[Bug 208555] local_unbound throws SSL exception on start

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Tue Apr 5 17:48:04 UTC 2016 

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=208555

            Bug ID: 208555
           Summary: local_unbound throws SSL exception on start
           Product: Base System
           Version: 10.3-BETA2
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Some People
          Priority: ---
         Component: bin
          Assignee: freebsd-bugs at FreeBSD.org
          Reporter: pete at nomadlogic.org

After upgrading from 10.2-RELEASE to 10.3-RELEASE I am seeing the following
error on startup for local_unbound:


> sudo /etc/rc.d/local_unbound restart
Stopping local_unbound.
Waiting for PIDS: 700.
Starting local_unbound.
Waiting for nameserver to start...[1459877934] unbound-control[68909:0]
warning: control-enable is 'no' in the config file.
error: Error setting up SSL_CTX client key and cert
34388867800:error:02001002:system library:fopen:No such file or
directory:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:398:fopen('/var/unbound/unbound_control.pem','r')
34388867800:error:20074002:BIO routines:FILE_CTRL:system
lib:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:400:
34388867800:error:140DC002:SSL
routines:SSL_CTX_use_certificate_chain_file:system
lib:/usr/src/secure/lib/libssl/../../../crypto/openssl/ssl/ssl_rsa.c:687:
.[1459877935] unbound-control[68913:0] warning: control-enable is 'no' in the
config file.
error: Error setting up SSL_CTX client key and cert
34388867800:error:02001002:system library:fopen:No such file or
directory:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:398:fopen('/var/unbound/unbound_control.pem','r')
34388867800:error:20074002:BIO routines:FILE_CTRL:system
lib:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:400:
34388867800:error:140DC002:SSL
routines:SSL_CTX_use_certificate_chain_file:system
lib:/usr/src/secure/lib/libssl/../../../crypto/openssl/ssl/ssl_rsa.c:687:
.[1459877936] unbound-control[68919:0] warning: control-enable is 'no' in the
config file.
error: Error setting up SSL_CTX client key and cert
34388867800:error:02001002:system library:fopen:No such file or
directory:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:398:fopen('/var/unbound/unbound_control.pem','r')
34388867800:error:20074002:BIO routines:FILE_CTRL:system
lib:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:400:
34388867800:error:140DC002:SSL
routines:SSL_CTX_use_certificate_chain_file:system
lib:/usr/src/secure/lib/libssl/../../../crypto/openssl/ssl/ssl_rsa.c:687:
.[1459877937] unbound-control[68922:0] warning: control-enable is 'no' in the
config file.
error: Error setting up SSL_CTX client key and cert
34388867800:error:02001002:system library:fopen:No such file or
directory:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:398:fopen('/var/unbound/unbound_control.pem','r')
34388867800:error:20074002:BIO routines:FILE_CTRL:system
lib:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:400:
34388867800:error:140DC002:SSL
routines:SSL_CTX_use_certificate_chain_file:system
lib:/usr/src/secure/lib/libssl/../../../crypto/openssl/ssl/ssl_rsa.c:687:
.[1459877938] unbound-control[68925:0] warning: control-enable is 'no' in the
config file.
error: Error setting up SSL_CTX client key and cert
34388867800:error:02001002:system library:fopen:No such file or
directory:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:398:fopen('/var/unbound/unbound_control.pem','r')
34388867800:error:20074002:BIO routines:FILE_CTRL:system
lib:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:400:
34388867800:error:140DC002:SSL
routines:SSL_CTX_use_certificate_chain_file:system
lib:/usr/src/secure/lib/libssl/../../../crypto/openssl/ssl/ssl_rsa.c:687:
 giving up


The daemon does start as expected after this error, and works as expected on my
end.  There is also a thread about this on the freebsd forums located here:
https://forums.freebsd.org/threads/55738/

-- 
You are receiving this mail because:
You are the assignee for the bug.

More information about the freebsd-bugs mailing list