On Tue, May 12, 2020 at 08:59:15PM -0700, Alexander Vasarab wrote:
> On 12/05/20 23:27 -0400, Viktor Dukhovni wrote:
> >Once again out of the blue, a lost connection. The SMTP server is
> >trying to read the next command after sending "RCPT TO" and encounters
> >an EOF condition, for no apparent reason. At this point, I'd guess
> >your SSL library is broken...
>
> I was able to squeeze a bit more information out using
> smtpd_tls_loglevel=4.
>
> May 12 20:47:14 vasaconsulting postfix/smtpd[15943]: > <data scrubbed>[<data
> scrubbed>]: 250 2.1.5 Ok
> May 12 20:47:14 vasaconsulting postfix/smtpd[15943]: watchdog_pat:
> 0x55e2224ca3f0
> May 12 20:47:14 vasaconsulting postfix/smtpd[15943]: vstream_fflush_some: fd
> 17 flush 14
> May 12 20:47:14 vasaconsulting postfix/smtpd[15943]: Write 14 chars: 250
> 2.1.5 Ok??
> May 12 20:47:14 vasaconsulting postfix/smtpd[15943]: write to 55E222534FF0
> [55E222542173] (36 bytes => 36 (0x24))
> May 12 20:47:14 vasaconsulting postfix/smtpd[15943]: 0000 17 03 03 00 1f df
> 3e 1c|66 4c e9 c5 07 39 56 6a ......>. fL...9Vj
> May 12 20:47:14 vasaconsulting postfix/smtpd[15943]: 0010 ed 71 92 5b ee e6
> 8b e5|bd a6 9e 8f 33 68 38 74 .q.[.... ....3h8t
> May 12 20:47:14 vasaconsulting postfix/smtpd[15943]: 0020 86 60 a1 32
> .`.2
> May 12 20:47:14 vasaconsulting postfix/smtpd[15943]: read from 55E222534FF0
> [55E22253E023] (5 bytes => -1 (0xFFFFFFFFFFFFFFFF))
That's normal, the socket is non-blocking.
> May 12 20:47:14 vasaconsulting postfix/smtpd[15943]: warning: TLS library
> problem: error:140E0197:SSL routines:SSL_shutdown:shutdown while in
> init:../ssl/ssl_lib.c:2086:
> May 12 20:47:14 vasaconsulting postfix/smtpd[15943]: smtp_get: EOF
What's not normal is lack of an immediate select for read followed by a
retry of the read. The SSL library is likely reporting EOF instead of
an SSL_ERROR_WANT_READ. You need to try an updated OpenSSL.
--
Viktor.
