Re: [exim] 2 hours delay (gnutls_handshake): timed out: deli…

Top Page
This message is part of the following thread:
M\the complete thread tree sorted by date
MM\Jeremy Harris at <-
MMMEvgeniy Berdnikov at ->
Delete this message
Reply to this message
Author: tt-admin
Date:  
To: 'Andrew C Aitchison'
CC: exim-users
Subject: Re: [exim] 2 hours delay (gnutls_handshake): timed out: delivering unencrypted to
Continuation of the strace; 

6649  select(8, [7], NULL, NULL, {tv_sec=60, tv_usec=0} <unfinished ...>
6671  <... recvfrom resumed> 0x56352d0bd71b, 324, 0, NULL, NULL) = -1
ECONNRESET (Connection reset by peer)
6671  alarm(0)                          = 0
6671  sendmsg(7, {msg_name=NULL, msg_namelen=0,
msg_iov=[{iov_base="\25\3\3\0\2\2Z", iov_len=7}], msg_iovlen=1,
msg_controllen=0, msg_flags=0}, 0) = -1 EPIPE (Broken pipe)
6671  --- SIGPIPE {si_signo=SIGPIPE, si_code=SI_USER, si_pid=6671,
si_uid=111} ---
6671  close(7)                          = 0
6671  stat("/etc/localtime", {st_mode=S_IFREG|0644, st_size=2335, ...}) = 0
6671  getpid()                          = 6671
6671  stat("", 0x7fff3cb7f5c0)          = -1 ENOENT (No such file or
directory)
6671  close(5)                          = 0
6671  geteuid()                         = 111
6671  geteuid()                         = 111
6671  openat(AT_FDCWD, "/var/log/exim4/mainlog",
O_WRONLY|O_CREAT|O_APPEND|O_NONBLOCK, 0640) = 5
6671  fcntl(5, F_GETFD)                 = 0
6671  fcntl(5, F_SETFD, FD_CLOEXEC)     = 0
6671  fcntl(5, F_GETFL)                 = 0x8c01 (flags
O_WRONLY|O_APPEND|O_NONBLOCK|O_LARGEFILE)
6671  fcntl(5, F_SETFL, O_WRONLY|O_APPEND|O_LARGEFILE) = 0
6671  fstat(5, {st_mode=S_IFREG|0640, st_size=15402412, ...}) = 0
6671  write(5, "2022-03-30 12:25:33.594 [6671] 1"..., 187) = 187
6671  socket(AF_INET, SOCK_STREAM, IPPROTO_IP) = 7
6671  setsockopt(7, SOL_TCP, TCP_NODELAY, [1], 4) = 0
6671  alarm(300)                        = 0


Then the unencrypted smtp connections starts and the mesage is delivered
unencrypted.

Did not have the chance to call exiwhat, will try next time.

--
Cheers,

Marc

-----Ursprüngliche Nachricht-----
Von: Exim-users [mailto:exim-users-bounces+tt-admin=intranett.de@exim.org]
Im Auftrag von Andrew C Aitchison via Exim-users
Gesendet: Mittwoch, 30. März 2022 09:19
An: tt-admin
Cc: exim-users@???
Betreff: Re: [exim] 2 hours delay (gnutls_handshake): timed out: delivering
unencrypted to

On Wed, 30 Mar 2022, tt-admin via Exim-users wrote: 

>> Does
>>     exigrep 1nWC1t-0001kn-G2 /var/log/exim4/mainlog-202203*
>> (or where ever your exim logs are) show anything for the "other process"
?
>
> I'm afraid not, here you see two logs from yesterday (complete exigrep
> output without sensitive information):
>
> 2022-03-29 10:02:40.626 [1758] cwd=/var/spool/exim4 3 args:
/usr/sbin/exim4
> -Mc 1nZ6oK-0000S3-GM
> 2022-03-29 10:02:40.614 [1739] 1nZ6oK-0000S3-GM <= ... H=(...) [...]:56786
> I=[...]:25 P=esmtps X=TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256 CV=no
> S=3421694 M8S=0 id=02276F4E_71BD948B_foo@bar from <..> for ...
> 2022-03-29 10:05:58.606 [4928] 1nZ6oK-0000S3-GM Spool file is locked
> (another process is handling this message)
         ...        ...

> 2022-03-29 12:00:58.617 [25571] 1nZ6oK-0000S3-GM Spool file is locked
> (another process is handling this message)
> 2022-03-29 12:04:06.427 [1762] 1nZ6oK-0000S3-GM TLS session:
> (gnutls_handshake): timed out: delivering unencrypted to H=... [...] (not
in
> hosts_require_tls)
> 2022-03-29 12:04:08.110 [1758] 1nZ6oK-0000S3-GM => ... F=<...> P=<...>
> R=dnslookup T=remote_smtp S=3466181 H=... [...]:25 PRX=[]:0 I=[...]:59614
> C="250 2.0.0 OK 59/09-19783-CC9D2426" QT=2h1m27s DT=1.678s
> 2022-03-29 12:04:08.110 [1758] 1nZ6oK-0000S3-GM Completed QT=2h1m27s

I wonder what 1758 and 1762 were doing all that time -
I presume there is no other mention of 1762 in the log ?

If you see any more of these stuck in the queue, can you get an lsof
and a truss/strace/ltrace of the processes ?

> Same sender, same recipient, same recipient host:
>
> 2022-03-29 12:33:19.531 [29600] cwd=/var/spool/exim4 3 args:
/usr/sbin/exim4
> -Mc 1nZ9A7-0007hO-Fh
>
> 2022-03-29 12:33:19.506 [29598] 1nZ9A7-0007hO-Fh <= ... H=(...)
[...]:40002
> I=[...]:25 P=esmtps X=TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256 CV=no
S=610337
> M8S=0 id=02B18AED_0F70847B_foo@bar from <...> for ...
> 2022-03-29 12:33:20.105 [29600] 1nZ9A7-0007hO-Fh => ... F=<...> P=<...>
> R=dnslookup T=remote_smtp S=618306 H=... [...]:25 PRX=[]:0 I=[...]:60340
> X=TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256 CV=yes DN="CN=*.foo.bar" C="250
> 2.0.0 OK DE/29-19783-5A0E2426" QT=0.618s DT=0.546s
> 2022-03-29 12:33:20.106 [29600] 1nZ9A7-0007hO-Fh Completed QT=0.619s
>
> Restarting the daemon did not help (was not expecting, but tried anyway).
>
>
> Cheers
> --
> Marc
>
>
>
> -- 
> Andrew C. Aitchison                    Kendal, UK
>             andrew@???

>
>
> --
> ## List details at https://lists.exim.org/mailman/listinfo/exim-users
> ## Exim details at http://www.exim.org/
> ## Please use the Wiki with this list - http://wiki.exim.org/
> 

-- 
Andrew C. Aitchison                    Kendal, UK
             andrew@???


--
## List details at https://lists.exim.org/mailman/listinfo/exim-users
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/


This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] Exim Input Spool Header Format?Re: [exim] Exim Input Spool Header Format?->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)