[stunnel-users] Premature socket closure - race condition bug?

Mon, 15 Sep 2014 07:06:06 -0700 

Dear All,
After a recent upgrade I'm currently experiencing intermittent problems with securing bidirectional comms traffic for a moitoring program with stunnel. 

The system is:

70+ Client machines running BBWin on Windows (mostly 7) -> stunnel 5.01 
.....internet......stunnel 5.02 -> Xymon running on 64-bit Linux Mint 17 
(Virtual machine inside 2012 R2 Essentials server)



Prior to the recent upgrade, the server was an approx 3 year old 32-bit 
Ubuntu server, running stunnel 4.56. Comms then worked (mostly) fine for our 
client machines.



Since the upgrade, client requests for information from the server have been 
largely failing. Running the comms with direct unsecured socket connections 
work fine.



I've spent a bit of time over the last couple of days looking at the source 
for both Stunnel and BBWin and it looks to me as if there is a disconnect in 
understanding between BBWin and Stunnel as to how read and write connections 
work.



The BBWin Client makes the connection, then issues (in essence) the 
following sequence:

   send(connection, msg)
   shutdown(connection, SHUT_WR)
   do recv(connection....) until it returns zero or SOCKET_ERROR
   shutdown(connection, SHUT_RD)
   shutdown(connection, SHUT_BOTH)
   closesocket(connection)

i.e. the client shuts down the transmission side as soon as it's done, then 
shuts down the receive side only once it's finished receiving any returned 
data.



I atttach Stunnel logs for both client and server for both failed and 
successful transfers. I've added a little more debugging output to the 
server Stunnel instance to display the data being read and written to both 
the socket and SSL side of the comms. This shows that the only difference 
between the two is that in the successful transfer the server receives and 
passes on data from the socket to SSL before starting the shutdown. So that 
looks fine - when it works. But when it doesn't, it looks just as if the 
return path is shut down before the server app has had time to retrieve the 
data to be returned



Looking at the stunnel code though, I'm confused - and my suspicion is that 
stunnel (on the client machine) is closing the SSL connection prematurely.. 
It looks as if it issues the SSL_shutdown command (client.c line 855) if:

   it's not already sent the shutdown
   the read fd on the socket is closed
   there's nothing left in the outboud queue (sock_ptr is 0)

   and SSL wants a retry (? I don't yet understand write_wants_write 
usage).
That's all very well for closing the outbound side, but what about the 
inbound? Surely it should keep the SSL open until either it's notified by 
the other side that everything is closed down there, or BOTH read and write 
on the socket side have been shutdown. A further point of confusion is that 
the stunnel code handles read and write fds for each of SSL and socket 
independently, but for most cases they are both set to the same value. Is 
there some confusion about handling s_poll_hup()? I freely admit I don't 
understand fully how this works, as I've only had a day's experience of this 
comms stuff, and it looks pretty well thought out, but there's logic here 
for handling the inbound and outbound sides independently, so SSL should 
remain open while any one of those two channel remains active?


The bottom line is that the comms:
 a) works reliably when not routed through stunnel
 b) works reliably to transmit from client to server

 b) now works (in reception) less than 10% of the time when using stunnel - 
but does work occasionally
It worked fairly reliably with 5.01 on the clients and 4.56 on a slowish 
server, and now doesn't on 5.02 on a highish spec server, with client 
software/hardware unchanged. My suspicion is that improving the spec on the 
server has exposed a race condition on the client installation.


Any thoughts?


Graham Nayler 

// Client machine log
// Successful transfer
2014.09.15 07:49:44 LOG7[5788]: Service [xymonclient] accepted (FD=396) from 
127.0.0.1:65107
2014.09.15 07:49:44 LOG7[5788]: Creating a new thread
2014.09.15 07:49:44 LOG7[5788]: New thread created
2014.09.15 07:49:44 LOG7[6116]: Service [xymonclient] started
2014.09.15 07:49:44 LOG5[6116]: Service [xymonclient] accepted connection from 
127.0.0.1:65107
2014.09.15 07:49:44 LOG6[6116]: s_connect: connecting <serverip>:1985
2014.09.15 07:49:44 LOG7[6116]: s_connect: s_poll_wait <serverip>:1985: waiting 
10 seconds
2014.09.15 07:49:44 LOG5[6116]: s_connect: connected <serverip>:1985
2014.09.15 07:49:44 LOG5[6116]: Service [xymonclient] connected remote server 
from 192.168.1.2:65108
2014.09.15 07:49:44 LOG7[6116]: Remote socket (FD=376) initialized
2014.09.15 07:49:44 LOG7[6116]: SNI: sending servername: <serverDNSname>
2014.09.15 07:49:44 LOG7[6116]: SSL state (connect): before/connect 
initialization
2014.09.15 07:49:44 LOG7[6116]: SSL state (connect): SSLv3 write client hello A
2014.09.15 07:49:44 LOG7[6116]: SSL state (connect): SSLv3 read server hello A
2014.09.15 07:49:44 LOG7[6116]: SSL state (connect): SSLv3 read finished A
2014.09.15 07:49:44 LOG7[6116]: SSL state (connect): SSLv3 write change cipher 
spec A
2014.09.15 07:49:44 LOG7[6116]: SSL state (connect): SSLv3 write finished A
2014.09.15 07:49:44 LOG7[6116]: SSL state (connect): SSLv3 flush data
2014.09.15 07:49:44 LOG7[6116]:    4 items in the session cache
2014.09.15 07:49:44 LOG7[6116]:   34 client connects (SSL_connect())
2014.09.15 07:49:44 LOG7[6116]:   34 client connects that finished
2014.09.15 07:49:44 LOG7[6116]:    0 client renegotiations requested
2014.09.15 07:49:44 LOG7[6116]:    0 server connects (SSL_accept())
2014.09.15 07:49:44 LOG7[6116]:    0 server connects that finished
2014.09.15 07:49:44 LOG7[6116]:    0 server renegotiations requested
2014.09.15 07:49:44 LOG7[6116]:   30 session cache hits
2014.09.15 07:49:44 LOG7[6116]:    0 external session cache hits
2014.09.15 07:49:44 LOG7[6116]:    0 session cache misses
2014.09.15 07:49:44 LOG7[6116]:    0 session cache timeouts
2014.09.15 07:49:44 LOG6[6116]: SSL connected: previous session reused
2014.09.15 07:49:44 LOG6[6116]: Read socket closed (readsocket)
2014.09.15 07:49:44 LOG7[6116]: Sending close_notify alert
2014.09.15 07:49:44 LOG7[6116]: SSL alert (write): warning: close notify
2014.09.15 07:49:44 LOG6[6116]: SSL_shutdown successfully sent close_notify 
alert
2014.09.15 07:49:44 LOG7[6116]: SSL alert (read): warning: close notify
2014.09.15 07:49:44 LOG6[6116]: SSL closed (SSL_read)
2014.09.15 07:49:44 LOG7[6116]: Sent socket write shutdown
2014.09.15 07:49:44 LOG5[6116]: Connection closed: 27 byte(s) sent to SSL, 9 
byte(s) sent to socket
2014.09.15 07:49:44 LOG7[6116]: Remote socket (FD=376) closed
2014.09.15 07:49:44 LOG7[6116]: Local socket (FD=396) closed
2014.09.15 07:49:44 LOG7[6116]: Service [xymonclient] finished (0 left)
2014.09.15 07:49:44 LOG7[6116]: str_stats: 3 block(s), 60 data byte(s), 150 
control byte(s)
2014.09.15 07:49:44 LOG7[6116]: str_stats: 20 byte(s) at ..\src\network.c:413
2014.09.15 07:49:44 LOG7[6116]: str_stats: 20 byte(s) at ..\src\network.c:412
2014.09.15 07:49:44 LOG7[6116]: str_stats: 20 byte(s) at ..\src\network.c:411

// Unsuccessful transfer
2014.09.15 07:49:53 LOG7[5788]: Service [xymonclient] accepted (FD=248) from 
127.0.0.1:65110
2014.09.15 07:49:53 LOG7[5788]: Creating a new thread
2014.09.15 07:49:53 LOG7[5788]: New thread created
2014.09.15 07:49:53 LOG7[2064]: Service [xymonclient] started
2014.09.15 07:49:53 LOG5[2064]: Service [xymonclient] accepted connection from 
127.0.0.1:65110
2014.09.15 07:49:53 LOG6[2064]: s_connect: connecting <serverip>:1985
2014.09.15 07:49:53 LOG7[2064]: s_connect: s_poll_wait <serverip>:1985: waiting 
10 seconds
2014.09.15 07:49:53 LOG5[2064]: s_connect: connected <serverip>:1985
2014.09.15 07:49:53 LOG5[2064]: Service [xymonclient] connected remote server 
from 192.168.1.2:65111
2014.09.15 07:49:53 LOG7[2064]: Remote socket (FD=376) initialized
2014.09.15 07:49:53 LOG7[2064]: SNI: sending servername: <serverDNSname>
2014.09.15 07:49:53 LOG7[2064]: SSL state (connect): before/connect 
initialization
2014.09.15 07:49:53 LOG7[2064]: SSL state (connect): SSLv3 write client hello A
2014.09.15 07:49:53 LOG7[2064]: SSL state (connect): SSLv3 read server hello A
2014.09.15 07:49:53 LOG7[2064]: SSL state (connect): SSLv3 read finished A
2014.09.15 07:49:53 LOG7[2064]: SSL state (connect): SSLv3 write change cipher 
spec A
2014.09.15 07:49:53 LOG7[2064]: SSL state (connect): SSLv3 write finished A
2014.09.15 07:49:53 LOG7[2064]: SSL state (connect): SSLv3 flush data
2014.09.15 07:49:53 LOG7[2064]:    4 items in the session cache
2014.09.15 07:49:53 LOG7[2064]:   35 client connects (SSL_connect())
2014.09.15 07:49:53 LOG7[2064]:   35 client connects that finished
2014.09.15 07:49:53 LOG7[2064]:    0 client renegotiations requested
2014.09.15 07:49:53 LOG7[2064]:    0 server connects (SSL_accept())
2014.09.15 07:49:53 LOG7[2064]:    0 server connects that finished
2014.09.15 07:49:53 LOG7[2064]:    0 server renegotiations requested
2014.09.15 07:49:53 LOG7[2064]:   31 session cache hits
2014.09.15 07:49:53 LOG7[2064]:    0 external session cache hits
2014.09.15 07:49:53 LOG7[2064]:    0 session cache misses
2014.09.15 07:49:53 LOG7[2064]:    0 session cache timeouts
2014.09.15 07:49:53 LOG6[2064]: SSL connected: previous session reused
2014.09.15 07:49:53 LOG6[2064]: Read socket closed (readsocket)
2014.09.15 07:49:53 LOG7[2064]: Sending close_notify alert
2014.09.15 07:49:53 LOG7[2064]: SSL alert (write): warning: close notify
2014.09.15 07:49:53 LOG6[2064]: SSL_shutdown successfully sent close_notify 
alert
2014.09.15 07:49:53 LOG7[2064]: SSL alert (read): warning: close notify
2014.09.15 07:49:53 LOG6[2064]: SSL closed (SSL_read)
2014.09.15 07:49:53 LOG7[2064]: Sent socket write shutdown
2014.09.15 07:49:53 LOG5[2064]: Connection closed: 27 byte(s) sent to SSL, 0 
byte(s) sent to socket
2014.09.15 07:49:53 LOG7[2064]: Remote socket (FD=376) closed
2014.09.15 07:49:53 LOG7[2064]: Local socket (FD=248) closed
2014.09.15 07:49:53 LOG7[2064]: Service [xymonclient] finished (0 left)
2014.09.15 07:49:53 LOG7[2064]: str_stats: 3 block(s), 60 data byte(s), 150 
control byte(s)
2014.09.15 07:49:53 LOG7[2064]: str_stats: 20 byte(s) at ..\src\network.c:413
2014.09.15 07:49:53 LOG7[2064]: str_stats: 20 byte(s) at ..\src\network.c:412
2014.09.15 07:49:53 LOG7[2064]: str_stats: 20 byte(s) at ..\src\network.c:411


// Server machine log
// Server stunnel startup
2014.09.15 12:48:20 LOG7[31394]: Clients allowed=500
2014.09.15 12:48:20 LOG5[31394]: stunnel 5.02 on x86_64-unknown-linux-gnu 
platform
2014.09.15 12:48:20 LOG5[31394]: Compiled/running with OpenSSL 1.0.1f 6 Jan 2014
2014.09.15 12:48:20 LOG5[31394]: Threading:PTHREAD Sockets:POLL,IPv6 
SSL:ENGINE,OCSP,FIPS
2014.09.15 12:48:20 LOG7[31394]: errno: (*__errno_location ())
2014.09.15 12:48:20 LOG5[31394]: Reading configuration from file 
/etc/stunnel/stunnel.conf
2014.09.15 12:48:20 LOG5[31394]: FIPS mode disabled
2014.09.15 12:48:20 LOG7[31394]: Compression disabled
2014.09.15 12:48:20 LOG7[31394]: Snagged 64 random bytes from /dev/urandom
2014.09.15 12:48:20 LOG7[31394]: PRNG seeded successfully
2014.09.15 12:48:20 LOG6[31394]: Initializing service [pop3s]
2014.09.15 12:48:20 LOG6[31394]: Loading cert from file: 
/etc/stunnel/stunnel_server.pem
2014.09.15 12:48:20 LOG6[31394]: Loading key from file: 
/etc/stunnel/stunnel_server.pem
2014.09.15 12:48:20 LOG7[31394]: Private key check succeeded
2014.09.15 12:48:20 LOG7[31394]: DH initialization
2014.09.15 12:48:20 LOG7[31394]: Could not load DH parameters from 
/etc/stunnel/stunnel_server.pem
2014.09.15 12:48:20 LOG7[31394]: Using hardcoded DH parameters
2014.09.15 12:48:20 LOG7[31394]: DH initialized with 2048-bit key
2014.09.15 12:48:20 LOG7[31394]: ECDH initialization
2014.09.15 12:48:20 LOG7[31394]: ECDH initialized with curve prime256v1
2014.09.15 12:48:20 LOG7[31394]: SSL options set: 0x01180004
2014.09.15 12:48:20 LOG6[31394]: Initializing service [imaps]
2014.09.15 12:48:20 LOG6[31394]: Loading cert from file: 
/etc/stunnel/stunnel_server.pem
2014.09.15 12:48:20 LOG6[31394]: Loading key from file: 
/etc/stunnel/stunnel_server.pem
2014.09.15 12:48:20 LOG7[31394]: Private key check succeeded
2014.09.15 12:48:20 LOG7[31394]: DH initialization
2014.09.15 12:48:20 LOG7[31394]: Could not load DH parameters from 
/etc/stunnel/stunnel_server.pem
2014.09.15 12:48:20 LOG7[31394]: Using hardcoded DH parameters
2014.09.15 12:48:20 LOG7[31394]: DH initialized with 2048-bit key
2014.09.15 12:48:20 LOG7[31394]: ECDH initialization
2014.09.15 12:48:20 LOG7[31394]: ECDH initialized with curve prime256v1
2014.09.15 12:48:20 LOG7[31394]: SSL options set: 0x01180004
2014.09.15 12:48:20 LOG6[31394]: Initializing service [ssmtp]
2014.09.15 12:48:20 LOG6[31394]: Loading cert from file: 
/etc/stunnel/stunnel_server.pem
2014.09.15 12:48:20 LOG6[31394]: Loading key from file: 
/etc/stunnel/stunnel_server.pem
2014.09.15 12:48:20 LOG7[31394]: Private key check succeeded
2014.09.15 12:48:20 LOG7[31394]: DH initialization
2014.09.15 12:48:20 LOG7[31394]: Could not load DH parameters from 
/etc/stunnel/stunnel_server.pem
2014.09.15 12:48:20 LOG7[31394]: Using hardcoded DH parameters
2014.09.15 12:48:20 LOG7[31394]: DH initialized with 2048-bit key
2014.09.15 12:48:20 LOG7[31394]: ECDH initialization
2014.09.15 12:48:20 LOG7[31394]: ECDH initialized with curve prime256v1
2014.09.15 12:48:20 LOG7[31394]: SSL options set: 0x01180004
2014.09.15 12:48:20 LOG6[31394]: Initializing service [xymonserver]
2014.09.15 12:48:20 LOG6[31394]: Loading cert from file: 
/etc/stunnel/xyservercert.pem
2014.09.15 12:48:20 LOG6[31394]: Loading key from file: 
/etc/stunnel/xyserverkey.pem
2014.09.15 12:48:20 LOG7[31394]: Private key check succeeded
2014.09.15 12:48:20 LOG7[31394]: Loaded /etc/stunnel/xyclientcert.pem 
revocation lookup file
2014.09.15 12:48:20 LOG7[31394]: Client CA list: /etc/stunnel/xyclientcert.pem
2014.09.15 12:48:20 LOG6[31394]: Client CA: <myCA>
2014.09.15 12:48:20 LOG7[31394]: DH initialization
2014.09.15 12:48:20 LOG7[31394]: Could not load DH parameters from 
/etc/stunnel/xyservercert.pem
2014.09.15 12:48:20 LOG7[31394]: Using hardcoded DH parameters
2014.09.15 12:48:20 LOG7[31394]: DH initialized with 2048-bit key
2014.09.15 12:48:20 LOG7[31394]: ECDH initialization
2014.09.15 12:48:20 LOG7[31394]: ECDH initialized with curve prime256v1
2014.09.15 12:48:20 LOG7[31394]: SSL options set: 0x01180004
2014.09.15 12:48:20 LOG5[31394]: Configuration successful
2014.09.15 12:48:20 LOG7[31394]: Service [pop3s] (FD=7) bound to 0.0.0.0:995
2014.09.15 12:48:20 LOG7[31394]: Service [imaps] (FD=8) bound to 0.0.0.0:993
2014.09.15 12:48:20 LOG7[31394]: Service [ssmtp] (FD=9) bound to 0.0.0.0:465
2014.09.15 12:48:20 LOG7[31394]: Service [xymonserver] (FD=10) bound to 
0.0.0.0:1985
2014.09.15 12:48:20 LOG7[31395]: Created pid file /stunnel4.pid

// Successful transaction
2014.09.15 12:49:48 LOG7[31395]: Service [xymonserver] accepted (FD=12) from 
<clientip>:65108
2014.09.15 12:49:48 LOG7[32061]: Service [xymonserver] started
2014.09.15 12:49:48 LOG5[32061]: Service [xymonserver] accepted connection from 
<clientip>:65108
2014.09.15 12:49:48 LOG7[32061]: SSL state (accept): before/accept 
initialization
2014.09.15 12:49:48 LOG7[32061]: SNI: no virtual services defined
2014.09.15 12:49:48 LOG7[32061]: SSL state (accept): SSLv3 read client hello A
2014.09.15 12:49:48 LOG7[32061]: SSL state (accept): SSLv3 write server hello A
2014.09.15 12:49:48 LOG7[32061]: SSL state (accept): SSLv3 write change cipher 
spec A
2014.09.15 12:49:48 LOG7[32061]: SSL state (accept): SSLv3 write finished A
2014.09.15 12:49:48 LOG7[32061]: SSL state (accept): SSLv3 flush data
2014.09.15 12:49:48 LOG7[32061]: SSL state (accept): SSLv3 read finished A
2014.09.15 12:49:48 LOG7[32061]:    0 items in the session cache
2014.09.15 12:49:48 LOG7[32061]:    0 client connects (SSL_connect())
2014.09.15 12:49:48 LOG7[32061]:    0 client connects that finished
2014.09.15 12:49:48 LOG7[32061]:    0 client renegotiations requested
2014.09.15 12:49:48 LOG7[32061]:  114 server connects (SSL_accept())
2014.09.15 12:49:48 LOG7[32061]:  114 server connects that finished
2014.09.15 12:49:48 LOG7[32061]:    0 server renegotiations requested
2014.09.15 12:49:48 LOG7[32061]:   89 session cache hits
2014.09.15 12:49:48 LOG7[32061]:    0 external session cache hits
2014.09.15 12:49:48 LOG7[32061]:    0 session cache misses
2014.09.15 12:49:48 LOG7[32061]:    0 session cache timeouts
2014.09.15 12:49:48 LOG6[32061]: SSL accepted: previous session reused
2014.09.15 12:49:48 LOG6[32061]: s_connect: connecting 127.0.0.1:1984
2014.09.15 12:49:48 LOG7[32061]: s_connect: s_poll_wait 127.0.0.1:1984: waiting 
10 seconds
2014.09.15 12:49:48 LOG5[32061]: s_connect: connected 127.0.0.1:1984
2014.09.15 12:49:48 LOG5[32061]: Service [xymonserver] connected remote server 
from 127.0.0.1:34279
2014.09.15 12:49:48 LOG7[32061]: Remote socket (FD=3) initialized
2014.09.15 12:49:48 LOG7[32061]: readSSL: download ...............lst
2014.09.15 12:49:48 LOG7[32061]: writesocket: download ...............lst
2014.09.15 12:49:48 LOG7[32061]: SSL alert (read): warning: close notify
2014.09.15 12:49:48 LOG6[32061]: SSL closed (SSL_read)
2014.09.15 12:49:48 LOG7[32061]: Sent socket write shutdown
2014.09.15 12:49:48 LOG7[32061]: readsocket: .........
2014.09.15 12:49:48 LOG7[32061]: writeSSL: .........
2014.09.15 12:49:48 LOG6[32061]: Read socket closed (hangup)
2014.09.15 12:49:48 LOG6[32061]: Write socket closed (hangup)
2014.09.15 12:49:48 LOG7[32061]: Sending close_notify alert
2014.09.15 12:49:48 LOG7[32061]: SSL alert (write): warning: close notify
2014.09.15 12:49:48 LOG6[32061]: SSL_shutdown successfully sent close_notify 
alert
2014.09.15 12:49:48 LOG5[32061]: Connection closed: 9 byte(s) sent to SSL, 27 
byte(s) sent to socket
2014.09.15 12:49:48 LOG7[32061]: Remote socket (FD=3) closed
2014.09.15 12:49:48 LOG7[32061]: Local socket (FD=12) closed
2014.09.15 12:49:48 LOG7[32061]: Service [xymonserver] finished (0 left)
2014.09.15 12:49:48 LOG7[32061]: str_stats: 0 block(s), 18446744073709549628 
data byte(s), 0 control byte(s)

// Unsuccessful transfer
2014.09.15 12:49:56 LOG7[31395]: Service [xymonserver] accepted (FD=12) from 
<clientip>:65111
2014.09.15 12:49:56 LOG7[32182]: Service [xymonserver] started
2014.09.15 12:49:56 LOG5[32182]: Service [xymonserver] accepted connection from 
<clientip>:65111
2014.09.15 12:49:56 LOG7[32182]: SSL state (accept): before/accept 
initialization
2014.09.15 12:49:57 LOG7[32182]: SNI: no virtual services defined
2014.09.15 12:49:57 LOG7[32182]: SSL state (accept): SSLv3 read client hello A
2014.09.15 12:49:57 LOG7[32182]: SSL state (accept): SSLv3 write server hello A
2014.09.15 12:49:57 LOG7[32182]: SSL state (accept): SSLv3 write change cipher 
spec A
2014.09.15 12:49:57 LOG7[32182]: SSL state (accept): SSLv3 write finished A
2014.09.15 12:49:57 LOG7[32182]: SSL state (accept): SSLv3 flush data
2014.09.15 12:49:57 LOG7[32182]: SSL state (accept): SSLv3 read finished A
2014.09.15 12:49:57 LOG7[32182]:    0 items in the session cache
2014.09.15 12:49:57 LOG7[32182]:    0 client connects (SSL_connect())
2014.09.15 12:49:57 LOG7[32182]:    0 client connects that finished
2014.09.15 12:49:57 LOG7[32182]:    0 client renegotiations requested
2014.09.15 12:49:57 LOG7[32182]:  137 server connects (SSL_accept())
2014.09.15 12:49:57 LOG7[32182]:  136 server connects that finished
2014.09.15 12:49:57 LOG7[32182]:    0 server renegotiations requested
2014.09.15 12:49:57 LOG7[32182]:  108 session cache hits
2014.09.15 12:49:57 LOG7[32182]:    0 external session cache hits
2014.09.15 12:49:57 LOG7[32182]:    0 session cache misses
2014.09.15 12:49:57 LOG7[32182]:    0 session cache timeouts
2014.09.15 12:49:57 LOG6[32182]: SSL accepted: previous session reused
2014.09.15 12:49:57 LOG6[32182]: s_connect: connecting 127.0.0.1:1984
2014.09.15 12:49:57 LOG7[32182]: s_connect: s_poll_wait 127.0.0.1:1984: waiting 
10 seconds
2014.09.15 12:49:57 LOG5[32182]: s_connect: connected 127.0.0.1:1984
2014.09.15 12:49:57 LOG5[32182]: Service [xymonserver] connected remote server 
from 127.0.0.1:34304
2014.09.15 12:49:57 LOG7[32182]: Remote socket (FD=13) initialized
2014.09.15 12:49:57 LOG7[32182]: readSSL: download ...............lst
2014.09.15 12:49:57 LOG7[32182]: writesocket: download ...............lst
2014.09.15 12:49:57 LOG7[32182]: SSL alert (read): warning: close notify
2014.09.15 12:49:57 LOG6[32182]: SSL closed (SSL_read)
2014.09.15 12:49:57 LOG7[32182]: Sent socket write shutdown
2014.09.15 12:49:57 LOG6[32182]: Read socket closed (hangup)
2014.09.15 12:49:57 LOG6[32182]: Write socket closed (hangup)
2014.09.15 12:49:57 LOG7[32182]: Sending close_notify alert
2014.09.15 12:49:57 LOG7[32182]: SSL alert (write): warning: close notify
2014.09.15 12:49:57 LOG6[32182]: SSL_shutdown successfully sent close_notify 
alert
2014.09.15 12:49:57 LOG5[32182]: Connection closed: 0 byte(s) sent to SSL, 27 
byte(s) sent to socket
2014.09.15 12:49:57 LOG7[32182]: Remote socket (FD=13) closed
2014.09.15 12:49:57 LOG7[32182]: Local socket (FD=12) closed
2014.09.15 12:49:57 LOG7[32182]: Service [xymonserver] finished (1 left)
2014.09.15 12:49:57 LOG7[32182]: str_stats: 0 block(s), 18446744073709549669 
data byte(s), 0 control byte(s)


// Stunnel closedown
2014.09.15 12:50:07 LOG7[31395]: Dispatching signals from the signal pipe
2014.09.15 12:50:07 LOG7[31395]: Processing SIGNAL_TERMINATE
2014.09.15 12:50:07 LOG5[31395]: Terminated
2014.09.15 12:50:07 LOG7[31395]: Closing service [pop3s]
2014.09.15 12:50:07 LOG7[31395]: Service [pop3s] closed (FD=7)
2014.09.15 12:50:07 LOG7[31395]: Sessions cached before flush: 0
2014.09.15 12:50:07 LOG7[31395]: Sessions cached after flush: 0
2014.09.15 12:50:07 LOG7[31395]: Service [pop3s] closed
2014.09.15 12:50:07 LOG7[31395]: Closing service [imaps]
2014.09.15 12:50:07 LOG7[31395]: Service [imaps] closed (FD=8)
2014.09.15 12:50:07 LOG7[31395]: Sessions cached before flush: 0
2014.09.15 12:50:07 LOG7[31395]: Sessions cached after flush: 0
2014.09.15 12:50:07 LOG7[31395]: Service [imaps] closed
2014.09.15 12:50:07 LOG7[31395]: Closing service [ssmtp]
2014.09.15 12:50:07 LOG7[31395]: Service [ssmtp] closed (FD=9)
2014.09.15 12:50:07 LOG7[31395]: Sessions cached before flush: 0
2014.09.15 12:50:07 LOG7[31395]: Sessions cached after flush: 0
2014.09.15 12:50:07 LOG7[31395]: Service [ssmtp] closed
2014.09.15 12:50:07 LOG7[31395]: Closing service [xymonserver]
2014.09.15 12:50:07 LOG7[31395]: Service [xymonserver] closed (FD=10)
2014.09.15 12:50:07 LOG7[31395]: Sessions cached before flush: 0
2014.09.15 12:50:07 LOG7[31395]: Sessions cached after flush: 0
2014.09.15 12:50:07 LOG7[31395]: Service [xymonserver] closed
2014.09.15 12:50:07 LOG7[31395]: removing pid file /stunnel4.pid


_______________________________________________
stunnel-users mailing list
[email protected]
https://www.stunnel.org/cgi-bin/mailman/listinfo/stunnel-users






















					Reply via email to