[Csync2] Csync2 SSL problems

Vincent Régnard vregnard at tbs-internet.com
Mon Mar 31 16:25:15 CEST 2008 

Steve Foster a écrit :
> Hi folks,
> 
> just trying to get a installation working on a solaris system. When I 
> disable ssl using the "nossl" param it works fine. However when ssl is 
> enable I get very little communication between the systems.
> 
> Here is the output from the server:
> root at sun6:/> /opt/csync2/sbin/csync2 -iii -vvv
> Csync2 daemon running. Waiting for connections.
> <5406> New connection from 192.11.76.145:37978.
> Peer> SSL\n
> Local> OK (activating_ssl).\n
> 
> Here is the output from the client:
> root at sun7:{global} /> /opt/csync2/sbin/csync2 -vvv -T
> My hostname is sun7.
> Database-File: /var/lib/csync2/sun7.db
> Config-File:   /etc/csync2.cfg
> Running in-sync check for sun7 <-> sun6.
> Connecting to host sun6 (SSL) ...
> Local> SSL\n
> Peer> OK (activating_ssl).\n
> 
> When I truss the server end all I get is the following with the 
> pollsys() and read() section repeating.
> 
> 5468:   write(2, " .\n", 2)                             = 2
> 5468:   fcntl(4, F_DUP2FD, 0x00000000)                  = 0
> 5468:   fcntl(4, F_DUP2FD, 0x00000001)                  = 1
> 5468:   close(4)                                        = 0
> 5468:   setsockopt(1, tcp, TCP_NODELAY, 0x08046CBC, 4, SOV_DEFAULT) = 0
> 5468:   read(0, " S S L\n", 512)                        = 4
> 5468:   write(1, " O K   ( a c t i v a t i".., 21)      = 21
> 5468:   brk(0x0808E500)                                 = 0
> 5468:   brk(0x08090500)                                 = 0
> 5468:   brk(0x08090500)                                 = 0
> 5468:   brk(0x08092500)                                 = 0
> 5468:   brk(0x08092500)                                 = 0
> 5468:   brk(0x08094500)                                 = 0
> 5468:   brk(0x08094500)                                 = 0
> 5468:   brk(0x08096500)                                 = 0
> 5468:   brk(0x08096500)                                 = 0
> 5468:   brk(0x08098500)                                 = 0
> 5468:   brk(0x08098500)                                 = 0
> 5468:   brk(0x0809A500)                                 = 0
> 5468:   brk(0x0809A500)                                 = 0
> 5468:   brk(0x0809C500)                                 = 0
> 5468:   brk(0x0809C500)                                 = 0
> 5468:   brk(0x0809E500)                                 = 0
> 5468:   brk(0x0809E500)                                 = 0
> 5468:   brk(0x080A0500)                                 = 0
> 5468:   brk(0x080A0500)                                 = 0
> 5468:   brk(0x080A2500)                                 = 0
> 5468:   brk(0x080A2500)                                 = 0
> 5468:   brk(0x080A4500)                                 = 0
> 5468:   brk(0x080A4500)                                 = 0
> 5468:   brk(0x080A6500)                                 = 0
> 5468:   brk(0x080A6500)                                 = 0
> 5468:   brk(0x080A8500)                                 = 0
> 5468:   brk(0x080A8500)                                 = 0
> 5468:   brk(0x080AA500)                                 = 0
> 5468:   brk(0x080AA500)                                 = 0
> 5468:   brk(0x080AC500)                                 = 0
> 5468:   brk(0x080AC500)                                 = 0
> 5468:   brk(0x080AE500)                                 = 0
> 5468:   brk(0x080AE500)                                 = 0
> 5468:   brk(0x080B0500)                                 = 0
> 5468:   brk(0x080B0500)                                 = 0
> 5468:   brk(0x080B2500)                                 = 0
> 5468:   access("/dev/random", R_OK)                     = 0
> 5468:   access("/dev/random", R_OK)                     = 0
> 5468:   getpid()                                        = 5468 [5465]
> 5468:   open("/dev/random", O_RDONLY)                   = 4
> 5468:   fcntl(4, F_GETFD, 0x00000000)                   = 0
> 5468:   fcntl(4, F_SETFD, 0x00000001)                   = 0
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000)  = 1
> 5468:   read(4, "F8 7A0 11C wF4 -C0 1 f ;".., 120)      = 120
> 5465:   close(4)                                        = 0
> 5465:   accept(3, 0x08046CB0, 0x08046CA4, SOV_DEFAULT) (sleeping...)
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000) (sleeping...)
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000)  = 0
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000) (sleeping...)
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000)  = 0
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000) (sleeping...)
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000)  = 0
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000) (sleeping...)
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000)  = 0
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000) (sleeping...)
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000)  = 1
> 5468:   read(4, "F99B ? dB9 ~ U9807D4CBCC".., 120)      = 120
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000) (sleeping...)
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000)  = 0
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000) (sleeping...)
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000)  = 0
> 5468:   pollsys(0x080466C0, 1, 0x08046740, 0x00000000) (sleeping...)
> 
> 
> Any suggestions where to start digging?
> 

Hi Steve.

Maybe a problem with /dev/random not feeding enought ? Does it help if 
you type a lot on the keyboard to generate interupts when it hangs ? Or 
force ethernet traffic by any mean if there is none or just a little ?

-- 
Vincent Régnard
vregnard at tbs-internet.com
TBS-internet.com
027 630 5902

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5793 bytes
Desc: S/MIME Cryptographic Signature
Url : http://lists.linbit.com/pipermail/csync2/attachments/20080331/afbb8fba/smime.bin

More information about the Csync2 mailing list