<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=us-ascii">
<META content="MSHTML 6.00.2800.1528" name=GENERATOR></HEAD>
<BODY>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006>Hello
all,</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN
class=605564214-26042006></SPAN></FONT> </DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006>I am having a
problem using stunnel to connect web application in java to a UniData Database
server. The setup is working fine, traffic passes over the tunnel from
webserver to database without a problem except when a large query is sent over
the tunnel. Normal queries get responses no problem. I am running
HP-UX 11.00. Stunnel is running in daemon mode on both servers. Any
ideas why this might happen? Is there a buffer limit or something for
stunnel? Thanks in advance!</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN
class=605564214-26042006></SPAN></FONT> </DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006>Here's the
stunnel.conf files for them:</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006>database
side:</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN
class=605564214-26042006>------------------------------------------------------</SPAN></SPAN></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN
class=605564214-26042006>RNDfile=/opt/hpws/apache/stunnel/.stunnel.rnd</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006>pid =
/opt/hpws/apache/logs/stunnel.pid</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006>debug = 7<BR>output
= /opt/hpws/apache/logs/stunnel.log</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006>client =
no</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006>foreground =
no</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN
class=605564214-26042006>[unidata]<BR>accept = 5555<BR>connect =
127.0.0.1:31438<BR><SPAN class=605564214-26042006><SPAN
class=605564214-26042006>------------------------------------------------------</SPAN></SPAN></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN
class=605564214-26042006></SPAN></SPAN></SPAN></FONT> </DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN class=605564214-26042006>webserver
side:</SPAN></SPAN></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN
class=605564214-26042006>------------------------------------------------------</SPAN></SPAN></SPAN></SPAN></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN
class=605564214-26042006>RNDfile=/opt/hpws/apache/stunnel/.stunnel.rnd</SPAN></SPAN></SPAN></SPAN></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN class=605564214-26042006>pid =
/opt/hpws/apache/logs/stunnel.pid</SPAN></SPAN></SPAN></SPAN></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN class=605564214-26042006>debug = 7<BR>output =
/opt/hpws/apache/logs/stunnel.log</SPAN></SPAN></SPAN></SPAN></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN class=605564214-26042006>client =
yes</SPAN></SPAN></SPAN></SPAN></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN class=605564214-26042006>foreground =
no</SPAN></SPAN></SPAN></SPAN></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN
class=605564214-26042006>[unidata]<BR>accept = 127.0.0.1:5555<BR>connect =
dbserver:5555</SPAN></SPAN></SPAN></SPAN></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN class=605564214-26042006><SPAN
class=605564214-26042006><SPAN
class=605564214-26042006>------------------------------------------------------</SPAN></SPAN></SPAN></SPAN></SPAN></SPAN></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN
class=605564214-26042006></SPAN></FONT> </DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006>Here is my stunnel
-version output:</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006><SPAN
class=605564214-26042006>------------------------------------------------------</SPAN></SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006><SPAN
class=605564214-26042006></SPAN>stunnel 4.04 on hppa2.0w-hp-hpux11.00 PTHREAD
with OpenSSL 0.9.7g 11 Apr 2005</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006>Global
options<BR>cert
=
/opt/hpws/apache/stunnel/etc/stunnel/stunnel.pem<BR>ciphers
=
ALL:!ADH:+RC4:@STRENGTH<BR>debug
=
5<BR>key
=
/opt/hpws/apache/stunnel/etc/stunnel/stunnel.pem<BR>pid
=
/opt/hpws/apache/stunnel/var/run/stunnel.pid<BR>RNDbytes
= 64<BR>RNDoverwrite =
yes<BR>session = 300
seconds<BR>verify =
none</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006>Service-level
options<BR>TIMEOUTbusy = 300
seconds<BR>TIMEOUTclose = 60
seconds<BR>TIMEOUTidle = 43200
seconds</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN
class=605564214-26042006>------------------------------------------------------</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2><SPAN
class=605564214-26042006></SPAN></FONT> </DIV>
<DIV><FONT face=Arial size=2><SPAN class=605564214-26042006>Here is the error
from the client:</SPAN></FONT></DIV>
<DIV><SPAN class=605564214-26042006><FONT face=Arial
size=2>------------------------------------------------------</FONT></SPAN></DIV>
<DIV><SPAN class=605564214-26042006><FONT face=Arial size=2>2006.04.26 10:47:11
LOG7[1862:1]: unidata accepted FD=0 from 127.0.0.1:49644<BR>2006.04.26 10:47:11
LOG7[1862:1]: FD 0 in non-blocking mode<BR>2006.04.26 10:47:11 LOG7[1862:8]:
unidata started<BR>2006.04.26 10:47:11 LOG5[1862:8]: unidata connected from
127.0.0.1:49644<BR>2006.04.26 10:47:11 LOG7[1862:8]: FD 1 in non-blocking
mode<BR>2006.04.26 10:47:11 LOG7[1862:8]: unidata connecting
141.240.76.34:5555<BR>2006.04.26 10:47:11 LOG7[1862:8]: remote connect #1:
EINPROGRESS: retrying<BR>2006.04.26 10:47:11 LOG7[1862:8]: waitforsocket: FD=1,
DIR=write<BR>2006.04.26 10:47:11 LOG7[1862:8]: waitforsocket: ok<BR>2006.04.26
10:47:11 LOG7[1862:8]: Remote FD=1 initialized<BR>2006.04.26 10:47:11
LOG7[1862:8]: SSL state (connect): before/connect initialization<BR>2006.04.26
10:47:11 LOG7[1862:8]: SSL state (connect): SSLv3 write client hello
A<BR>2006.04.26 10:47:11 LOG7[1862:8]: SSL state (connect): SSLv3 read server
hello A<BR>2006.04.26 10:47:11 LOG7[1862:8]: SSL state (connect): SSLv3 read
server certificate A<BR>2006.04.26 10:47:11 LOG7[1862:8]: SSL state (connect):
SSLv3 read server done A<BR>2006.04.26 10:47:11 LOG7[1862:8]: SSL state
(connect): SSLv3 write client key exchange A<BR>2006.04.26 10:47:11
LOG7[1862:8]: SSL state (connect): SSLv3 write change cipher spec
A<BR>2006.04.26 10:47:11 LOG7[1862:8]: SSL state (connect): SSLv3 write finished
A<BR>2006.04.26 10:47:11 LOG7[1862:8]: SSL state (connect): SSLv3 flush
data<BR>2006.04.26 10:47:11 LOG7[1862:8]: SSL state (connect): SSLv3 read
finished A<BR>2006.04.26 10:47:11 LOG7[1862:8]: 3 items in the
session cache<BR>2006.04.26 10:47:11 LOG7[1862:8]: 7 client
connects (SSL_connect())<BR>2006.04.26 10:47:11 LOG7[1862:8]:
7 client connects that finished<BR>2006.04.26 10:47:11
LOG7[1862:8]: 0 client renegotiatations
requested<BR>2006.04.26 10:47:11 LOG7[1862:8]: 0 server
connects (SSL_accept())<BR>2006.04.26 10:47:11 LOG7[1862:8]: 0
server connects that finished<BR>2006.04.26 10:47:11
LOG7[1862:8]: 0 server renegotiatiations
requested<BR>2006.04.26 10:47:11 LOG7[1862:8]: 4 session cache
hits<BR>2006.04.26 10:47:11 LOG7[1862:8]: 0 session cache
misses<BR>2006.04.26 10:47:11 LOG7[1862:8]: 0 session cache
timeouts<BR>2006.04.26 10:47:11 LOG6[1862:8]: Negotiated ciphers:
AES256-SHA
SSLv3 Kx=RSA Au=RSA Enc=AES(256)
Mac=SHA1<BR>2006.04.26 10:47:12 LOG3[1862:8]: SSL_read (SSL_ERROR_SYSCALL):
Operation would block (246)<BR>2006.04.26 10:47:12 LOG5[1862:8]: Connection
reset: 744 bytes sent to SSL, 539 bytes sent to socket<BR>2006.04.26 10:47:12
LOG7[1862:8]: unidata finished (0 left)</FONT></SPAN></DIV>
<DIV><SPAN class=605564214-26042006><FONT face=Arial
size=2>---------------------------------------------------------</FONT></SPAN></DIV>
<DIV><SPAN class=605564214-26042006><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=605564214-26042006><FONT face=Arial size=2>Here is the error
from the server:</FONT></SPAN></DIV>
<DIV><SPAN class=605564214-26042006><FONT face=Arial
size=2>---------------------------------------------------------</FONT></SPAN></DIV>
<DIV><SPAN class=605564214-26042006><FONT face=Arial size=2>2006.04.26 10:48:24
LOG7[18850:1]: unidata accepted FD=0 from 141.240.76.29:49645<BR>2006.04.26
10:48:24 LOG7[18850:1]: FD 0 in non-blocking mode<BR>2006.04.26 10:48:24
LOG7[18850:6]: unidata started<BR>2006.04.26 10:48:24 LOG5[18850:6]: unidata
connected from 141.240.76.29:49645<BR>2006.04.26 10:48:24 LOG7[18850:6]: SSL
state (accept): before/accept initialization<BR>2006.04.26 10:48:24
LOG7[18850:6]: SSL state (accept): SSLv3 read client hello A<BR>2006.04.26
10:48:24 LOG7[18850:6]: SSL state (accept): SSLv3 write server hello
A<BR>2006.04.26 10:48:24 LOG7[18850:6]: SSL state (accept): SSLv3 write
certificate A<BR>2006.04.26 10:48:24 LOG7[18850:6]: SSL state (accept): SSLv3
write server done A<BR>2006.04.26 10:48:24 LOG7[18850:6]: SSL state (accept):
SSLv3 flush data<BR>2006.04.26 10:48:24 LOG7[18850:6]: SSL state (accept): SSLv3
read client key exchange A<BR>2006.04.26 10:48:24 LOG7[18850:6]: SSL state
(accept): SSLv3 read finished A<BR>2006.04.26 10:48:24 LOG7[18850:6]: SSL state
(accept): SSLv3 write change cipher spec A<BR>2006.04.26 10:48:24 LOG7[18850:6]:
SSL state (accept): SSLv3 write finished A<BR>2006.04.26 10:48:24 LOG7[18850:6]:
SSL state (accept): SSLv3 flush data<BR>2006.04.26 10:48:24
LOG7[18850:6]: 1 items in the session cache<BR>2006.04.26
10:48:24 LOG7[18850:6]: 0 client connects
(SSL_connect())<BR>2006.04.26 10:48:24 LOG7[18850:6]: 0 client
connects that finished<BR>2006.04.26 10:48:24 LOG7[18850:6]: 0
client renegotiatations requested<BR>2006.04.26 10:48:24
LOG7[18850:6]: 5 server connects (SSL_accept())<BR>2006.04.26
10:48:24 LOG7[18850:6]: 5 server connects that
finished<BR>2006.04.26 10:48:24 LOG7[18850:6]: 0 server
renegotiatiations requested<BR>2006.04.26 10:48:24
LOG7[18850:6]: 3 session cache hits<BR>2006.04.26 10:48:24
LOG7[18850:6]: 1 session cache misses<BR>2006.04.26 10:48:24
LOG7[18850:6]: 1 session cache timeouts<BR>2006.04.26 10:48:24
LOG6[18850:6]: Negotiated ciphers:
AES256-SHA
SSLv3 Kx=RSA Au=RSA Enc=AES(256)
Mac=SHA1<BR>2006.04.26 10:48:24 LOG7[18850:6]: FD 1 in non-blocking
mode<BR>2006.04.26 10:48:24 LOG7[18850:6]: unidata connecting
127.0.0.1:31438<BR>2006.04.26 10:48:24 LOG7[18850:6]: Remote FD=1
initialized<BR>2006.04.26 10:48:25 LOG3[18850:6]: SSL_read (SSL_ERROR_SYSCALL):
Connection reset by peer (232)<BR>2006.04.26 10:48:25 LOG5[18850:6]: Connection
reset: 9477 bytes sent to SSL, 744 bytes sent to socket<BR>2006.04.26 10:48:25
LOG7[18850:6]: unidata finished (0 left)</FONT></SPAN></DIV>
<DIV><SPAN class=605564214-26042006><FONT face=Arial
size=2>----------------------------------------------------------</FONT></SPAN></DIV>
<DIV><SPAN class=605564214-26042006><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=605564214-26042006><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><FONT face=Arial size=2>Brian Smith</FONT></DIV>
<DIV><FONT face=Arial size=2>brian.c1.smith@lmco.com</FONT></DIV>
<DIV> </DIV></BODY></HTML>