[stunnel-users] Server is down

Hamid.Shahid at sungard.com Hamid.Shahid at sungard.com
Mon Nov 28 17:27:34 CET 2011


Hi,

I am trying to connect to a remote SSL enabled server via stunnel. I am using a single file for key and certificate "sunStunnel.pem", just like the default "stunnel.pem" and I am getting following errors. Please let me know, what they mean and what should be done to resolve these?

Note: I was able to telnet the machine, so server seems to be working.

Thanks.

=======
  Config
=======

debug = 7
output = stunnel.log
cert = sunStunnel.pem

[GPC-HOST]
client = yes
[syslog]
accept  = 127.0.0.1:2525
connect = <ip>:<port>

=======
     Log
=======
No limit detected for the number of clients
make_sockets: s_socket#1: FD=652 allocated (blocking mode)
make_sockets: s_socket#2: FD=648 allocated (blocking mode)
make_sockets: s_accept: FD=604 allocated (non-blocking mode)
stunnel 4.47 on x86-pc-mingw32-gnu platform
Compiled/running with OpenSSL 1.0.0e 6 Sep 2011
Threading:WIN32 SSL:ENGINE Auth:none Sockets:SELECT,IPv6
Reading configuration from file stunnel.conf
Snagged 64 random bytes from C:/.rnd
Wrote 1024 new random bytes to C:/.rnd
PRNG seeded successfully
Initializing SSL context for service GPC-HOST
Certificate: sunStunnel.pem
Certificate loaded
Key file: sunStunnel.pem

error queue: 140B0009: error:140B0009:SSL routines:SSL_CTX_use_PrivateKey_file:PEM lib
error queue: 907B00D: error:0907B00D:PEM routines:PEM_READ_BIO_PRIVATEKEY:ASN1 lib
error queue: D08303A: error:0D08303A:asn1 encoding routines:ASN1_TEMPLATE_NOEXP_D2I:nested asn1 error
error queue: D06C03A: error:0D06C03A:asn1 encoding routines:ASN1_D2I_EX_PRIMITIVE:nested asn1 error
SSL_CTX_use_PrivateKey_file: D0680A8: error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag

Server is down

Kind Regards,
Hamid Shahid

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20111128/7c2d8cd5/attachment.html>


More information about the stunnel-users mailing list