Bacula-users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Bacula-users] Bacula Client with TLS only working in foreground - Openbsd

2012-11-08 12:34:53
Subject: [Bacula-users] Bacula Client with TLS only working in foreground - Openbsd
From: Jummo <jummo AT devio DOT us>
To: bacula-users AT lists.sourceforge DOT net
Date: Thu, 8 Nov 2012 18:30:27 +0100 (CET) 
Hi,

A OpenBSD Bacula File Daemon with TLS enabled works only if started in 
foreground mode (-f). If it runs as a daemon it output a TLS negotiation 
error.


openbsd.example.com:
$ sh bacula-ctl-fd start -f

$ ps aux|grep bacula
root     10498  0.0  0.2   588   480 p1  I+     6:11PM    0:00.02 sh
bacula-ctl-fd start -f
root     12722  0.0  0.7  2776  1944 p1  S+     6:11PM    0:00.55
/usr/local/sbin/bacula-fd -f -v -c /etc/bacula/bacula-fd.conf

Bacula Director:
*status client=openbsd.example.com-fd
Connecting to Client openbsd.example.com-fd at
openbsd.example.com:9102

openbsd.example.com-fd Version: 5.2.12 (12 September 2012)
i386-unknown-openbsd5.1 openbsd 5.1
Daemon started 08-Nov-12 18:11. Jobs: run=0 running=0.
  Heap: heap=0 smbytes=12,814 max_bytes=12,901 bufs=57 max_bufs=58
   Sizeof: boffset_t=8 size_t=4 debug=0 trace=0
   Running Jobs:
   Director connected at: 08-Nov-12 18:11
   No Jobs running.
   ====

   Terminated Jobs:
   ====




openbsd.example.com:
$ sh bacula-ctl-fd start

$ ps aux|grep bacula
root     28675  0.0  0.3  2320   836 ??  Ss     6:13PM    0:00.00
/usr/local/sbin/bacula-fd -v -c /etc/bacula/bacula-fd.conf


Bacula Director:
*status client=openbsd.example.com-fd
Connecting to Client openbsd.example.com-fd at
openbsd.example.com:9102
Failed to connect to Client openbsd.example.com-fd.
====
*messages
08-Nov 18:15 bacula.example.com-dir JobId 0: Error: openssl.c:86
Connect failure: ERR=error:140943FC:SSL routines:SSL3_READ_BYTES:sslv3
alert bad record mac
08-Nov 18:15 bacula.example.com-dir JobId 0: Fatal error: TLS
negotiation failed with FD at "openbsd.example.com:9102".


Client started as daemon with -d 400

openbsd.example.com-fd: bnet.c:766-0 who=client
host=10.0.4.29 port=9102
openbsd.example.com-fd: job.c:270-0 <dird: Hello Director
bacula.example.com-dir calling
openbsd.example.com-fd: job.c:286-0 Executing Hello command.
openbsd.example.com-fd: job.c:436-0 Calling Authenticate
openbsd.example.com-fd: cram-md5.c:72-0 send: auth cram-md5
<578462435.1352395193 AT openbsd.example DOT com-fd> ssl=2
openbsd.example.com-fd: cram-md5.c:131-0 cram-get received: auth
cram-md5 <883831335.1352395193 AT bacula.example DOT com-dir> ssl=2
openbsd.example.com-fd: cram-md5.c:150-0 sending resp to
challenge: jE/T1/Iap+ZZs//4/B++xB


Client started in foreground with -d 400

openbsd.example.com-fd: bnet.c:766-0 who=client
host=10.0.4.29 port=9102
openbsd.example.com-fd: job.c:270-0 <dird: Hello Director
bacula.example.com-dir calling
openbsd.example.com-fd: job.c:286-0 Executing Hello command.
openbsd.example.com-fd: job.c:436-0 Calling Authenticate
openbsd.example.com-fd: cram-md5.c:72-0 send: auth cram-md5
<517556587.1352395451 AT openbsd.example DOT com-fd> ssl=2
openbsd.example.com-fd: cram-md5.c:131-0 cram-get received: auth
cram-md5 <1289059909.1352395451 AT bacula.example DOT com-dir> ssl=2
openbsd.example.com-fd: cram-md5.c:150-0 sending resp to
challenge: O5QL+2+zI/1pz8/vz/+LwB
openbsd.example.com-fd: bnet.c:299-0 TLS server negotiation
established.
openbsd.example.com-fd: job.c:440-0 OK Authenticate
openbsd.example.com-fd: job.c:270-0 <dird: JobId=0
Job=-Console-.2012-11-08_17.58.22_45 SDid=0 SDtime=0 Authorization=dummy
openbsd.example.com-fd: job.c:286-0 Executing JobId= command.
openbsd.example.com-fd: job.c:1737-0 set sd auth key
openbsd.example.com-fd: job.c:544-0 JobId=0 Auth=dummy
openbsd.example.com-fd: fd_plugins.c:1197-0 plugin list is NULL
openbsd.example.com-fd: job.c:270-0 <dird:
statusopenbsd.example.com-fd: job.c:286-0 Executing status
command.
openbsd.example.com-fd: runscript.c:108-0 runscript: running all
RUNSCRIPT object (ClientAfterJob) JobStatus=C
openbsd.example.com-fd: job.c:399-0 Calling term_find_files
openbsd.example.com-fd: job.c:404-0 Done with term_find_files
openbsd.example.com-fd: job.c:406-0 Done with free_jcr
openbsd.example.com-fd: mem_pool.c:375-0 garbage collect memory
pool

Thanks,

   -- Jummo

------------------------------------------------------------------------------
Everyone hates slow websites. So do we.
Make your web apps faster with AppDynamics
Download AppDynamics Lite for free today:
http://p.sf.net/sfu/appdyn_d2d_nov
_______________________________________________
Bacula-users mailing list
Bacula-users AT lists.sourceforge DOT net
https://lists.sourceforge.net/lists/listinfo/bacula-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • [Bacula-users] Bacula Client with TLS only working in foreground - Openbsd, Jummo <=
Previous by Date:  Re: [Bacula-users] Customize messages, Carlo Filippetto
Next by Date:  Re: [Bacula-users] Customize messages, Carlo Filippetto
Previous by Thread:  [Bacula-users] Customize messages, Carlo Filippetto
Next by Thread:  [Bacula-users] Copy job use multiple drives (and scheduling)?, Chris Adams
Indexes:  [Date] [Thread] [Top] [All Lists]