Re: PATCH: smtpd/tls segfault with smtpd_tls_loglevel >= 3

Mon, 07 Feb 2011 10:24:37 -0800 

Hi,

>> It works around an undocumented OpenSSL mis-feature, by moving the
>> SSL_set_fd() call from tlsproxy(8) into the Postfix TLS library.
>> Apparently, SSL_set_fd() destroys call-back information that is
>> already set up on an SSL handle. That was causing tlsproxy(8)'s
>> verbose logging to go nowhere.
> 
> This behavior is actually documented (SSL_set_fd() destroys
> a BIO already on the SSL handle, and creates a new BIO).

thanks a lot.

Feb  7 19:17:43 mx postfix/smtpd[1092]: connect from 
mx0.roessner-net.de[78.46.253.227]
Feb  7 19:17:43 mx postfix/smtpd[1092]: setting up TLS connection from 
mx0.roessner-net.de[78.46.253.227]
Feb  7 19:17:43 mx postfix/smtpd[1092]: mx0.roessner-net.de[78.46.253.227]: TLS 
cipher list "ALL:+RC4:@STRENGTH"
Feb  7 19:17:43 mx postfix/smtpd[1092]: SSL_accept:before/accept initialization
Feb  7 19:17:43 mx postfix/smtpd[1092]: SSL_accept:SSLv3 read client hello A
Feb  7 19:17:43 mx postfix/smtpd[1092]: SSL_accept:SSLv3 write server hello 
AFeb  7 19:17:43 mx postfix/smtpd[1092]: SSL_accept:SSLv3 write key exchange A
Feb  7 19:17:43 mx postfix/smtpd[1092]: SSL_accept:SSLv3 write server done AFeb 
 7 19:17:43 mx postfix/smtpd[1092]: SSL_accept:SSLv3 flush dataFeb  7 19:17:44 
mx postfix/smtpd[1092]: SSL_accept:SSLv3 read client key exchange A
Feb  7 19:17:44 mx postfix/smtpd[1092]: SSL_accept:SSLv3 read finished AFeb  7 
19:17:44 mx postfix/smtpd[1092]: SSL_accept:SSLv3 write session ticket A
Feb  7 19:17:44 mx postfix/smtpd[1092]: SSL_accept:SSLv3 write change cipher 
spec A
Feb  7 19:17:44 mx postfix/smtpd[1092]: SSL_accept:SSLv3 write finished AFeb  7 
19:17:44 mx postfix/smtpd[1092]: SSL_accept:SSLv3 flush dataFeb  7 19:17:44 mx 
postfix/smtpd[1092]: Anonymous TLS connection established from 
mx0.roessner-net.de[78.46.253.227]: TLSv1 with cipher ADH-AES256-SHA (256/256 
bits)

It is working now.

@Mark: New packages are available, including this fix.

Christian


---
Roessner-Network-Solutions
Bachelor of Science Informatik
Nahrungsberg 81, 35390 Gießen
F: +49 641 5879091, M: +49 176 93118939
USt-IdNr.: DE225643613
http://www.roessner-network-solutions.com

Attachment: PGP.sig
Description: Signierter Teil der Nachricht

Reply via email to