View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0001213 | bareos-core | file daemon | public | 2020-03-17 23:30 | 2023-09-12 16:39 |
| Reporter | r0mulux | Assigned To | bruno-at-bareos | ||
| Priority | normal | Severity | crash | Reproducibility | always |
| Status | closed | Resolution | unable to reproduce | ||
| Platform | Linux | OS | Ubuntu | OS Version | 18.04 |
| Product Version | 18.2.5 | ||||
| Summary | 0001213: TLS handshake fail with director in "Client Initiated Connection" mode | ||||
| Description | Hello, We have several machines successfully backed up with bareOS since several years. I try to back up a remote machine through an openvpn connection. This machine was previously backed up locally. I follow instructions from https://docs.bareos.org/TasksAndConcepts/NetworkSetup.html#section-clientinitiatedconnection, but bareos-fd fails to connect to director. Logs are attached below. No certificates are used, but PSK. Client machine and bareos server are both Ubuntu 18.04 on bareos 18.2.5-144.1 | ||||
| Additional Information | bareos-fd -f -d 100 bareos-fd (100): lib/parse_conf.cc:191-0 config file = /etc/bareos/bareos-fd.d/*/*.conf bareos-fd (100): lib/lex.cc:335-0 glob /etc/bareos/bareos-fd.d/*/*.conf: 4 files bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/client/myself.conf bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/director/bareos-dir.conf bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/director/bareos-mon.conf bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/messages/Standard.conf bareos-fd (90): filed/filed_conf.cc:579-0 Inserting Director res: bareos-dir bareos-fd (100): lib/lex.cc:335-0 glob /etc/bareos/bareos-fd.d/*/*.conf: 4 files bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/client/myself.conf bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/director/bareos-dir.conf bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/director/bareos-mon.conf bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/messages/Standard.conf rme-fd (100): lib/jcr.cc:133-0 read_last_jobs seek to 192 rme-fd (100): lib/jcr.cc:136-0 Read num_items=10 rme-fd (10): filed/socket_server.cc:112-0 filed: listening on port 9102 rme-fd (100): lib/bnet_server_tcp.cc:199-0 Addresses host[ipv4;0.0.0.0;9102] rme-fd (100): include/jcr.h:320-0 Construct JobControlRecord rme-fd (100): lib/bsock.cc:81-0 Construct BareosSocket rme-fd (100): lib/bsock.cc:154-0 All source addresses rme-fd (100): lib/bsock_tcp.cc:235-0 Current host[ipv4;192.168.1.15;9101] All host[ipv4;192.168.1.15;9101] rme-fd (100): lib/bsock_tcp.cc:158-0 who=bareos-dir host=bareos.*******.com port=9101 rme-fd (100): lib/tls_openssl_private.cc:57-0 Construct TlsOpenSslPrivate rme-fd (100): lib/tls_openssl_private.cc:536-0 Set tcp filedescriptor: <6> rme-fd (100): lib/tls_openssl_private.cc:482-0 Set ca_certfile: <> rme-fd (100): lib/tls_openssl_private.cc:488-0 Set ca_certdir: <> rme-fd (100): lib/tls_openssl_private.cc:494-0 Set crlfile_: <> rme-fd (100): lib/tls_openssl_private.cc:500-0 Set certfile_: <> rme-fd (100): lib/tls_openssl_private.cc:506-0 Set keyfile_: <> rme-fd (100): lib/tls_openssl_private.cc:518-0 Set pem_userdata to address: <0> rme-fd (100): lib/tls_openssl_private.cc:524-0 Set dhfile_: <> rme-fd (100): lib/tls_openssl_private.cc:542-0 Set cipherlist: <> rme-fd (100): lib/tls_openssl_private.cc:530-0 Set Verify Peer: <false> rme-fd (50): lib/tls_openssl.cc:85-0 Preparing TLS_PSK CLIENT context for identity R_CLIENT rme-fd rme-fd (100): lib/tls_openssl_private.cc:467-0 psk_client_cb. identity: R_CLIENT rme-fd. rme-fd (50): lib/crypto_openssl.cc:1564-0 jcr=7efbfc000b48 Connect failure: ERR=error:14094410:SSL routines:ssl3_read_bytes:sslv3 alert handshake failure rme-fd (50): lib/crypto_openssl.cc:1564-0 jcr=7efbfc000b48 TLS shutdown failure.: ERR=error:140E0197:SSL routines:SSL_shutdown:shutdown while in init rme-fd (100): lib/tls_openssl.cc:71-0 Destruct TLsOpenSsl Implementation Object rme-fd (100): lib/tls_openssl_private.cc:62-0 Destruct TlsOpenSslPrivate rme-fd (50): lib/bsock.cc:583-0 TLS negotiation failed rme-fd (100): filed/dir_cmd.cc:2192-0 Could not DoTlsHandshake() with director rme-fd (100): lib/bsock.cc:129-0 Destruct BareosSocket rme-fd (10): filed/dir_cmd.cc:600-0 ERROR: Failed to connect to Director "bareos-dir". Retry in 60s. | ||||
| Tags | No tags attached. | ||||
 |
is this still reproducible with a recent version of Bareos like 22.1.0+ ? |
|
|
Can't be reproduce with recent code. Client initiated connection are tested everytime with systemtests. Use recent version and if reproducible please enter a new entry |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2020-03-17 23:30 | r0mulux | New Issue | |
| 2023-08-23 14:06 | bruno-at-bareos | Assigned To | => bruno-at-bareos |
| 2023-08-23 14:06 | bruno-at-bareos | Status | new => feedback |
| 2023-08-23 14:06 | bruno-at-bareos | Note Added: 0005350 | |
| 2023-09-12 16:39 | bruno-at-bareos | Status | feedback => closed |
| 2023-09-12 16:39 | bruno-at-bareos | Resolution | open => unable to reproduce |
| 2023-09-12 16:39 | bruno-at-bareos | Note Added: 0005425 |
