[Bacula-users] Bacula Client with TLS only working in foreground - Openbsd
2012-11-08 12:34:53
Hi,
A OpenBSD Bacula File Daemon with TLS enabled works only if started in
foreground mode (-f). If it runs as a daemon it output a TLS negotiation
error.
openbsd.example.com:
$ sh bacula-ctl-fd start -f
$ ps aux|grep bacula
root 10498 0.0 0.2 588 480 p1 I+ 6:11PM 0:00.02 sh
bacula-ctl-fd start -f
root 12722 0.0 0.7 2776 1944 p1 S+ 6:11PM 0:00.55
/usr/local/sbin/bacula-fd -f -v -c /etc/bacula/bacula-fd.conf
Bacula Director:
*status client=openbsd.example.com-fd
Connecting to Client openbsd.example.com-fd at
openbsd.example.com:9102
openbsd.example.com-fd Version: 5.2.12 (12 September 2012)
i386-unknown-openbsd5.1 openbsd 5.1
Daemon started 08-Nov-12 18:11. Jobs: run=0 running=0.
Heap: heap=0 smbytes=12,814 max_bytes=12,901 bufs=57 max_bufs=58
Sizeof: boffset_t=8 size_t=4 debug=0 trace=0
Running Jobs:
Director connected at: 08-Nov-12 18:11
No Jobs running.
====
Terminated Jobs:
====
openbsd.example.com:
$ sh bacula-ctl-fd start
$ ps aux|grep bacula
root 28675 0.0 0.3 2320 836 ?? Ss 6:13PM 0:00.00
/usr/local/sbin/bacula-fd -v -c /etc/bacula/bacula-fd.conf
Bacula Director:
*status client=openbsd.example.com-fd
Connecting to Client openbsd.example.com-fd at
openbsd.example.com:9102
Failed to connect to Client openbsd.example.com-fd.
====
*messages
08-Nov 18:15 bacula.example.com-dir JobId 0: Error: openssl.c:86
Connect failure: ERR=error:140943FC:SSL routines:SSL3_READ_BYTES:sslv3
alert bad record mac
08-Nov 18:15 bacula.example.com-dir JobId 0: Fatal error: TLS
negotiation failed with FD at "openbsd.example.com:9102".
Client started as daemon with -d 400
openbsd.example.com-fd: bnet.c:766-0 who=client
host=10.0.4.29 port=9102
openbsd.example.com-fd: job.c:270-0 <dird: Hello Director
bacula.example.com-dir calling
openbsd.example.com-fd: job.c:286-0 Executing Hello command.
openbsd.example.com-fd: job.c:436-0 Calling Authenticate
openbsd.example.com-fd: cram-md5.c:72-0 send: auth cram-md5
<578462435.1352395193 AT openbsd.example DOT com-fd> ssl=2
openbsd.example.com-fd: cram-md5.c:131-0 cram-get received: auth
cram-md5 <883831335.1352395193 AT bacula.example DOT com-dir> ssl=2
openbsd.example.com-fd: cram-md5.c:150-0 sending resp to
challenge: jE/T1/Iap+ZZs//4/B++xB
Client started in foreground with -d 400
openbsd.example.com-fd: bnet.c:766-0 who=client
host=10.0.4.29 port=9102
openbsd.example.com-fd: job.c:270-0 <dird: Hello Director
bacula.example.com-dir calling
openbsd.example.com-fd: job.c:286-0 Executing Hello command.
openbsd.example.com-fd: job.c:436-0 Calling Authenticate
openbsd.example.com-fd: cram-md5.c:72-0 send: auth cram-md5
<517556587.1352395451 AT openbsd.example DOT com-fd> ssl=2
openbsd.example.com-fd: cram-md5.c:131-0 cram-get received: auth
cram-md5 <1289059909.1352395451 AT bacula.example DOT com-dir> ssl=2
openbsd.example.com-fd: cram-md5.c:150-0 sending resp to
challenge: O5QL+2+zI/1pz8/vz/+LwB
openbsd.example.com-fd: bnet.c:299-0 TLS server negotiation
established.
openbsd.example.com-fd: job.c:440-0 OK Authenticate
openbsd.example.com-fd: job.c:270-0 <dird: JobId=0
Job=-Console-.2012-11-08_17.58.22_45 SDid=0 SDtime=0 Authorization=dummy
openbsd.example.com-fd: job.c:286-0 Executing JobId= command.
openbsd.example.com-fd: job.c:1737-0 set sd auth key
openbsd.example.com-fd: job.c:544-0 JobId=0 Auth=dummy
openbsd.example.com-fd: fd_plugins.c:1197-0 plugin list is NULL
openbsd.example.com-fd: job.c:270-0 <dird:
statusopenbsd.example.com-fd: job.c:286-0 Executing status
command.
openbsd.example.com-fd: runscript.c:108-0 runscript: running all
RUNSCRIPT object (ClientAfterJob) JobStatus=C
openbsd.example.com-fd: job.c:399-0 Calling term_find_files
openbsd.example.com-fd: job.c:404-0 Done with term_find_files
openbsd.example.com-fd: job.c:406-0 Done with free_jcr
openbsd.example.com-fd: mem_pool.c:375-0 garbage collect memory
pool
Thanks,
-- Jummo
------------------------------------------------------------------------------
Everyone hates slow websites. So do we.
Make your web apps faster with AppDynamics
Download AppDynamics Lite for free today:
http://p.sf.net/sfu/appdyn_d2d_nov
_______________________________________________
Bacula-users mailing list
Bacula-users AT lists.sourceforge DOT net
https://lists.sourceforge.net/lists/listinfo/bacula-users
|
<Prev in Thread] |
Current Thread |
[Next in Thread> |
- [Bacula-users] Bacula Client with TLS only working in foreground - Openbsd,
Jummo <=
|
|
|