View Issue Details

IDProjectCategoryView StatusLast Update
0001213bareos-core[All Projects] file daemonpublic2020-03-17 23:30
Reporterr0muluxAssigned To 
PrioritynormalSeveritycrashReproducibilityalways
Status newResolutionopen 
PlatformLinuxOSUbuntuOS Version18.04
Product Version18.2.5 
Fixed in Version 
Summary0001213: TLS handshake fail with director in "Client Initiated Connection" mode
DescriptionHello,

We have several machines successfully backed up with bareOS since several years.
I try to back up a remote machine through an openvpn connection. This machine was previously backed up locally.
I follow instructions from https://docs.bareos.org/TasksAndConcepts/NetworkSetup.html#section-clientinitiatedconnection, but bareos-fd fails to connect to director. Logs are attached below.
No certificates are used, but PSK.

Client machine and bareos server are both Ubuntu 18.04 on bareos 18.2.5-144.1
Additional Informationbareos-fd -f -d 100
bareos-fd (100): lib/parse_conf.cc:191-0 config file = /etc/bareos/bareos-fd.d/*/*.conf
bareos-fd (100): lib/lex.cc:335-0 glob /etc/bareos/bareos-fd.d/*/*.conf: 4 files
bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/client/myself.conf
bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/director/bareos-dir.conf
bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/director/bareos-mon.conf
bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/messages/Standard.conf
bareos-fd (90): filed/filed_conf.cc:579-0 Inserting Director res: bareos-dir
bareos-fd (100): lib/lex.cc:335-0 glob /etc/bareos/bareos-fd.d/*/*.conf: 4 files
bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/client/myself.conf
bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/director/bareos-dir.conf
bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/director/bareos-mon.conf
bareos-fd (100): lib/lex.cc:229-0 open config file: /etc/bareos/bareos-fd.d/messages/Standard.conf
rme-fd (100): lib/jcr.cc:133-0 read_last_jobs seek to 192
rme-fd (100): lib/jcr.cc:136-0 Read num_items=10
rme-fd (10): filed/socket_server.cc:112-0 filed: listening on port 9102
rme-fd (100): lib/bnet_server_tcp.cc:199-0 Addresses host[ipv4;0.0.0.0;9102]
rme-fd (100): include/jcr.h:320-0 Construct JobControlRecord
rme-fd (100): lib/bsock.cc:81-0 Construct BareosSocket
rme-fd (100): lib/bsock.cc:154-0 All source addresses
rme-fd (100): lib/bsock_tcp.cc:235-0 Current host[ipv4;192.168.1.15;9101] All host[ipv4;192.168.1.15;9101]
rme-fd (100): lib/bsock_tcp.cc:158-0 who=bareos-dir host=bareos.*******.com port=9101
rme-fd (100): lib/tls_openssl_private.cc:57-0 Construct TlsOpenSslPrivate
rme-fd (100): lib/tls_openssl_private.cc:536-0 Set tcp filedescriptor: <6>
rme-fd (100): lib/tls_openssl_private.cc:482-0 Set ca_certfile: <>
rme-fd (100): lib/tls_openssl_private.cc:488-0 Set ca_certdir: <>
rme-fd (100): lib/tls_openssl_private.cc:494-0 Set crlfile_: <>
rme-fd (100): lib/tls_openssl_private.cc:500-0 Set certfile_: <>
rme-fd (100): lib/tls_openssl_private.cc:506-0 Set keyfile_: <>
rme-fd (100): lib/tls_openssl_private.cc:518-0 Set pem_userdata to address: <0>
rme-fd (100): lib/tls_openssl_private.cc:524-0 Set dhfile_: <>
rme-fd (100): lib/tls_openssl_private.cc:542-0 Set cipherlist: <>
rme-fd (100): lib/tls_openssl_private.cc:530-0 Set Verify Peer: <false>
rme-fd (50): lib/tls_openssl.cc:85-0 Preparing TLS_PSK CLIENT context for identity R_CLIENT rme-fd
rme-fd (100): lib/tls_openssl_private.cc:467-0 psk_client_cb. identity: R_CLIENT rme-fd.
rme-fd (50): lib/crypto_openssl.cc:1564-0 jcr=7efbfc000b48 Connect failure: ERR=error:14094410:SSL routines:ssl3_read_bytes:sslv3 alert handshake failure
rme-fd (50): lib/crypto_openssl.cc:1564-0 jcr=7efbfc000b48 TLS shutdown failure.: ERR=error:140E0197:SSL routines:SSL_shutdown:shutdown while in init
rme-fd (100): lib/tls_openssl.cc:71-0 Destruct TLsOpenSsl Implementation Object
rme-fd (100): lib/tls_openssl_private.cc:62-0 Destruct TlsOpenSslPrivate
rme-fd (50): lib/bsock.cc:583-0 TLS negotiation failed
rme-fd (100): filed/dir_cmd.cc:2192-0 Could not DoTlsHandshake() with director
rme-fd (100): lib/bsock.cc:129-0 Destruct BareosSocket
rme-fd (10): filed/dir_cmd.cc:600-0 ERROR: Failed to connect to Director "bareos-dir". Retry in 60s.
TagsNo tags attached.
bareos-master: impact
bareos-master: action
bareos-19.2: impact
bareos-19.2: action
bareos-18.2: impact
bareos-18.2: action
bareos-17.2: impact
bareos-17.2: action
bareos-16.2: impact
bareos-16.2: action
bareos-15.2: impact
bareos-15.2: action
bareos-14.2: impact
bareos-14.2: action
bareos-13.2: impact
bareos-13.2: action
bareos-12.4: impact
bareos-12.4: action

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2020-03-17 23:30 r0mulux New Issue