| CARVIEW |
Navigation Menu
-
-
Notifications
You must be signed in to change notification settings - Fork 397
Description
Describe the bug
Unbound error spam after openssl 3 update (could not SSL_read crypto error:0A000126:SSL routines::unexpected eof while reading.)
To reproduce
Steps to reproduce the behavior:
- I use DNS over TLS
Expected behavior
So since openssl 3.0.7 came out, "unbound" has been spamming the journal with errors :
...could not SSL_read crypto error:0A000126:SSL routines::unexpected eof while reading.
My Archlinux system is fully up to date.
System:
- Unbound version: 1.17.0
- OS: Archlinux
unbound -Voutput: Configure line: --prefix=/usr --sysconfdir=/etc --localstatedir=/var --sbindir=/usr/bin --disable-rpath --enable-dnscrypt --enable-dnstap --enable-pie --enable-relro-now --enable-subnet --enable-systemd --enable-tfo-client --enable-tfo-server --enable-cachedb --with-libhiredis --with-conf-file=/etc/unbound/unbound.conf --with-pidfile=/run/unbound.pid --with-rootkey-file=/etc/trusted-key.key --with-libevent --with-libnghttp2 --with-pyunbound
Linked libs: libevent 2.1.12-stable (it uses epoll), OpenSSL 3.0.7 1 Nov 2022
Linked modules: dns64 cachedb subnetcache respip validator iterator
DNSCrypt feature available
TCP Fastopen feature available
Additional information
journalctl -b -u unbound.service
Dec 23 10:56:00 arch-pc systemd[1]: Starting Validating, recursive, and caching DNS resolver...
Dec 23 10:56:01 arch-pc unbound[1108]: [1108:0] notice: init module 0: subnetcache
Dec 23 10:56:01 arch-pc unbound[1108]: [1108:0] notice: init module 1: validator
Dec 23 10:56:01 arch-pc unbound[1108]: [1108:0] notice: init module 2: iterator
Dec 23 10:56:01 arch-pc unbound[1108]: [1108:0] info: start of service (unbound 1.17.0).
Dec 23 10:56:01 arch-pc systemd[1]: Started Validating, recursive, and caching DNS resolver.
Dec 23 10:56:03 arch-pc systemd[1]: Reloading Validating, recursive, and caching DNS resolver...
Dec 23 10:56:03 arch-pc unbound[1108]: [1108:0] info: service stopped (unbound 1.17.0).
Dec 23 10:56:03 arch-pc unbound[1108]: [1108:0] info: server stats for thread 0: 0 queries, 0 answers from cache, 0 recursions, 0 prefetch, 0 rejected by ip ratelimiting
Dec 23 10:56:03 arch-pc unbound[1108]: [1108:0] info: server stats for thread 0: requestlist max 0 avg 0 exceeded 0 jostled 0
Dec 23 10:56:03 arch-pc unbound[1108]: [1108:0] notice: Restart of unbound 1.17.0.
Dec 23 10:56:03 arch-pc unbound[1108]: [1108:0] notice: init module 0: subnetcache
Dec 23 10:56:03 arch-pc unbound[1108]: [1108:0] notice: init module 1: validator
Dec 23 10:56:03 arch-pc unbound[1108]: [1108:0] notice: init module 2: iterator
Dec 23 10:56:03 arch-pc unbound[1108]: [1108:0] info: start of service (unbound 1.17.0).
Dec 23 10:56:03 arch-pc systemd[1]: Reloaded Validating, recursive, and caching DNS resolver.
Dec 23 10:56:06 arch-pc unbound[1108]: [1108:0] info: generate keytag query _ta-4f66. NULL IN
Dec 23 10:57:28 arch-pc unbound[1108]: [1108:0] error: could not SSL_read crypto error:0A000126:SSL routines::unexpected eof while reading
Dec 23 10:59:59 arch-pc unbound[1108]: [1108:0] error: could not SSL_read crypto error:0A000126:SSL routines::unexpected eof while reading
Dec 23 11:05:22 arch-pc unbound[1108]: [1108:0] error: could not SSL_read crypto error:0A000126:SSL routines::unexpected eof while reading
Dec 23 11:09:57 arch-pc unbound[1108]: [1108:0] error: could not SSL_read crypto error:0A000126:SSL routines::unexpected eof while reading
Dec 23 11:18:50 arch-pc unbound[1108]: [1108:0] error: could not SSL_read crypto error:0A000126:SSL routines::unexpected eof while reading
Dec 23 11:18:50 arch-pc unbound[1108]: [1108:0] error: could not SSL_read crypto error:0A000126:SSL routines::unexpected eof while reading
Dec 23 11:21:01 arch-pc unbound[1108]: [1108:0] error: could not SSL_read crypto error:0A000126:SSL routines::unexpected eof while reading