[Bug 869881] Re: rsyslogd fails to load lmnsd_gtls.so

schmooster 869881 at bugs.launchpad.net
Wed Jan 18 12:16:14 UTC 2023 

Hi Simon,

It is unlikely I will be able to replicate the scenario at this time.
Please feel free to close off this case.

Kind regards,
Gaz/schmooster


On Mon, 16 Jan 2023 at 05:25, Simon Déziel <869881 at bugs.launchpad.net>
wrote:

> I tested a rsyslog client talking to a rsyslog server both using
> `rsyslog-gnutls 8.2112.0-2ubuntu2.2` on Ubuntu 22.04 and it worked fine.
> There, there is no error loading "/usr/lib/x86_64-linux-
> gnu/rsyslog/lmnsd_gtls.so" as long as the `-gnutls` package is
> installed. I used only a cert (from Let's Encrypt) on the server side
> but I enabled Apparmor on both sides.
>
> I'm not sure if your error could have been due to having enabled the
> Apparmor profile and using certificate files stored under `/root/ssl`
> which isn't permitted by the Apparmor profile? Marking as incomplete
> until you can report on the Apparmor profile situation.
>
> ** Changed in: rsyslog (Ubuntu)
>        Status: Confirmed => Incomplete
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https://bugs.launchpad.net/bugs/869881
>
> Title:
>   rsyslogd fails to load lmnsd_gtls.so
>
> Status in rsyslog package in Ubuntu:
>   Incomplete
>
> Bug description:
>   rsyslog fails to load tls functionality.
>
>   Relevant section from rsyslog.conf:
>   (full file is attached, contents of /etc/rsyslog.d is unmodified from
> package defaults, and running `rsyslogd  -f /etc/rsyslog.conf  -c4 -N1`
> does not show any configuration errors. The remote logging section is
> copy-pasted from a working debian 6  box)
>   ########################
>   #### REMOTE LOGGING ####
>   ########################
>   # certificate files
>   $DefaultNetstreamDriverCAFile /root/ssl/ca.pem
>   $DefaultNetstreamDriverCertFile /root/ssl/generic-cert.pem
>   $DefaultNetstreamDriverKeyFile /root/ssl/generic-key.pem
>
>
>   # set up the action
>   $DefaultNetstreamDriver gtls # use gtls netstream driver
>   $ActionSendStreamDriverMode 1 # require TLS for the connection
>   $ActionSendStreamDriverAuthMode x509/certvalid
>
>   *.* @@(o)10.181.60.127:10514 # send (all) messages
>
>
>   Error written to syslog:
>   Oct  7 09:59:01 alpha rsyslogd-2068: could not load module
> '/usr/lib/rsyslog/lmnsd_gtls.so', rsyslog error -2078
>
>   Relevant info from running in debug mode (full debug output is
> attached):
>   7508.666438320:main queue:Reg/w0: unexpected GnuTLS error -64 in
> nsd_gtls.c:574: Error while reading file.
>
>   I have also attached strace output from rsyslog.
>
>   ProblemType: Bug
>   DistroRelease: Ubuntu 10.04
>   Package: rsyslog-gnutls 4.2.0-2ubuntu8.1
>   Uname: Linux 2.6.35.4-rscloud x86_64
>   Architecture: amd64
>   Date: Fri Oct  7 09:38:03 2011
>   ProcEnviron: SHELL=/bin/bash
>   SourcePackage: rsyslog
>
> To manage notifications about this bug go to:
>
> https://bugs.launchpad.net/ubuntu/+source/rsyslog/+bug/869881/+subscriptions
>
>

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to rsyslog in Ubuntu.
https://bugs.launchpad.net/bugs/869881

Title:
  rsyslogd fails to load lmnsd_gtls.so

Status in rsyslog package in Ubuntu:
  Incomplete

Bug description:
  rsyslog fails to load tls functionality.

  Relevant section from rsyslog.conf: 
  (full file is attached, contents of /etc/rsyslog.d is unmodified from package defaults, and running `rsyslogd  -f /etc/rsyslog.conf  -c4 -N1` does not show any configuration errors. The remote logging section is copy-pasted from a working debian 6  box)
  ########################
  #### REMOTE LOGGING ####
  ########################
  # certificate files
  $DefaultNetstreamDriverCAFile /root/ssl/ca.pem
  $DefaultNetstreamDriverCertFile /root/ssl/generic-cert.pem
  $DefaultNetstreamDriverKeyFile /root/ssl/generic-key.pem

  
  # set up the action
  $DefaultNetstreamDriver gtls # use gtls netstream driver
  $ActionSendStreamDriverMode 1 # require TLS for the connection
  $ActionSendStreamDriverAuthMode x509/certvalid

  *.* @@(o)10.181.60.127:10514 # send (all) messages

  
  Error written to syslog: 
  Oct  7 09:59:01 alpha rsyslogd-2068: could not load module '/usr/lib/rsyslog/lmnsd_gtls.so', rsyslog error -2078

  Relevant info from running in debug mode (full debug output is attached): 
  7508.666438320:main queue:Reg/w0: unexpected GnuTLS error -64 in nsd_gtls.c:574: Error while reading file.

  I have also attached strace output from rsyslog.

  ProblemType: Bug
  DistroRelease: Ubuntu 10.04
  Package: rsyslog-gnutls 4.2.0-2ubuntu8.1
  Uname: Linux 2.6.35.4-rscloud x86_64
  Architecture: amd64
  Date: Fri Oct  7 09:38:03 2011
  ProcEnviron: SHELL=/bin/bash
  SourcePackage: rsyslog

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/rsyslog/+bug/869881/+subscriptions

More information about the foundations-bugs mailing list