[Box Backup-dev] Running bbackupd client from "trunk" on Mac
OS X
Dominik Herrmann
boxbackup-dev@fluffy.co.uk
Tue, 23 Jan 2007 01:19:37 +0100
Hi Chris,
>> After I had edited the config file, successfully added a new account
>> to my boxbackup server and processed the CSR, I tried to start the
>> client.
>>
>> It immediately fails with the following error in the log:
>>
>> Jan 21 18:43:53 sleeky bbackupd[15480]: Starting daemon (config:
>> /Users/dh/Library/boxbackup/etc/bak1/bbackupd.conf) (version trunk_1269)
>>
>> Jan 21 18:43:53 sleeky bbackupd[15480]: bbackupd: terminating due to
>> exception Server TLSLoadTrustedCAsFailed (3/27)
>
> Did you not get an error about "SSL err during Load CA cert" immediately
> before this? If you did, what does it say?
No. These two lines are all I get.
>> I looked up the location in the source code. Apparently it tries to
>> load serverCA.pem - which should be perfectly readable at the location
>> specified in the config file.
>
> Could you try "openssl -in /path/to/serverCA.pem -noout -text" and check
> that it manages to read and parse the certificate properly? Check that
> you get "Signature Algorithm: sha1WithRSAEncryption" and a bunch of hex
> codes after that (about 10-12 lines worth).
Your suggestion does not work, as the syntax seems to be incorrect:
The usage info tells me that openssl over here understands the following
"standard commands":
asn1parse ca ciphers crl crl2pkcs7
dgst dh dhparam dsa dsaparam
ec ecparam enc engine errstr
gendh gendsa genrsa nseq ocsp
passwd pkcs12 pkcs7 pkcs8 prime
rand req rsa rsautl s_client
s_server s_time sess_id smime speed
spkac verify version x509
I already tried
openssl ca -in /path/to/serverCA.pem -noout -text
but it fails with "unknown option -noout"
Could you please provide the correct command? Thanks!
The boxbackup server resides on a Debian Sarge machine (checked out from
same svn revision). Seems like the SSL Certificate has a compatibility
issue.
Thanks in advance!
Regards,
Dominik