[stunnel-users] Stunnel stuck at SSL state (accept): before/accept initialization

Jack Liu jackliu92 at hotmail.com
Tue Apr 26 05:26:58 CEST 2011


Thx for continuing reply my msg, Yes, there is var/log/messages

Inside there only has some iptables log, FTP, SMTP application log and nothing else.
I am positive that this problem is not cause by iptables, becuase I tried with iptables off.
 
Nothing else related to stunnel is found in that folder.
 
Any other suggestions?

Mr. Jack
 
> From: sunyucong at gmail.com
> Date: Mon, 25 Apr 2011 20:00:30 -0700
> Subject: Re: [stunnel-users] Stunnel stuck at SSL state (accept): before/accept initialization
> To: jackliu92 at hotmail.com
> CC: stunnel-users at stunnel.org
> 
> I guess in centos that's /var/log/messages
> but in general, you should probably check everything in /var/log to make sure.
> 
> On Mon, Apr 25, 2011 at 5:38 PM, Jack Liu <jackliu92 at hotmail.com> wrote:
> > Thank you for helping, but both logs r not presented in my var/log/ dir. Any
> > other suggestions?
> >
> >
> > Mr. Jack
> >
> >
> >
> >
> >
> >> From: sunyucong at gmail.com
> >> Date: Mon, 25 Apr 2011 16:25:20 -0700
> >> Subject: Re: [stunnel-users] Stunnel stuck at SSL state (accept):
> >> before/accept initialization
> >> To: jackliu92 at hotmail.com
> >> CC: stunnel-users at stunnel.org
> >>
> >> Are you sure that's entire log? check /var/log/daemons.log and
> >> syslog.log as well.
> >>
> >> On Sun, Apr 24, 2011 at 1:30 AM, Jack Liu <jackliu92 at hotmail.com> wrote:
> >> > It anyone knows how to fix Stunnel stuck at SSL state (accept):
> >> > before/accept initialization???
> >> >
> >> > Here is the log:
> >> >
> >> > -----------------------------------------------------------------------------------------------------------
> >> > [root at vps1 ~]#stunnel /etc/stunnel/stunnel.conf
> >> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: Snagged 64 random bytes from
> >> > /root/.rnd
> >> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: Wrote 1024 new random bytes
> >> > to
> >> > /root/.rnd
> >> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: RAND_status claims
> >> > sufficient
> >> > entropy for the PRNG
> >> > 2011.04.24 02:25:13 LOG6[32174:3085993680]: PRNG seeded successfully
> >> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: Certificate:
> >> > /etc/stunnel/stunnel.pem
> >> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: Key file:
> >> > /etc/stunnel/stunnel.pem
> >> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: Verify directory set to
> >> > /etc/stunnel/CA
> >> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: CRL directory set to
> >> > /etc/stunnel/CRL
> >> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: SSL context initialized for
> >> > service 3proxy
> >> > 2011.04.24 02:25:13 LOG5[32174:3085993680]: stunnel 4.15 on
> >> > i686-redhat-linux-gnu with OpenSSL 0.9.8e-fips-rhel5 01 Jul 2008
> >> > 2011.04.24 02:25:13 LOG5[32174:3085993680]: Threading:PTHREAD SSL:ENGINE
> >> > Sockets:POLL,IPv6 Auth:LIBWRAP
> >> > 2011.04.24 02:25:13 LOG6[32174:3085993680]: file ulimit = 1024 (can be
> >> > changed with 'ulimit -n')
> >> > 2011.04.24 02:25:13 LOG6[32174:3085993680]: poll() used - no FD_SETSIZE
> >> > limit for file descriptors
> >> > 2011.04.24 02:25:13 LOG5[32174:3085993680]: 500 clients allowed
> >> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: FD 3 in non-blocking mode
> >> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: FD 4 in non-blocking mode
> >> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: FD 5 in non-blocking mode
> >> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: SO_REUSEADDR option set on
> >> > accept socket
> >> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: 3proxy bound to
> >> > 0.0.0.0:30001
> >> > 2011.04.24 02:25:13 LOG7[32174:3085993680]: Created pid file
> >> > /var/run/stunnel.pid
> >> > 2011.04.24 02:25:20 LOG7[32174:3085993680]: 3proxy accepted FD=6 from
> >> > xx.xxx.xxx.xx:41165
> >> > 2011.04.24 02:25:20 LOG7[32174:3085990800]: 3proxy started
> >> > 2011.04.24 02:25:20 LOG7[32174:3085990800]: FD 6 in non-blocking mode
> >> > 2011.04.24 02:25:20 LOG7[32174:3085990800]: FD 7 in non-blocking mode
> >> > 2011.04.24 02:25:20 LOG7[32174:3085990800]: FD 8 in non-blocking mode
> >> > 2011.04.24 02:25:20 LOG7[32174:3085993680]: Cleaning up the signal pipe
> >> > 2011.04.24 02:25:20 LOG6[32174:3085993680]: Child process 32176 finished
> >> > with code 0
> >> > 2011.04.24 02:25:20 LOG7[32174:3085990800]: Connection from
> >> > xx.xxx.xxx.xx:41165 permitted by libwrap
> >> > 2011.04.24 02:25:20 LOG5[32174:3085990800]: 3proxy connected from
> >> > xx.xxx.xxx.xx:41165
> >> > 2011.04.24 02:25:20 LOG7[32174:3085990800]: SSL state (accept):
> >> > before/accept initialization          <-----------------------Stuck here
> >> > forever!!!
> >> > 2011.04.24 02:25:22 LOG3[32174:3085990800]: SSL_accept: Peer suddenly
> >> > disconnected
> >> > 2011.04.24 02:25:22 LOG5[32174:3085990800]: Connection reset: 0 bytes
> >> > sent
> >> > to SSL, 0 bytes sent to socket
> >> > 2011.04.24 02:25:22 LOG7[32174:3085990800]: 3proxy finished (0 left)
> >> > 2011.04.24 02:25:25 LOG3[32174:3085993680]: Received signal 2;
> >> > terminating
> >> > 2011.04.24 02:25:25 LOG7[32174:3085993680]: removing pid file
> >> > /var/run/stunnel.pid
> >> > [root at vps1 ~]#
> >> >
> >> > -----------------------------------------------------------------------------------------------------------
> >> > stunnel.conf:
> >> > cert = /etc/stunnel/stunnel.pem
> >> > key = /etc/stunnel/stunnel.pem
> >> > CApath = /etc/stunnel/CA
> >> > CRLpath =  /etc/stunnel/CRL
> >> > debug = 7
> >> > foreground = yes
> >> > verify = 1
> >> > #
> >> > [3proxy]
> >> > accept = 30001
> >> > connect = 127.0.0.1:33135
> >> >
> >> > -----------------------------------------------------------------------------------------------------------
> >> >
> >> > I am hosting with CentOS 5.5, and installed Stunnel via yum.
> >> > Planning to use it with 3Proxy. However I experience the problem above,
> >> > can
> >> > someone please help with that?
> >> > Thank you very much!
> >> >
> >> >
> >> >
> >> > Mr. Jack
> >> >
> >> > _______________________________________________
> >> > stunnel-users mailing list
> >> > stunnel-users at stunnel.org
> >> > http://stunnel.mirt.net/mailman/listinfo/stunnel-users
> >> >
> >> >
> >
 		 	   		  
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20110425/18f04cf2/attachment.html>


More information about the stunnel-users mailing list