James Brown | 7 Dec 06:06 2006
Picon

SSL_accept: Peer suddenly disconnected

I'm trying to send an email through stunnel (which is running on the  
mail server), but I keep getting an error.

  $ sudo /usr/local/sbin/stunnel
2006.12.07 15:35:27 LOG7[6092:2684407744]: Snagged 64 random bytes  
from /Users/jlbrown/.rnd
2006.12.07 15:35:27 LOG7[6092:2684407744]: Wrote 1024 new random  
bytes to /Users/jlbrown/.rnd
2006.12.07 15:35:27 LOG7[6092:2684407744]: RAND_status claims  
sufficient entropy for the PRNG
2006.12.07 15:35:27 LOG7[6092:2684407744]: PRNG seeded successfully
2006.12.07 15:35:27 LOG7[6092:2684407744]: Certificate: /etc/postfix/ 
smtpd.cert
2006.12.07 15:35:27 LOG7[6092:2684407744]: Certificate loaded
2006.12.07 15:35:27 LOG7[6092:2684407744]: Key file: /etc/postfix/ 
smtpd.key
2006.12.07 15:35:27 LOG7[6092:2684407744]: Private key loaded
2006.12.07 15:35:27 LOG7[6092:2684407744]: SSL context initialized  
for service ssmtp
2006.12.07 15:35:27 LOG5[6092:2684407744]: stunnel 4.19 on i686-apple- 
darwin8.8.1 with OpenSSL 0.9.7l 28 Sep 2006
2006.12.07 15:35:27 LOG5[6092:2684407744]: Threading:PTHREAD  
SSL:ENGINE Sockets:SELECT,IPv4 Auth:LIBWRAP
2006.12.07 15:35:27 LOG6[6092:2684407744]: file ulimit = 256 (can be  
changed with 'ulimit -n')
2006.12.07 15:35:27 LOG6[6092:2684407744]: FD_SETSIZE = 1024 (some  
systems allow to increase this value)
2006.12.07 15:35:27 LOG5[6092:2684407744]: 125 clients allowed
2006.12.07 15:35:27 LOG7[6092:2684407744]: FD 6 in non-blocking mode
2006.12.07 15:35:27 LOG7[6092:2684407744]: FD 7 in non-blocking mode
(Continue reading)

Michal Trojnara | 7 Dec 09:16 2006
Picon

Re: SSL_accept: Peer suddenly disconnected

James Brown wrote:
> 2006.12.07 15:35:52 LOG3[6093:25188864]: SSL_accept: Peer suddenly
> disconnected
[cut]
> Does this mean that the SMTP proxy listening on port 25 is not
> accepting the connection from stunnel?

No.  It means that your *client* has closed the SSL socket without
negotiating SSL on it.  I guess you've changed the port number on a mail
client without actually turning the SSL on.

Best regards,
    Mike

_______________________________________________
stunnel-users mailing list
stunnel-users <at> mirt.net
http://stunnel.mirt.net/mailman/listinfo/stunnel-users

James Brown | 7 Dec 14:26 2006
Picon

Re: SSL_accept: Peer suddenly disconnected


On 07/12/2006, at 7:16 PM, Michal Trojnara wrote:

> James Brown wrote:
>> 2006.12.07 15:35:52 LOG3[6093:25188864]: SSL_accept: Peer suddenly
>> disconnected
> [cut]
>> Does this mean that the SMTP proxy listening on port 25 is not
>> accepting the connection from stunnel?
>
> No.  It means that your *client* has closed the SSL socket without
> negotiating SSL on it.  I guess you've changed the port number on a  
> mail
> client without actually turning the SSL on.

Ah, thanks Mike, I was thinking that it was the peer on the other  
side of stunnel. I changed all the stunnel settings back (I'd been  
fiddling trying to get it to work) and it suddenly started working  
again. I think I must have restarted my Mail client or something to  
make its SSL kick in.

Thanks for your help,

James.
_______________________________________________
stunnel-users mailing list
stunnel-users <at> mirt.net
http://stunnel.mirt.net/mailman/listinfo/stunnel-users

(Continue reading)

James Brown | 8 Dec 00:57 2006
Picon

SSL_read returned WANT_READ: retrying errors

On 07/12/2006, at 7:16 PM, Michal Trojnara wrote:

> James Brown wrote:
>> 2006.12.07 15:35:52 LOG3[6093:25188864]: SSL_accept: Peer suddenly
>> disconnected
> [cut]
>> Does this mean that the SMTP proxy listening on port 25 is not
>> accepting the connection from stunnel?
>
> No.  It means that your *client* has closed the SSL socket without
> negotiating SSL on it.  I guess you've changed the port number on a  
> mail
> client without actually turning the SSL on.
>
> Best regards,
>     Mike

Thanks Mike.

Today I'm getting "SSL_read returned WANT_READ: retrying" errors.

2006.12.08 10:42:24 LOG7[6093:2684407744]: ssmtp accepted FD=9 from  
192.168.1.4:49176
2006.12.08 10:42:24 LOG7[6093:25188864]: ssmtp started
2006.12.08 10:42:24 LOG7[6093:25188864]: FD 9 in non-blocking mode
2006.12.08 10:42:24 LOG7[6093:25188864]: TCP_NODELAY option set on  
local socket
2006.12.08 10:42:24 LOG7[6093:25188864]: FD 10 in non-blocking mode
2006.12.08 10:42:24 LOG7[6093:25188864]: FD 11 in non-blocking mode
2006.12.08 10:42:24 LOG7[6093:25188864]: Connection from  
(Continue reading)

Michal Trojnara | 8 Dec 09:27 2006
Picon

Re: SSL_read returned WANT_READ: retrying errors

James Brown wrote:
> Today I'm getting "SSL_read returned WANT_READ: retrying" errors.
[cut]
> Is there anything I can do to fix this?

1. Those were not errors, just debug messages.
2. Upgrade your stunnel to 4.20.  Never report problems with an absolete
version of stunnel.

Best regards,
    Mike

_______________________________________________
stunnel-users mailing list
stunnel-users <at> mirt.net
http://stunnel.mirt.net/mailman/listinfo/stunnel-users


Gmane