[Bug 869881] Re: rsyslogd fails to load lmnsd_gtls.so

Simon Déziel 869881 at bugs.launchpad.net
Mon Jan 16 05:16:12 UTC 2023 

I tested a rsyslog client talking to a rsyslog server both using
`rsyslog-gnutls 8.2112.0-2ubuntu2.2` on Ubuntu 22.04 and it worked fine.
There, there is no error loading "/usr/lib/x86_64-linux-
gnu/rsyslog/lmnsd_gtls.so" as long as the `-gnutls` package is
installed. I used only a cert (from Let's Encrypt) on the server side
but I enabled Apparmor on both sides.

I'm not sure if your error could have been due to having enabled the
Apparmor profile and using certificate files stored under `/root/ssl`
which isn't permitted by the Apparmor profile? Marking as incomplete
until you can report on the Apparmor profile situation.

** Changed in: rsyslog (Ubuntu)
       Status: Confirmed => Incomplete

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to rsyslog in Ubuntu.
https://bugs.launchpad.net/bugs/869881

Title:
  rsyslogd fails to load lmnsd_gtls.so

Status in rsyslog package in Ubuntu:
  Incomplete

Bug description:
  rsyslog fails to load tls functionality.

  Relevant section from rsyslog.conf: 
  (full file is attached, contents of /etc/rsyslog.d is unmodified from package defaults, and running `rsyslogd  -f /etc/rsyslog.conf  -c4 -N1` does not show any configuration errors. The remote logging section is copy-pasted from a working debian 6  box)
  ########################
  #### REMOTE LOGGING ####
  ########################
  # certificate files
  $DefaultNetstreamDriverCAFile /root/ssl/ca.pem
  $DefaultNetstreamDriverCertFile /root/ssl/generic-cert.pem
  $DefaultNetstreamDriverKeyFile /root/ssl/generic-key.pem

  
  # set up the action
  $DefaultNetstreamDriver gtls # use gtls netstream driver
  $ActionSendStreamDriverMode 1 # require TLS for the connection
  $ActionSendStreamDriverAuthMode x509/certvalid

  *.* @@(o)10.181.60.127:10514 # send (all) messages

  
  Error written to syslog: 
  Oct  7 09:59:01 alpha rsyslogd-2068: could not load module '/usr/lib/rsyslog/lmnsd_gtls.so', rsyslog error -2078

  Relevant info from running in debug mode (full debug output is attached): 
  7508.666438320:main queue:Reg/w0: unexpected GnuTLS error -64 in nsd_gtls.c:574: Error while reading file.

  I have also attached strace output from rsyslog.

  ProblemType: Bug
  DistroRelease: Ubuntu 10.04
  Package: rsyslog-gnutls 4.2.0-2ubuntu8.1
  Uname: Linux 2.6.35.4-rscloud x86_64
  Architecture: amd64
  Date: Fri Oct  7 09:38:03 2011
  ProcEnviron: SHELL=/bin/bash
  SourcePackage: rsyslog

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/rsyslog/+bug/869881/+subscriptions

More information about the foundations-bugs mailing list