stunnel 5.76 segfault
By chimo on (updated on )It turns out that stunnel 5.76 and 5.77, “crash when both global (default) and service-level lists of values are configured for an option”.
For example, this crashes because “cert” and “key” are both defined in the global section, and the “example_net” section:
cert = /etc/ssl/private/example.org/fullchain.cer
key = /etc/ssl/private/example.org/example.org.key
[default]
accept = 443
connect = 127.0.0.1:80
[example_net]
sni = default:example.net
cert = /etc/ssl/private/example.net/fullchain.cer
key = /etc/ssl/private/example.net/example.net.key
connect = 127.0.0.1:80
This has been fixed in stunnel 5.78 but since Alpine Linux still ships 5.76 in both edge and 3.24, it is something I ran into.
A work-around in my case is to move the “cert” and “key” properties in the global section to the “default” section.