Stunnel not start
-
hello
I have new and fresh installation of 2.2.2-RELEASE (i386).
after installing Stunnel 5.07 and related configuration, it won`t start.
in shell, when i try to start Stunnel by /usr/local/etc/rc.d/stunnel.sh start, there is an error that cause stunnel problem.
Clients allowed=27610
[.] stunnel 5.07 on i386-portbld-freebsd10.0 platform
[.] Compiled with OpenSSL 1.0.1g-freebsd 7 Apr 2014
[.] Running with OpenSSL 1.0.1l-freebsd 15 Jan 2015
[.] Update OpenSSL shared libraries or rebuild stunnel
[.] Threading:PTHREAD Sockets:POLL,IPv4 SSL:ENGINE,OCSP Auth:LIBWRAP
errno: (* __error())
[.] Reading configuration from file /usr/local/etc/stunnel/stunnel.conf
[.] UTF-8 byte order mark not detected
Compression disabled
Snagged 64 random bytes from /root/.rnd
Wrote 1024 new random bytes to /root/.rnd
PRNG seeded successfully
Initializing service [NameOfme]
Loading cert from file: /usr/local/etc/stunnel/97e0ac1e.chain
[!] error queue: 140DC002: error:140DC002:SSL routines:SSL_CTX_use_certificate_chain_file:system lib
[!] error queue: 20074002: error:20074002:BIO routines:FILE_CTRL:system lib
[!] SSL_CTX_use_certificate_chain_file: 2001002: error:02001002:system library:fopen:No such file or directory
[!] Service [NameOFme]: Failed to initialize SSL contextwhat is wrong?
-
As far as I can tell, there is something wrong with loading the server certificate. I got it running in client mode by commenting out the "cert = …" line and adding "client = yes" in /usr/local/etc/stunnel.conf, which may or may not be helpful for you. Unfortunately it still doesn't start from the web gui as far as I can tell, and you have to start it with /usr/local/etc/rc.d/stunnel start. I'll try hacking on it more later, but I'm no expert so I don't know how far I'll get.
-
I'm on the x64 platform but what fixed this for me was updating stunnel with the pkg command:
pkg install stunnel
after this, all fixed up!