Hello everyone.
I use bareos (community edition) on Debian:
1. bareos-fd ver. 19.2 @debian 9
2. bareos-dir, bareos-sd ver. 19.2 @debian 10
There is a connection problem between bareos-fd and bareos-sd when
TLS-PSK is enabled.
If I disable TLS, then the connection works well, here is the configuration:
bareos-fd:
Client {
...
TLS Enable = no;
TLS Require = no;
...
}
bareos-sd:
Storage {
...
TLS Enable = no;
TLS Require = no;
...
}
If I change 'no' to 'yes', then the job does not start, in the error log:
--
sd JobId 39: Fatal error: Connect failure: ERR=error:1417A0C1:SSL
routines:tls_post_process_client_hello:no shared cipher
sd JobId 39: Fatal error: lib/bnet.cc:124 TLS Negotiation failed.
sd JobId 39: Fatal error: TLS negotiation failed.
sd JobId 39: Fatal error: stored/authenticate.cc:194 Authorization
problem: Two way security handshake failed with File daemon at client
sd JobId 39: Fatal error: Unable to authenticate File daemon
fd JobId 39: Fatal error: Connect failure: ERR=error:14094410:SSL
routines:ssl3_read_bytes:sslv3 alert handshake failure
fd JobId 39: Fatal error: TLS negotiation failed
fd JobId 39: Fatal error: Failed to authenticate Storage daemon.
dir JobId 39: Fatal error: Bad response to Storage command: wanted 2000
OK storage
--
What could be the problem ? Maybe something needs to be tweaked in the
openssl configuration?
Thanks.
--
You received this message because you are subscribed to the Google Groups
"bareos-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/bareos-users/c69e34d0-2727-1e0b-8b90-c7af2756d23e%40tiny-vps.com.
