github-starred/barrier
2
0
Fork 0
mirror of https://github.com/debauchee/barrier.git synced 2026-05-15 14:16:02 -06:00
Code Issues 1.0k Projects Packages Wiki Activity Actions

[GH-ISSUE #1438] SSL not working in 2.4.0 running on Linux #1104

New issue
Open
opened 2026-05-05 07:29:15 -06:00 by gitea-mirror · 6 comments
gitea-mirror commented 2026-05-05 07:29:15 -06:00
Owner
Copy link

Originally created by @elhennig on GitHub (Nov 18, 2021).
Original GitHub issue: https://github.com/debauchee/barrier/issues/1438

What happened?

I upgraded barrier to 2.4.0 on the Linux client and server (both packages came from opensuse build service) and after that the client stated in the log the the server certificate fingerprint could not be verified.
Current workaround is to switch off SSL

Version

v2.4.0

Git commit hash (if applicable)

No response

If applicable, where did you install Barrier from?

OpenSUSE Build service

What OSes are you seeing the problem on? (Check all that apply)

Linux

What OS versions are you using?

OpenSIUSE Leap 15.3

Relevant log output

Client:
[2021-11-18T08:12:51] ERROR: failed to verify server certificate fingerprint

Server:
[2021-11-18T08:12:51] INFO: OpenSSL 1.1.1d  10 Sep 2019
	/data/software/Tools/barrier/src/lib/net/SecureSocket.cpp,853
[2021-11-18T08:12:51] INFO: accepted secure socket
	/data/software/Tools/barrier/src/lib/net/SecureSocket.cpp,447
[2021-11-18T08:12:51] INFO: TLS_AES_256_GCM_SHA384  TLSv1.3 Kx=any      Au=any  Enc=AESGCM(256) Mac=AEAD
	/data/software/Tools/barrier/src/lib/net/SecureSocket.cpp,869
[2021-11-18T08:12:51] NOTE: accepted client connection
	/data/software/Tools/barrier/src/lib/server/ClientListener.cpp,152
[2021-11-18T08:13:06] NOTE: new client disconnected

Any other information

No response

Originally created by @elhennig on GitHub (Nov 18, 2021). Original GitHub issue: https://github.com/debauchee/barrier/issues/1438 ### What happened? I upgraded barrier to 2.4.0 on the Linux client and server (both packages came from opensuse build service) and after that the client stated in the log the the server certificate fingerprint could not be verified. Current workaround is to switch off SSL ### Version v2.4.0 ### Git commit hash (if applicable) _No response_ ### If applicable, where did you install Barrier from? OpenSUSE Build service ### What OSes are you seeing the problem on? (Check all that apply) Linux ### What OS versions are you using? OpenSIUSE Leap 15.3 ### Relevant log output ```shell Client: [2021-11-18T08:12:51] ERROR: failed to verify server certificate fingerprint Server: [2021-11-18T08:12:51] INFO: OpenSSL 1.1.1d 10 Sep 2019 /data/software/Tools/barrier/src/lib/net/SecureSocket.cpp,853 [2021-11-18T08:12:51] INFO: accepted secure socket /data/software/Tools/barrier/src/lib/net/SecureSocket.cpp,447 [2021-11-18T08:12:51] INFO: TLS_AES_256_GCM_SHA384 TLSv1.3 Kx=any Au=any Enc=AESGCM(256) Mac=AEAD /data/software/Tools/barrier/src/lib/net/SecureSocket.cpp,869 [2021-11-18T08:12:51] NOTE: accepted client connection /data/software/Tools/barrier/src/lib/server/ClientListener.cpp,152 [2021-11-18T08:13:06] NOTE: new client disconnected ``` ### Any other information _No response_
gitea-mirror commented 2026-05-05 07:29:17 -06:00
Author
Owner
Copy link

@ailabktw commented on GitHub (Nov 19, 2021):

I got same issue on Windows10, 11

<!-- gh-comment-id:974011128 --> @ailabktw commented on GitHub (Nov 19, 2021): I got same issue on Windows10, 11
gitea-mirror commented 2026-05-05 07:29:19 -06:00
Author
Owner
Copy link

@elhennig commented on GitHub (Nov 19, 2021):

I just tried, if this works, if I build the tool on the server and the client from source. However the behavior is the same as with the rpm package from OBS.

<!-- gh-comment-id:974048337 --> @elhennig commented on GitHub (Nov 19, 2021): I just tried, if this works, if I build the tool on the server and the client from source. However the behavior is the same as with the rpm package from OBS.
gitea-mirror commented 2026-05-05 07:29:19 -06:00
Author
Owner
Copy link

@ExpandingMan commented on GitHub (Nov 19, 2021):

I'm having similar issues. The GUI doesn't seem to want to generate the keys it just says "SSL disabled". I tried deleting all of the configs and keys but this did not help.

<!-- gh-comment-id:974296541 --> @ExpandingMan commented on GitHub (Nov 19, 2021): I'm having similar issues. The GUI doesn't seem to want to generate the keys it just says "SSL disabled". I tried deleting all of the configs and keys but this did not help.
gitea-mirror commented 2026-05-05 07:29:20 -06:00
Author
Owner
Copy link

@albertony commented on GitHub (Nov 19, 2021):

I think this is fixed by https://github.com/debauchee/barrier/pull/1425

<!-- gh-comment-id:974486131 --> @albertony commented on GitHub (Nov 19, 2021): I think this is fixed by https://github.com/debauchee/barrier/pull/1425
gitea-mirror commented 2026-05-05 07:29:21 -06:00
Author
Owner
Copy link

@ExpandingMan commented on GitHub (Nov 19, 2021):

I worked around this on 2.4 by following the documentation for generating the key, though it was not without incident, see here.

I do however still need --disable-client-cert-checking, which I can't seem to get working. There doesn't appear to be any documentation on that, and the GUI doesn't seem to want to handle it correctly for me.

<!-- gh-comment-id:974527104 --> @ExpandingMan commented on GitHub (Nov 19, 2021): I worked around this on 2.4 by following the documentation for generating the key, though it was not without incident, see [here](https://github.com/debauchee/barrier/issues/1441). I do however still need `--disable-client-cert-checking`, which I can't seem to get working. There doesn't appear to be any documentation on that, and the GUI doesn't seem to want to handle it correctly for me.
gitea-mirror commented 2026-05-05 07:29:21 -06:00
Author
Owner
Copy link

@albertony commented on GitHub (Nov 19, 2021):

I have a pull request updating the documentation: https://github.com/debauchee/barrier-wiki/pull/8

You can see the new docs here: f5f2751243/Command-Line.md (ssl_config)

<!-- gh-comment-id:974541460 --> @albertony commented on GitHub (Nov 19, 2021): I have a pull request updating the documentation: https://github.com/debauchee/barrier-wiki/pull/8 You can see the new docs here: https://github.com/debauchee/barrier-wiki/blob/f5f2751243f2af084f42ed5b50d676b538f6d81e/Command-Line.md#ssl_config
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
enhancement/builds/windows-multi-versions-build
martin-furter-barrier-term
enhancement/builds/macos-universal
enhancement/builds/macos-universal-qt6-test
2.3.x
fix/lang-translation/ssl-slash-tls
feature/build/compile/32-bit
feature/build/compile/armv7
testing-framework
README-update
remotes/fork/README-update
remotes/fork/smartzeroconf
smartzeroconf
pages-devel
remotes/fork/pages-devel
pkgconfig
remotes/fork/pkgconfig
release
remotes/fork/release
v2.4.0
v2.3.4
v2.3.3
1.11.0-stable
v1.11.0-rc2
v2.3.2
v1.10.3-stable
v2.3.2-alpha
v2.3.1
v2.3.0
v1.10.2-stable
v1.10.2-rc1
v1.10.2-rc2
v2.1.2
v2.0.8-beta
v2.0.7-beta
v2.0.4-beta
v2.0.3-beta
v2.1.1
v2.1.0
v1.9.1-stable
v2.0.0
v1.9.0-stable
v2.0.0-RC2
v2.0.0-RC1
v2.0.0-stable
v1.8.8-stable
v1.8.7-stable
v1.8.6-stable
v1.8.5-stable
v1.8.4-stable
v1.8.3-stable
v1.8.1-stable
v1.8.0-beta
v1.7.3-stable
v1.7.2-stable
v1.7.1-stable
1.7.0
1.6.3-final
1.6.2
1.6.1
1.6.0
Labels
Clear labels   
HiDPI

   
bounty

   
bsd/freebsd

   
bsd/openbsd

   
bug

   
bug

   
build-infra

   
cantfix

   
critical

   
doc

   
duplicate

   
enhancement

   
fix-available

   
from git

   
from release

   
good first issue

   
help wanted

   
installer/package

   
invalid

   
linux

   
macOS

   
meta

   
needs testing

   
pull-request

Mirrored from GitHub Pull Request

  
query

   
question

   
regression

   
regression

   
v2.4.0

   
windows

   
wontfix

   
work-in-progress
No labels
HiDPI
bounty
bsd/freebsd
bsd/openbsd
bug
bug
build-infra
cantfix
critical
doc
duplicate
enhancement
fix-available
from git
from release
good first issue
help wanted
installer/package
invalid
linux
macOS
meta
needs testing
pull-request
query
question
regression
regression
v2.4.0
windows
wontfix
work-in-progress
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/barrier#1104
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?