trumee 0 Posted August 28, 2016 Share Posted August 28, 2016 Hello, I enabled 'Report https as external address' and able to connect on port 8920. On first connect of the client i did get a certificate warning since it is user signed. However, i see a bunch of errors on the server. Is ssl actually being used? *** Error Report *** Version: 3.0.6300.0 Command line: /usr/local/lib/emby-server/MediaBrowser.Server.Mono.exe -ffmpeg /usr/local/bin/ffmpeg -ffprobe /usr/local/bin/ffprobe -programdata /var/db/emby-server Operating system: Unix 10.3.4.0 Processor count: 8 64-Bit OS: True 64-Bit Process: True Program data path: /var/db/emby-server Mono: 4.4.2 (Stable 4.4.2.11/f72fe45 Sat Aug 27 18:31:35 UTC 2016) Application Path: /usr/local/lib/emby-server/MediaBrowser.Server.Mono.exe The authentication or decryption has failed. System.IO.IOException at Mono.Security.Protocol.Tls.SslStreamBase.EndRead (IAsyncResult asyncResult) <0x9a0020 + 0x001ab> in <filename unknown>:0 at Mono.Net.Security.Private.LegacySslStream.EndAuthenticateAsServer (IAsyncResult asyncResult) <0xaa54a0 + 0x00042> in <filename unknown>:0 at Mono.Net.Security.Private.LegacySslStream.AuthenticateAsServer (System.Security.Cryptography.X509Certificates.X509Certificate serverCertificate, Boolean clientCertificateRequired, SslProtocols enabledSslProtocols, Boolean checkCertificateRevocation) < 0xaa1a40 + 0x00055> in <filename unknown>:0 at Mono.Net.Security.Private.LegacySslStream.AuthenticateAsServer (System.Security.Cryptography.X509Certificates.X509Certificate serverCertificate) <0xaa1a10 + 0x00022> in <filename unknown>:0 at Mono.Net.Security.Private.MonoSslStreamImpl.AuthenticateAsServer (System.Security.Cryptography.X509Certificates.X509Certificate serverCertificate) <0xaa1830 + 0x00031> in <filename unknown>:0 at System.Net.Security.SslStream.AuthenticateAsServer (System.Security.Cryptography.X509Certificates.X509Certificate serverCertificate) <0xaa16f0 + 0x00031> in <filename unknown>:0 at SocketHttpListener.Net.HttpConnection..ctor (ILogger logger, System.Net.Sockets.Socket sock, SocketHttpListener.Net.EndPointListener epl, Boolean secure, System.Security.Cryptography.X509Certificates.X509Certificate cert, System.String connectionId) < 0x8188c0 + 0x0029c> in <filename unknown>:0 at SocketHttpListener.Net.EndPointListener.ProcessAccept (System.Net.Sockets.Socket accepted) <0x818490 + 0x00125> in <filename unknown>:0 InnerException: Mono.Security.Protocol.Tls.TlsException The authentication or decryption has failed. at Mono.Security.Protocol.Tls.RecordProtocol.ProcessAlert (AlertLevel alertLevel, AlertDescription alertDesc) <0xc435c0 + 0x00072> in <filename unknown>:0 at Mono.Security.Protocol.Tls.RecordProtocol.ReceiveRecord (System.IO.Stream record) <0x9d5d10 + 0x001ad> in <filename unknown>:0 at Mono.Security.Protocol.Tls.SslServerStream.EndNegotiateHandshake (IAsyncResult asyncResult) <0xaa64a0 + 0x0014a> in <filename unknown>:0 at Mono.Security.Protocol.Tls.SslStreamBase.AsyncHandshakeCallback (IAsyncResult asyncResult) <0x9d08d0 + 0x0008a> in <filename unknown>:0 Link to comment Share on other sites More sharing options...
Luke 36884 Posted August 28, 2016 Share Posted August 28, 2016 Mono currently only supports TLS 1.0. The upcoming 4.6 is going to revamp the entire TLS engine: http://www.mono-project.com/docs/about-mono/releases/4.6.0/ Link to comment Share on other sites More sharing options...
trumee 0 Posted August 29, 2016 Author Share Posted August 29, 2016 Is SSL/TLS actually being used or is this a false security? Link to comment Share on other sites More sharing options...
Luke 36884 Posted August 29, 2016 Share Posted August 29, 2016 I don't understand why you're asking that unless you're just trying to stir the pot. I would think the above log is enough to tell you that it is trying to use it, and failing in that attempt due to limitations beyond our control. Similarly, when the cert is something mono can handle, you do see typical browser warnings about untrusted certs and it works just fine after you accept it. Link to comment Share on other sites More sharing options...
trumee 0 Posted August 29, 2016 Author Share Posted August 29, 2016 (edited) Stirring the pot wasnt my intention I upgraded to server Version 3.0.6300.0 and 2.7.55 android client. Unfortunately, i can no longer Seek forward in the videos if they are being transcoded. On direct play seek works. In the browser seeks works even on transcoding profile. Edited August 29, 2016 by trumee Link to comment Share on other sites More sharing options...
Luke 36884 Posted August 29, 2016 Share Posted August 29, 2016 Sorry to hear that. I just tested it out and it seems to be OK. What exactly is happening? Link to comment Share on other sites More sharing options...
trumee 0 Posted August 29, 2016 Author Share Posted August 29, 2016 (edited) Seeking just moves the time-line forward but the video continuous to play and doesnt skip. Seeking backward doesnt go back. I changed back to http connection (8096) and seeking works on transcoding. So guess the issue comes up only on https connection. Edited August 29, 2016 by trumee Link to comment Share on other sites More sharing options...
Luke 36884 Posted August 29, 2016 Share Posted August 29, 2016 Given the above problem how did you get https to work in the first place? Link to comment Share on other sites More sharing options...
trumee 0 Posted August 29, 2016 Author Share Posted August 29, 2016 https playback works but seeking doesnt from android client. I have a found a workaround for now by using a reverse nginx ssl proxy and forwarding it to http port of emby. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now