On Tue, Nov 13, 2018 at 11:25:05AM +0800, Frank Chung wrote: > Dear maintainer, > > Another quick update: on another machine running stunnel4 3:5.49-1 as > server, I tried upgrading openssl to 1.1.1-2 and then adding "options = > NO_TLSv1.3" to stunnel.conf, thus forcing the two ends (both running > stunnel4 3:5.49-1 and openssl 1.1.1-2) to negotiate TLS 1.2. This proves > effective at preventing segfaults as well. So the problem seems to have > something to do with TLS 1.3.
Thanks for the analysis, and sorry that I have not replied until now!
I'll take a look at this problem in the next couple of days, thanks for
your work so far!
G'luck,
Peter
--
Peter Pentchev roam@{ringlet.net,debian.org,FreeBSD.org} p...@storpool.com
PGP key: http://people.FreeBSD.org/~roam/roam.key.asc
Key fingerprint 2EE7 A7A5 17FC 124C F115 C354 651E EFB0 2527 DF13
signature.asc
Description: PGP signature
