Hi, A OpenBSD Bacula File Daemon with TLS enabled works only if started in foreground mode (-f). If it runs as a daemon it output a TLS negotiation error.
openbsd.example.com: $ sh bacula-ctl-fd start -f $ ps aux|grep bacula root 10498 0.0 0.2 588 480 p1 I+ 6:11PM 0:00.02 sh bacula-ctl-fd start -f root 12722 0.0 0.7 2776 1944 p1 S+ 6:11PM 0:00.55 /usr/local/sbin/bacula-fd -f -v -c /etc/bacula/bacula-fd.conf Bacula Director: *status client=openbsd.example.com-fd Connecting to Client openbsd.example.com-fd at openbsd.example.com:9102 openbsd.example.com-fd Version: 5.2.12 (12 September 2012) i386-unknown-openbsd5.1 openbsd 5.1 Daemon started 08-Nov-12 18:11. Jobs: run=0 running=0. Heap: heap=0 smbytes=12,814 max_bytes=12,901 bufs=57 max_bufs=58 Sizeof: boffset_t=8 size_t=4 debug=0 trace=0 Running Jobs: Director connected at: 08-Nov-12 18:11 No Jobs running. ==== Terminated Jobs: ==== openbsd.example.com: $ sh bacula-ctl-fd start $ ps aux|grep bacula root 28675 0.0 0.3 2320 836 ?? Ss 6:13PM 0:00.00 /usr/local/sbin/bacula-fd -v -c /etc/bacula/bacula-fd.conf Bacula Director: *status client=openbsd.example.com-fd Connecting to Client openbsd.example.com-fd at openbsd.example.com:9102 Failed to connect to Client openbsd.example.com-fd. ==== *messages 08-Nov 18:15 bacula.example.com-dir JobId 0: Error: openssl.c:86 Connect failure: ERR=error:140943FC:SSL routines:SSL3_READ_BYTES:sslv3 alert bad record mac 08-Nov 18:15 bacula.example.com-dir JobId 0: Fatal error: TLS negotiation failed with FD at "openbsd.example.com:9102". Client started as daemon with -d 400 openbsd.example.com-fd: bnet.c:766-0 who=client host=10.0.4.29 port=9102 openbsd.example.com-fd: job.c:270-0 <dird: Hello Director bacula.example.com-dir calling openbsd.example.com-fd: job.c:286-0 Executing Hello command. openbsd.example.com-fd: job.c:436-0 Calling Authenticate openbsd.example.com-fd: cram-md5.c:72-0 send: auth cram-md5 <578462435.1352395...@openbsd.example.com-fd> ssl=2 openbsd.example.com-fd: cram-md5.c:131-0 cram-get received: auth cram-md5 <883831335.1352395...@bacula.example.com-dir> ssl=2 openbsd.example.com-fd: cram-md5.c:150-0 sending resp to challenge: jE/T1/Iap+ZZs//4/B++xB Client started in foreground with -d 400 openbsd.example.com-fd: bnet.c:766-0 who=client host=10.0.4.29 port=9102 openbsd.example.com-fd: job.c:270-0 <dird: Hello Director bacula.example.com-dir calling openbsd.example.com-fd: job.c:286-0 Executing Hello command. openbsd.example.com-fd: job.c:436-0 Calling Authenticate openbsd.example.com-fd: cram-md5.c:72-0 send: auth cram-md5 <517556587.1352395...@openbsd.example.com-fd> ssl=2 openbsd.example.com-fd: cram-md5.c:131-0 cram-get received: auth cram-md5 <1289059909.1352395...@bacula.example.com-dir> ssl=2 openbsd.example.com-fd: cram-md5.c:150-0 sending resp to challenge: O5QL+2+zI/1pz8/vz/+LwB openbsd.example.com-fd: bnet.c:299-0 TLS server negotiation established. openbsd.example.com-fd: job.c:440-0 OK Authenticate openbsd.example.com-fd: job.c:270-0 <dird: JobId=0 Job=-Console-.2012-11-08_17.58.22_45 SDid=0 SDtime=0 Authorization=dummy openbsd.example.com-fd: job.c:286-0 Executing JobId= command. openbsd.example.com-fd: job.c:1737-0 set sd auth key openbsd.example.com-fd: job.c:544-0 JobId=0 Auth=dummy openbsd.example.com-fd: fd_plugins.c:1197-0 plugin list is NULL openbsd.example.com-fd: job.c:270-0 <dird: statusopenbsd.example.com-fd: job.c:286-0 Executing status command. openbsd.example.com-fd: runscript.c:108-0 runscript: running all RUNSCRIPT object (ClientAfterJob) JobStatus=C openbsd.example.com-fd: job.c:399-0 Calling term_find_files openbsd.example.com-fd: job.c:404-0 Done with term_find_files openbsd.example.com-fd: job.c:406-0 Done with free_jcr openbsd.example.com-fd: mem_pool.c:375-0 garbage collect memory pool Thanks, -- Jummo ------------------------------------------------------------------------------ Everyone hates slow websites. So do we. Make your web apps faster with AppDynamics Download AppDynamics Lite for free today: http://p.sf.net/sfu/appdyn_d2d_nov _______________________________________________ Bacula-users mailing list Bacula-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/bacula-users
