13933:1024]: stunnel 4.05 on i686-pc-linux-gnu
PTHREAD+LIBWRAP with OpenSSL 0.9.7c 30 Sep 2003
2004.10.03 12:32:08 LOG5[13933:1024]: FD_SETSIZE=1024, file ulimit=1024 ->
500 clients allowed
2004.10.03 12:32:08 LOG5[13930:1024]: FD_SETSIZE=1024, file ulimit=1024 ->
500 clients allowed

----------------------------------------------------------------------------
-------

# ldconfig -p | grep -i libc.so
        libc.so.6 (libc6, OS ABI: Linux 2.2.5) => /lib/libc.so.6

# ldd -v /lib/libc.so.6
        /lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)

        Version information:
        /lib/libc.so.6:
                ld-linux.so.2 (GLIBC_2.1.1) => /lib/ld-linux.so.2
                ld-linux.so.2 (GLIBC_2.2.3) => /lib/ld-linux.so.2
                ld-linux.so.2 (GLIBC_2.1) => /lib/ld-linux.so.2
                ld-linux.so.2 (GLIBC_2.2) => /lib/ld-linux.so.2
                ld-linux.so.2 (GLIBC_2.0) => /lib/ld-linux.so.2



_____________________________________________________________________
Envie de discuter en "live" avec vos amis ? Télécharger MSN Messenger
http://www.ifrance.com/_reloc/m la 1ère messagerie instantanée de France




More information about the stunnel-users mailing list