INN 2.5.1-1 on Ubuntu 10.04 does not support SSL

Alexander Bartolich alexander.bartolich at gmx.at
Sat Sep 4 00:55:15 UTC 2010 

Hi,

The /usr/lib/news/bin/nnrpd-ssl that comes with package inn2 is broken.
Thunderbird reports error ssl_error_rc_record_too_long when it tries
to open a connection. The logfiles show now nothing.
Starting the programm manually produces a core dump.

# /usr/lib/news/bin/nnrpd-ssl -n -t -c /etc/news/readers.conf -S
Segmentation fault

However, without debugging symbols that's not too useful.

# gdb /usr/lib/news/bin/nnrpd-ssl core
[...]
(gdb) backtrace full
#0  0x0000000000423b18 in tls_init_serverengine ()
No symbol table info available.
#1  0x0000000000423df5 in tls_init ()
No symbol table info available.
#2  0x000000000041945f in main ()
No symbol table info available.

Perhaps ltrace is more informative.

# ltrace /usr/lib/news/bin/nnrpd-ssl -n -t -c /etc/news/readers.conf -S
[...]
open("/var/spool/news/overview/group.i"..., 0, 0664) = 18
__fxstat(1, 18, 0x7fffac6fff80)                  = 0
__errno_location()                               = 0x7f133405f6a8
fcntl(18, 1, 0, -1, 1)                           = 0
fcntl(18, 2, 1, -1, 1)                           = 0
mmap(0, 0x278008, 1, 1, 18)                      = 0x7f1330530000
getrlimit(7, 0x7fffac700010, 1, -1, 18)          = 0
malloc(32)                                       = 0x01fb3030
calloc(1, 96)                                    = 0x01fb3060
calloc(4, 8)                                     = 0x01fb30d0
__cxa_atexit(0x429b90, 0, 0, 5, 1)               = 0
sigemptyset(0x7fffac6fffe8)                      = 0
sigaction(1, 0x7fffac6fffe0, 0x7fffac6fff40)     = 0
SSL_load_error_strings(5, 0, 0, 0x6874206e69206501, 4000) = 0
SSL_library_init(10, 1, 0x7f1332ea5ab7, 317, 1)  = 1
SSLv23_server_method(0x7f1332e8f051, 0, 4, 0, 0xf6c021c0) = 0x7f1333347720
SSL_CTX_new(0x7f1333347720, 0, 4, 0, 0xf6c021c0) = 0x1fc6930
SSL_CTX_ctrl(0x1fc6930, 32, 4095, 0, 1)          = 4095
SSL_CTX_set_info_callback(0x1fc6930, 0x424200, 4095, 0, 0x7f133312bf08) = 4095
SSL_CTX_ctrl(0x1fc6930, 42, 128, 0, 0x7f133312bf08) = 20480
unexpected breakpoint at 0x423b17

This last line is then repeated for ever.

As a workaround I retrieved the latest source of INN 2.6.x from subversion
and built it. The resulting nnrpd works fine. That is, I am now using the
stock INN shipped by Ubuntu together with a custom built nnrpd.

The only problem is that the new nnrpd does not produce a X-Trace header
so I have to create a synthetic one in filter_nnrpd.pl.

Ciao

     Alexander.

More information about the inn-workers mailing list