Fedora 20 + stunnel crashing

slamp slamp <slackamp@xxxxxxxxx> · Sun, 5 Jan 2014 17:01:23 -0500

Hello All,
Anyone able to use stunnel successfully in Fedora 20? It has been working for me for awhile prior to upgrading.

Stunnel starts up fine, but as soon as it is used, it crashes but no indication as to why.

I really only use stunnel to interface my sendmail with my ISP, if there is a simple way of doing this with sendmail, I'll remove stunnel.

I believe I am using a simple config:

$ cat /etc/stunnel/stunnel.conf 
; Some performance tunings
socket = l:TCP_NODELAY=1
socket = r:TCP_NODELAY=1

; Some debugging stuff useful for troubleshooting
debug = 7
output = /var/log/stunnel.log 

; Use it for client mode
client = yes
verify = 0

; Service-level configuration

[pseudo-ssmtp]
accept = relay-domain:2525
connect = smtp.verizon.net:465

------------------

logs:

2014.01.05 15:51:42 LOG7[613:3071158144]: Clients allowed=500
2014.01.05 15:51:42 LOG5[613:3071158144]: stunnel 4.56 on i686-redhat-linux-gnu platform
2014.01.05 15:51:42 LOG5[613:3071158144]: Compiled/running with OpenSSL 1.0.1e-fips 11 Feb 2013
2014.01.05 15:51:42 LOG5[613:3071158144]: Threading:PTHREAD Sockets:POLL,IPv6 SSL:ENGINE,OCSP,FIPS Auth:LIBWRAP
2014.01.05 15:51:42 LOG5[613:3071158144]: Reading configuration from file /etc/stunnel/stunnel.conf
2014.01.05 15:51:42 LOG5[613:3071158144]: FIPS mode is enabled
2014.01.05 15:51:42 LOG7[613:3071158144]: Compression not enabled
2014.01.05 15:51:42 LOG7[613:3071158144]: Snagged 64 random bytes from /dev/urandom
2014.01.05 15:51:42 LOG7[613:3071158144]: PRNG seeded successfully
2014.01.05 15:51:42 LOG6[613:3071158144]: Initializing service [pseudo-ssmtp]
2014.01.05 15:51:43 LOG7[613:3071158144]: SSL options set: 0x00000004
2014.01.05 15:51:43 LOG5[613:3071158144]: Configuration successful
2014.01.05 15:51:43 LOG7[613:3071158144]: Service [pseudo-ssmtp] (FD=12) bound to 127.0.0.1:2525

2014.01.05 15:51:43 LOG7[737:3071158144]: Created pid file /var/run/stunnel.pid
2014.01.05 16:21:57 LOG7[737:3071158144]: Service [pseudo-ssmtp] accepted (FD=3) from 127.0.0.1:34007
2014.01.05 16:21:57 LOG7[737:3078183744]: Service [pseudo-ssmtp] started
2014.01.05 16:21:57 LOG7[737:3078183744]: Waiting for a libwrap process
2014.01.05 16:21:57 LOG7[737:3078183744]: Acquired libwrap process #0
2014.01.05 16:21:57 LOG7[737:3078183744]: Releasing libwrap process #0
2014.01.05 16:21:57 LOG7[737:3078183744]: Released libwrap process #0
2014.01.05 16:21:57 LOG7[737:3078183744]: Service [pseudo-ssmtp] permitted by libwrap from 127.0.0.1:34007
2014.01.05 16:21:57 LOG5[737:3078183744]: Service [pseudo-ssmtp] accepted connection from 127.0.0.1:34007
2014.01.05 16:21:57 LOG6[737:3078183744]: connect_blocking: connecting 206.46.232.100:465
2014.01.05 16:21:57 LOG7[737:3078183744]: connect_blocking: s_poll_wait 206.46.232.100:465: waiting 10 seconds
2014.01.05 16:21:57 LOG5[737:3078183744]: connect_blocking: connected 206.46.232.100:465
2014.01.05 16:21:57 LOG5[737:3078183744]: Service [pseudo-ssmtp] connected remote server from 172.16.133.25:56457
2014.01.05 16:21:57 LOG7[737:3078183744]: Remote socket (FD=14) initialized
2014.01.05 16:21:57 LOG7[737:3078183744]: SNI: sending servername: smtp.verizon.net
2014.01.05 16:21:57 LOG7[737:3078183744]: SSL state (connect): before/connect initialization
2014.01.05 16:21:57 LOG7[737:3078183744]: SSL state (connect): SSLv3 write client hello A
2014.01.05 16:21:57 LOG7[737:3078183744]: SSL state (connect): SSLv3 read server hello A
2014.01.05 16:21:57 LOG7[737:3078183744]: Starting certificate verification: depth=3, /C=US/O=GTE Corporation/OU=GTE CyberTrust Solutions, Inc./CN=GTE CyberTrust Global Root
2014.01.05 16:21:57 LOG6[737:3078183744]: CERT: Verification not enabled
2014.01.05 16:21:57 LOG5[737:3078183744]: Certificate accepted: depth=3, /C=US/O=GTE Corporation/OU=GTE CyberTrust Solutions, Inc./CN=GTE CyberTrust Global Root
2014.01.05 16:21:57 LOG7[737:3078183744]: Starting certificate verification: depth=3, /C=US/O=GTE Corporation/OU=GTE CyberTrust Solutions, Inc./CN=GTE CyberTrust Global Root
2014.01.05 16:21:57 LOG6[737:3078183744]: CERT: Verification not enabled
2014.01.05 16:21:57 LOG5[737:3078183744]: Certificate accepted: depth=3, /C=US/O=GTE Corporation/OU=GTE CyberTrust Solutions, Inc./CN=GTE CyberTrust Global Root
2014.01.05 16:21:57 LOG7[737:3078183744]: Starting certificate verification: depth=2, /C=IE/O=Baltimore/OU=CyberTrust/CN=Baltimore CyberTrust Root
2014.01.05 16:21:57 LOG6[737:3078183744]: CERT: Verification not enabled
2014.01.05 16:21:57 LOG5[737:3078183744]: Certificate accepted: depth=2, /C=IE/O=Baltimore/OU=CyberTrust/CN=Baltimore CyberTrust Root
2014.01.05 16:21:57 LOG7[737:3078183744]: Starting certificate verification: depth=1, /O=Cybertrust Inc/CN=Cybertrust Public SureServer SV CA
2014.01.05 16:21:57 LOG6[737:3078183744]: CERT: Verification not enabled
2014.01.05 16:21:57 LOG5[737:3078183744]: Certificate accepted: depth=1, /O=Cybertrust Inc/CN=Cybertrust Public SureServer SV CA
2014.01.05 16:21:57 LOG7[737:3078183744]: Starting certificate verification: depth=0, /C=US/ST=Texas/L=Irving/O=Verizon Data Services LLC/OU=SLB Mail/CN=smtp.verizon.net
2014.01.05 16:21:57 LOG6[737:3078183744]: CERT: Verification not enabled
2014.01.05 16:21:57 LOG5[737:3078183744]: Certificate accepted: depth=0, /C=US/ST=Texas/L=Irving/O=Verizon Data Services LLC/OU=SLB Mail/CN=smtp.verizon.net
2014.01.05 16:21:57 LOG7[737:3078183744]: SSL state (connect): SSLv3 read server certificate A
2014.01.05 16:21:57 LOG7[737:3078183744]: SSL state (connect): SSLv3 read server key exchange A
2014.01.05 16:21:57 LOG7[737:3078183744]: SSL state (connect): SSLv3 read server done A

-- 
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org