taskserver icon indicating copy to clipboard operation
taskserver copied to clipboard
verified publisher icon GothenburgBitFactory

Handshake failed. The certificate is NOT trusted. The certificate issuer is unknown. Sync failed. Could not connect to the Taskserver.

Open dhasial opened this issue 4 years ago • 0 comments

I've set up the server using mostly default settings (I tried using CHACHA20_POLY1305 for the task.ciphers but it didn't work so I reverted it to NORMAL) and setup done with setup_server.bash, yet after running task sync init, I get.

Handshake failed. The certificate is NOT trusted. The certificate issuer is unknown.
Sync failed.  Could not connect to the Taskserver.

/var/lib/taskd/config:

confirmation=1
extensions=/usr/libexec/taskd
ip.log=1
log=/var/log/taskd.log
pid.file=/var/lib/taskd/run/taskd.pid
queue.size=10
request.limit=10485760
root=/var/lib/taskd
server=localhost:53589
trust=strict
verbose=1
ciphers=NORMAL
ca.cert=/var/lib/taskd/cert/ca.cert.pem
server.cert=/var/lib/taskd/cert/server.cert.pem
server.key=/var/lib/taskd/cert/server.key.pem
server.crl=/var/lib/taskd/cert/server.crl.pem
client.cert=/var/lib/taskd/cert/client.cert.pem
client.key=/var/lib/taskd/cert/client.key.pem
taskd.ciphers=NORMAL

~/.taskrc

# [Created by task 2.5.3 2/12/2021 11:45:57]
# Taskwarrior program configuration file.
# For more documentation, see http://taskwarrior.org or try 'man task', 'man task-color',
# 'man task-sync' or 'man taskrc'

# Here is an example of entries that use the default, override and blank values
#   VARIAble=foo   -- By specifying a value, this overrides the default
#   variable=      -- By specifying no value, this means no default
#   #variable=foo  -- By commenting out the line, or deleting it, this uses the default

# Use the command 'task show' to see all defaults and overrides

# Files
data.location=~/.task

# Color theme (uncomment one to use)
#include /usr/share/taskwarrior/light-16.theme
#include /usr/share/taskwarrior/light-256.theme
#include /usr/share/taskwarrior/dark-16.theme
include /usr/share/taskwarrior/dark-256.theme
#include /usr/share/taskwarrior/dark-red-256.theme
#include /usr/share/taskwarrior/dark-green-256.theme
#include /usr/share/taskwarrior/dark-blue-256.theme
#include /usr/share/taskwarrior/dark-violets-256.theme
#include /usr/share/taskwarrior/dark-yellow-green.theme
#include /usr/share/taskwarrior/dark-gray-256.theme
#include /usr/share/taskwarrior/dark-gray-blue-256.theme
#include /usr/share/taskwarrior/solarized-dark-256.theme
#include /usr/share/taskwarrior/solarized-light-256.theme
#include /usr/share/taskwarrior/no-color.theme

taskd.certificate=\/home\/$USER\/.task\/$USER.cert.pem
taskd.server=localhost:53589
taskd.credentials=$ORG\/$USER\/e61794e6-86de-4159-9c5b-26c04ee77177
taskd.key=\/home\/$USER\/.task\/$USER.key.pem
taskd.ca=\/home\/$USER\/.task\/ca.cert.pem
taskd.trust=strict
taskd.ciphers=NORMAL

output from journalctl -ef -u taskd:

Nov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 ==== taskd 1.1.0  ====
Nov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 Serving from /var/lib/taskd
Nov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 Using address localhost
Nov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 Using port 53589
Nov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 Using family
Nov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 Queue size 10 requests
Nov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 Request size limit 10485760 bytes
Nov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 IP logging on
Nov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 CA          /var/lib/taskd/cert/ca.cert.pemNov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 Certificate /var/lib/taskd/cert/server.    cert.pem                                                                                                Nov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 Private Key /var/lib/taskd/cert/server.key.pem                                                                                                     Nov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 CRL         /var/lib/taskd/cert/server.crl.pem                                                                                                     Nov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 Server starting
Nov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 Using ciphers: NORMAL
Nov 21 13:00:45 HOSTNAME taskd[2515212]: 2021-11-21 18:00:45 Server ready
Nov 21 13:00:57 HOSTNAME taskd[2515212]: 2021-11-21 18:00:57 Error: Handshake failed. The TLS           connection was non-properly terminated.

Looking at the commits, perhaps you'd have an idea about this @pbeckingham .

*censored hostname, username, and org name with their respective variables

dhasial avatar Nov 21 '21 18:11 dhasial