pkgsrc-Bugs archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: pkg/23245 (security/stunnel does not terminate properly.)



The following reply was made to PR pkg/23245; it has been noted by GNATS.

From: Hauke Fath <hauke%Espresso.Rhein-Neckar.DE@localhost>
To: gnats-bugs%NetBSD.org@localhost
Cc: pkg-manager%NetBSD.org@localhost, gnats-admin%NetBSD.org@localhost, 
asau%NetBSD.org@localhost
Subject: Re: pkg/23245 (security/stunnel does not terminate properly.)
Date: Sun, 4 Apr 2010 16:00:45 +0200

 At 13:57 Uhr +0000 2.11.2009, asau%NetBSD.org@localhost wrote:
 >Synopsis: security/stunnel does not terminate properly.
 >
 >Does the problem persist with stunnel-4.27 (current) and supported release?
 
 Sorry for the late reply. I just checked with stunnel 4.32 (easy pkg
 update, just adjust checksum)
 
 # uname -mrs
 NetBSD 4.0_STABLE sparc
 # stunnel -version
 stunnel 4.32 on sparc--netbsdelf with OpenSSL 0.9.8e 23 Feb 2007
 Threading:PTHREAD SSL:ENGINE Sockets:POLL,IPv6 Auth:LIBWRAP
 
 Global options
 debug           = daemon.notice
 pid             = /var/run/stunnel.pid
 RNDbytes        = 64
 RNDfile         = /dev/urandom
 RNDoverwrite    = yes
 
 Service-level options
 cert            = /etc/pkg/stunnel/stunnel.pem
 ciphers         = ALL:!ADH:+RC4:@STRENGTH
 session         = 300 seconds
 stack           = 65536 bytes
 sslVersion      = SSLv3 for client, all for server
 TIMEOUTbusy     = 300 seconds
 TIMEOUTclose    = 60 seconds
 TIMEOUTconnect  = 10 seconds
 TIMEOUTidle     = 43200 seconds
 verify          = none
 #
 
 and things are worse than ever. Using the following stunnel config file
 
 
 # $Id: stunnel.conf,v 1.4 2006/12/08 23:11:39 hauke Exp hauke $
 #
 # stunnel setup for uucp client
 
 syslog = no
 debug = mail.debug
 output = /var/log/stunnel.log
 
 foreground = no
 
 client = yes
 pid =
 
 [uucico]
 connect = uucp.rninet.net:940
 exec = /usr/pkg/sbin/uucico
 execargs = uucico --nodetach --debug abnormal -S uucp
 
 pty = yes
 
 
 with "foreground = yes" set, uucico is executed, then stunnel hangs there,
 not terminating. With "foreground = no", the log has
 
 
 2010.04.04 15:40:39 LOG5[9468:4018143232]: Reading configuration from file
 /etc/pkg/uucp/stunnel.conf
 2010.04.04 15:40:39 LOG7[9468:4018143232]: Snagged 64 random bytes from
 /dev/urandom
 2010.04.04 15:40:39 LOG7[9468:4018143232]: RAND_status claims sufficient
 entropy for the PRNG
 2010.04.04 15:40:39 LOG7[9468:4018143232]: PRNG seeded successfully
 2010.04.04 15:40:39 LOG7[9468:4018143232]: SSL context initialized for
 service uucico
 2010.04.04 15:40:39 LOG5[9468:4018143232]: Configuration successful
 2010.04.04 15:40:39 LOG5[9468:4018143232]: No limit detected for the number
 of clients
 2010.04.04 15:40:39 LOG7[9468:4018143232]: FD=8 in non-blocking mode
 2010.04.04 15:40:39 LOG7[9468:4018143232]: FD=9 in non-blocking mode
 2010.04.04 15:40:39 LOG7[8731:4018143232]: No pid file being created
 2010.04.04 15:40:39 LOG5[8731:4018143232]: stunnel 4.32 on sparc--netbsdelf
 with OpenSSL 0.9.8e 23 Feb 2007
 2010.04.04 15:40:39 LOG5[8731:4018143232]: Threading:PTHREAD SSL:ENGINE
 Sockets:POLL,IPv6 Auth:LIBWRAP
 
 
 -- stunnel just hangs there, uucico is not executed.
 
 I'll take the issue to the stunnel-users list, and see what comes of it. As
 usual, wip/stunnel3 just works.
 
        hauke
 
 --
 "It's never straight up and down"     (DEVO)
 
 


Home | Main Index | Thread Index | Old Index