[stunnel-users] Stunnel V4.05 error with rsync
craig hobbs
Craig.Hobbs at Sun.COM
Mon Oct 11 20:51:46 CEST 2004
Hello,
I am using stunnel v4.05 with rsync v2.6.0 and solaris9 as both my
client and server machine. I am running rsync in daemon mode on the
server and starting an rsync transfer on the client.
I am getting a frequent error where my rsync client process just appears
to hang. On the client side I will receive several 'SSL_read returned
WANT_: retrying/SSL_write returned WANT_: retrying' messages
back-to-back and then finally the message is always
'Socket closed on read'.
Some data does get transferred but it appears from the messages that the
socket looses its connection, and the the rsync process just hangs until
time-out.
Currently in no-blocking mode with the following limits:
FD_SETSIZE=1024, file ulimit=2147483647 -> 500 clients allowed
Is there any stunnel bug or system resource limit that could be the
problem ??
Thanks for the help.
~Craig
stunnel.conf file example from client:
# Sample stunnel configuration file
# Copyright by Michal Trojnara 2002
# Comment it out on Win32
cert = /usr/local/etc/stunnel/stunnel.pem
#chroot = /usr/local/var/run/stunnel/
# PID is created inside chroot jail
pid = /var/tmp/stunnel.pid
#setuid = nobody
#setgid = nogroup
# Some debugging stuff
debug = 7
output = /var/tmp/stunnel.log
foreground = yes
# Use it for client mode
client = yes
# Service-level configuration
[rsync]
accept = 8000
connect = some_host.com:20000
stunnel log file example from client:
2004.10.11 14:44:32 LOG7[26651:7]: rsync started
2004.10.11 14:44:32 LOG5[26651:7]: rsync connected local_host_ip:43586
2004.10.11 14:44:32 LOG7[26651:7]: FD 9 in non-blocking mode
2004.10.11 14:44:32 LOG7[26651:7]: rsync connecting remote_host_ip:20000
2004.10.11 14:44:32 LOG7[26651:7]: remote connect #1: EINPROGRESS: retrying
2004.10.11 14:44:32 LOG7[26651:7]: waitforsocket: FD=9, DIR=write
2004.10.11 14:44:32 LOG7[26651:7]: waitforsocket: ok
2004.10.11 14:44:32 LOG7[26651:7]: Remote FD=9 initialized
2004.10.11 14:44:32 LOG7[26651:7]: SSL state (connect): before/connect
initialization
2004.10.11 14:44:32 LOG7[26651:7]: SSL state (connect): SSLv3 write
client hello A
2004.10.11 14:44:32 LOG7[26651:7]: waitforsocket: FD=9, DIR=read
2004.10.11 14:44:32 LOG7[26651:7]: waitforsocket: ok
2004.10.11 14:44:32 LOG7[26651:7]: SSL state (connect): SSLv3 read
server hello A
2004.10.11 14:44:32 LOG7[26651:7]: SSL state (connect): SSLv3 read
finished A
2004.10.11 14:44:32 LOG7[26651:7]: SSL state (connect): SSLv3 write
change cipher spec A
2004.10.11 14:44:32 LOG7[26651:7]: SSL state (connect): SSLv3 write
finished A
2004.10.11 14:44:32 LOG7[26651:7]: SSL state (connect): SSLv3 flush data
2004.10.11 14:44:32 LOG7[26651:7]: 3 items in the session cache
2004.10.11 14:44:32 LOG7[26651:7]: 6 client connects (SSL_connect())
2004.10.11 14:44:32 LOG7[26651:7]: 6 client connects that finished
2004.10.11 14:44:32 LOG7[26651:7]: 0 client renegotiatations requested
2004.10.11 14:44:32 LOG7[26651:7]: 0 server connects (SSL_accept())
2004.10.11 14:44:32 LOG7[26651:7]: 0 server connects that finished
2004.10.11 14:44:32 LOG7[26651:7]: 0 server renegotiatiations requested
2004.10.11 14:44:32 LOG7[26651:7]: 3 session cache hits
2004.10.11 14:44:32 LOG7[26651:7]: 0 session cache misses
2004.10.11 14:44:32 LOG7[26651:7]: 0 session cache timeouts
2004.10.11 14:44:32 LOG6[26651:7]: Negotiated ciphers: AES256-SHA
SSLv3 Kx=RSA Au=RSA Enc
=AES(256) Mac=SHA1
2004.10.11 14:44:59 LOG7[26651:7]: SSL_write returned WANT_: retrying
2004.10.11 14:44:59 LOG7[26651:7]: SSL_read returned WANT_: retrying
2004.10.11 14:45:06 LOG7[26651:7]: SSL_write returned WANT_: retrying
2004.10.11 14:45:06 LOG7[26651:7]: SSL_read returned WANT_: retrying
2004.10.11 14:45:10 LOG7[26651:7]: SSL_write returned WANT_: retrying
2004.10.11 14:45:10 LOG7[26651:7]: SSL_read returned WANT_: retrying
2004.10.11 14:46:32 LOG7[26651:7]: SSL_write returned WANT_: retrying
2004.10.11 14:46:32 LOG7[26651:7]: SSL socket closed on SSL_read
More information about the stunnel-users
mailing list