SSL only working when --verbose is on

[jcbrand]

Hi @twonds

I'm running punjab as so: ./bin/twistd -n punjab --port=33773 --ssl=true --ssl_privkey=/etc/ssl/private/xxx.key --ssl_cert=/etc/ssl/certs/xxx.pem

Here's the log output:

2016-05-17 08:57:43+0200 [-] Log opened.
2016-05-17 08:57:43+0200 [-] twistd 16.1.1 (/home/punjab/punjab.buildout/bin/python 2.7.11) starting up.
2016-05-17 08:57:43+0200 [-] reactor class: twisted.internet.epollreactor.EPollReactor.
2016-05-17 08:57:43+0200 [-] Site (TLS) starting on 33773
2016-05-17 08:57:43+0200 [-] Starting factory <twisted.web.server.Site instance at 0x7fd79fe2c710>

I then try to load http-bind in a browser:

elinks https://localhost:33773/http-bind

And only get the message Making connection

With journalctl -f I see the following log message:

May 17 08:57:46 xxx kernel: TCP: request_sock_TCP: Possible SYN flooding on port 33773. Dropping request. Check SNMP counters.

Now the funny/strange thing, when I start punjab in verbose mode with -v, then suddenly I can make HTTPS connections and I don't get SYN flooding errors.

Do you have any idea what might be going on here? I'm thinking that perhaps SSL is not enabled when verbose mode is on?

I tried this on two different Hetzner VServers, and get the same result on both. On a root server from a different provider I am able to start Punjab with SSL (without -v) and there everything works fine, so I'm wondering whether it's a VServer issue.

Any help greatly appreciated.

[twonds]

This is very strange. I do not know of any reason this would happen. I have not had time to look though. I want to find out though. Please let me know if you find anything new.

[Neustradamus]

@jcbrand: Any news?