FreeNAS plugin

April 9, 2021

@Baenwort Thanks! Meanwhile, I pushed a new branch to our unofficial plugin, tested on a TrueNAS VM, this will have to do while the official plugin is updated: https://github.com/MediaBrowser/iocage-amd64/tree/truenas12

April 9, 2021

3 hours ago, alucryd said:

@Baenwort Thanks! Meanwhile, I pushed a new branch to our unofficial plugin, tested on a TrueNAS VM, this will have to do while the official plugin is updated: https://github.com/MediaBrowser/iocage-amd64/tree/truenas12

Thanks @alucrydyou can tell I'm not the best one for this as I'm not seeing (based upon my understanding of TrueNAS plugin system) how your artefact.git can function without a rc.d equivalent to: https://github.com/freenas/iocage-plugin-emby/tree/master/overlay/usr/local/etc/rc.d

My understanding is that is needed to configure the jail properly.

April 9, 2021

@Baenwort Their script is an overlay meant to replace our own service. We just use ours, it's included in our tarball that's downloaded in the post_install.sh script.

June 4, 2021

Any time frame for any of the emby plugins to be updated to 4.6?

June 9, 2021

On 6/4/2021 at 3:35 AM, Vidman said:

Any time frame for any of the emby plugins to be updated to 4.6?

Everything should be at this point.

November 14, 2021

I've got a fresh emby install via Emby Server plugin on a new TrueNas (TrueNAS-12.0-U6.1) install and it seems like the server isn't sourcing CA data from /etc/ssl/cert.pem.

Attempting to fetch the list of available plugins results in the following error:

2021-11-14 19:56:14.467 Info HttpClient: HttpClientManager GET: https://www.mb3admin.com/admin/service/EmbyPackages.json
2021-11-14 19:56:14.786 Error HttpClient: Error TrustFailure getting response from 
	*** Error Report ***
	Version: 4.6.4.0
	Command line: /usr/local/lib/emby-server/system/EmbyServer.exe -os freebsd -ffmpeg /usr/local/bin/ffmpeg -ffprobe /usr/local/bin/ffprobe -programdata /var/db/emby-server -updatepackage emby-server-freebsd_{version}_amd64.txz
	Operating system: Unix 12.2.10.0 
	Framework: Mono: 6.8.0.123 (tarball Thu Nov 11 21:32:34 UTC 2021)
	OS/Process: X64/X64
	Runtime: usr/local/lib/mono/4.5/mscorlib.dll
	Processor count: 4
	Data path: /var/db/emby-server
	Application path: /usr/local/lib/emby-server/system
	System.Net.WebException: System.Net.WebException: Error: TrustFailure (Authentication failed, see inner exception.) ---> System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception. ---> Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x0021a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.InitConnection (System.Net.WebOperation operation, System.Threading.CancellationToken cancellationToken) [0x00141] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebOperation.Run () [0x0009a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebCompletionSource`1[T].WaitForCompletion () [0x00094] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.RunWithTimeoutWorker[T] (System.Threading.Tasks.Task`1[TResult] workerTask, System.Int32 timeout, System.Action abort, System.Func`1[TResult] aborted, System.Threading.CancellationTokenSource cts) [0x000f8] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.EndGetResponse (System.IAsyncResult asyncResult) [0x00020] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Threading.Tasks.TaskFactory`1[TResult].FromAsyncCoreLogic (System.IAsyncResult iar, System.Func`2[T,TResult] endFunction, System.Action`1[T] endAction, System.Threading.Tasks.Task`1[TResult] promise, System.Boolean requiresSynchronization) [0x0000f] in <0e6cb1433c7b46f598f86593dd03f528>:0 
	Source: System
	TargetSite: System.Net.WebResponse EndGetResponse(System.IAsyncResult)
	InnerException: System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception.
	Source: mscorlib
	TargetSite: Void Throw()
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	InnerException: Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	Source: System
	TargetSite: Boolean ProcessHandshake()
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	
2021-11-14 19:56:14.791 Error Server: Error processing request
	*** Error Report ***
	Version: 4.6.4.0
	Command line: /usr/local/lib/emby-server/system/EmbyServer.exe -os freebsd -ffmpeg /usr/local/bin/ffmpeg -ffprobe /usr/local/bin/ffprobe -programdata /var/db/emby-server -updatepackage emby-server-freebsd_{version}_amd64.txz
	Operating system: Unix 12.2.10.0 
	Framework: Mono: 6.8.0.123 (tarball Thu Nov 11 21:32:34 UTC 2021)
	OS/Process: X64/X64
	Runtime: usr/local/lib/mono/4.5/mscorlib.dll
	Processor count: 4
	Data path: /var/db/emby-server
	Application path: /usr/local/lib/emby-server/system
	MediaBrowser.Model.Net.HttpException: MediaBrowser.Model.Net.HttpException: Error: TrustFailure (Authentication failed, see inner exception.) ---> System.Net.WebException: Error: TrustFailure (Authentication failed, see inner exception.) ---> System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception. ---> Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x0021a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.InitConnection (System.Net.WebOperation operation, System.Threading.CancellationToken cancellationToken) [0x00141] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebOperation.Run () [0x0009a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebCompletionSource`1[T].WaitForCompletion () [0x00094] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.RunWithTimeoutWorker[T] (System.Threading.Tasks.Task`1[TResult] workerTask, System.Int32 timeout, System.Action abort, System.Func`1[TResult] aborted, System.Threading.CancellationTokenSource cts) [0x000f8] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.EndGetResponse (System.IAsyncResult asyncResult) [0x00020] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Threading.Tasks.TaskFactory`1[TResult].FromAsyncCoreLogic (System.IAsyncResult iar, System.Func`2[T,TResult] endFunction, System.Action`1[T] endAction, System.Threading.Tasks.Task`1[TResult] promise, System.Boolean requiresSynchronization) [0x0000f] in <0e6cb1433c7b46f598f86593dd03f528>:0 
	   --- End of inner exception stack trace ---
	  at Emby.Server.Implementations.HttpClientManager.HttpClientManager.SendAsyncInternal (MediaBrowser.Common.Net.HttpRequestOptions options, System.String httpMethod) [0x00858] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.HttpClientManager.HttpClientManager.SendAsync (MediaBrowser.Common.Net.HttpRequestOptions options, System.String httpMethod) [0x001f4] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.Updates.InstallationManager.GetAvailablePackagesWithoutRegistrationInfo (System.Boolean enableCache, System.Threading.CancellationToken cancellationToken) [0x000da] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.Updates.InstallationManager.GetAvailablePackages (System.Threading.CancellationToken cancellationToken, System.Boolean withRegistration, System.String packageType, System.Version applicationVersion) [0x00261] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at MediaBrowser.Api.PackageService.Get (MediaBrowser.Api.GetPackages request) [0x000bd] in <59ac92013247492db051b0d14392866c>:0 
	  at Emby.Server.Implementations.Services.ServiceController.GetTaskResult (System.Threading.Tasks.Task task) [0x00081] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.Services.ServiceHandler.ProcessRequestAsync (Emby.Server.Implementations.HttpServer.HttpListenerHost appHost, MediaBrowser.Model.Services.IRequest httpReq, MediaBrowser.Model.Services.IResponse httpRes, Emby.Server.Implementations.Services.RestPath restPath, System.String responseContentType, System.Threading.CancellationToken cancellationToken) [0x001da] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.HttpServer.HttpListenerHost.RequestHandler (MediaBrowser.Model.Services.IRequest httpReq, System.ReadOnlyMemory`1[T] urlString, System.ReadOnlyMemory`1[T] localPath, System.Threading.CancellationToken cancellationToken) [0x00bcc] in <05979d9270ab4dafac52ba5587e41c17>:0 
	Source: mscorlib
	TargetSite: Void Throw()
	InnerException: System.Net.WebException: Error: TrustFailure (Authentication failed, see inner exception.)
	Source: System
	TargetSite: System.Net.WebResponse EndGetResponse(System.IAsyncResult)
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x0021a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.InitConnection (System.Net.WebOperation operation, System.Threading.CancellationToken cancellationToken) [0x00141] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebOperation.Run () [0x0009a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebCompletionSource`1[T].WaitForCompletion () [0x00094] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.RunWithTimeoutWorker[T] (System.Threading.Tasks.Task`1[TResult] workerTask, System.Int32 timeout, System.Action abort, System.Func`1[TResult] aborted, System.Threading.CancellationTokenSource cts) [0x000f8] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.EndGetResponse (System.IAsyncResult asyncResult) [0x00020] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Threading.Tasks.TaskFactory`1[TResult].FromAsyncCoreLogic (System.IAsyncResult iar, System.Func`2[T,TResult] endFunction, System.Action`1[T] endAction, System.Threading.Tasks.Task`1[TResult] promise, System.Boolean requiresSynchronization) [0x0000f] in <0e6cb1433c7b46f598f86593dd03f528>:0 
	InnerException: System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception.
	Source: mscorlib
	TargetSite: Void Throw()
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	InnerException: Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	Source: System
	TargetSite: Boolean ProcessHandshake()
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	
2021-11-14 19:56:14.794 Info Server: http/1.1 Response 500 to X.X.X.X. Time: 332ms. http://emby.xxxx.net:8096/Packages?TargetSystems=Server&IsAdult=false&PackageType=UserInstalled&X-Emby-Client=Emby Web&X-Emby-Device-Name=Firefox&X-Emby-Device-Id=x-x-xx&X-Emby-Client-Version=4.6.4.0

Meanwhile, opening a shell in the jail and checking whether I have the proper CA certs installed is fine

root@emby:~ # openssl s_client -connect www.mb3admin.com:443 -CAfile /etc/ssl/cert.pem
CONNECTED(00000003)
depth=1 C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN =Sectigo RSA Domain Validation Secure Server CA
verify return:1
depth=0 CN = www.mb3admin.com
verify return:1
---
Certificate chain
 0 s:CN = www.mb3admin.com
   i:C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA
 1 s:C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA
   i:C = US, ST = New Jersey, L = Jersey City, O = The USERTRUST Network, CN = USERTrust RSA Certification Authority
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=CN = www.mb3admin.com

issuer=C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA

---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3711 bytes and written 413 bytes
Verification: OK
---
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1.2
    Cipher    : ECDHE-RSA-AES256-GCM-SHA384
    Session-ID: FD835D4B37605817E5F56C1669FE9E6E68071DD027701133B215338EC5DBAA4E
    Session-ID-ctx:
    Master-Key: 4F3EB0D9FC0BBC1A3921A8FD9A6C579566E819861134B7E3A0C9ABC103D40D8A72E79A88318F5FB48C38DB4B5D263EE4
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    TLS session ticket lifetime hint: 300 (seconds)
    TLS session ticket:
    0000 - a1 49 a8 98 b0 83 18 53-63 c2 46 f9 00 59 7b 5c   .I.....Sc.F..Y{\
    0010 - bf 5d 61 77 61 26 17 c7-68 10 b8 d7 ee f2 a3 c3   .]awa&..h.......
    0020 - 3f 48 ce 2e ab af c7 1d-9f 22 29 e9 94 01 e9 70   ?H.......")....p
    0030 - 6f 4c 31 a4 f3 30 67 4a-be 0b d0 84 a2 33 16 b8   oL1..0gJ.....3..
    0040 - d8 4f e5 68 47 24 5f 68-b4 9b f3 27 a0 57 da b3   .O.hG$_h...'.W..
    0050 - bf c9 e1 86 54 95 99 b4-68 41 4e c4 17 a4 a7 de   ....T...hAN.....
    0060 - c9 18 7e d7 78 9a cf 1c-63 74 63 22 08 56 07 87   ..~.x...ctc".V..
    0070 - 91 af 2d 0f a3 bc e4 b8-7d 24 1e e0 af cf db 21   ..-.....}$.....!
    0080 - cd 42 1e d2 9d cd 6b 93-d1 38 cf ea c9 b1 28 36   .B....k..8....(6
    0090 - 68 ef 51 5f f8 83 5b 41-a3 94 c5 81 e5 4d b5 bd   h.Q_..[A.....M..
    00a0 - b8 4d 0e 72 80 40 30 95-14 ef 99 44 4a af 5b 00   .M.r.@0....DJ.[.
    00b0 - dd 2b 66 b6 1b 44 65 5f-c5 14 d9 45 c1 ca 7a ce   .+f..De_...E..z.
    00c0 - 21 11 00 86 7a 67 57 c0-39 5f be 97 4a 15 61 49   !...zgW.9_..J.aI

    Start Time: 1636920291
    Timeout   : 7200 (sec)
    Verify return code: 0 (ok)
    Extended master secret: yes
---

Any advice would be appreciated, I'm new to FreeBSD but I'm a long time emby user, premier subscriber and proponent.

November 14, 2021

4 minutes ago, leithouse said:

I've got a fresh emby install via Emby Server plugin on a new TrueNas (TrueNAS-12.0-U6.1) install and it seems like the server isn't sourcing CA data from /etc/ssl/cert.pem.

Attempting to fetch the list of available plugins results in the following error:

2021-11-14 19:56:14.467 Info HttpClient: HttpClientManager GET: https://www.mb3admin.com/admin/service/EmbyPackages.json
2021-11-14 19:56:14.786 Error HttpClient: Error TrustFailure getting response from 
	*** Error Report ***
	Version: 4.6.4.0
	Command line: /usr/local/lib/emby-server/system/EmbyServer.exe -os freebsd -ffmpeg /usr/local/bin/ffmpeg -ffprobe /usr/local/bin/ffprobe -programdata /var/db/emby-server -updatepackage emby-server-freebsd_{version}_amd64.txz
	Operating system: Unix 12.2.10.0 
	Framework: Mono: 6.8.0.123 (tarball Thu Nov 11 21:32:34 UTC 2021)
	OS/Process: X64/X64
	Runtime: usr/local/lib/mono/4.5/mscorlib.dll
	Processor count: 4
	Data path: /var/db/emby-server
	Application path: /usr/local/lib/emby-server/system
	System.Net.WebException: System.Net.WebException: Error: TrustFailure (Authentication failed, see inner exception.) ---> System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception. ---> Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x0021a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.InitConnection (System.Net.WebOperation operation, System.Threading.CancellationToken cancellationToken) [0x00141] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebOperation.Run () [0x0009a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebCompletionSource`1[T].WaitForCompletion () [0x00094] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.RunWithTimeoutWorker[T] (System.Threading.Tasks.Task`1[TResult] workerTask, System.Int32 timeout, System.Action abort, System.Func`1[TResult] aborted, System.Threading.CancellationTokenSource cts) [0x000f8] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.EndGetResponse (System.IAsyncResult asyncResult) [0x00020] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Threading.Tasks.TaskFactory`1[TResult].FromAsyncCoreLogic (System.IAsyncResult iar, System.Func`2[T,TResult] endFunction, System.Action`1[T] endAction, System.Threading.Tasks.Task`1[TResult] promise, System.Boolean requiresSynchronization) [0x0000f] in <0e6cb1433c7b46f598f86593dd03f528>:0 
	Source: System
	TargetSite: System.Net.WebResponse EndGetResponse(System.IAsyncResult)
	InnerException: System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception.
	Source: mscorlib
	TargetSite: Void Throw()
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	InnerException: Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	Source: System
	TargetSite: Boolean ProcessHandshake()
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	
2021-11-14 19:56:14.791 Error Server: Error processing request
	*** Error Report ***
	Version: 4.6.4.0
	Command line: /usr/local/lib/emby-server/system/EmbyServer.exe -os freebsd -ffmpeg /usr/local/bin/ffmpeg -ffprobe /usr/local/bin/ffprobe -programdata /var/db/emby-server -updatepackage emby-server-freebsd_{version}_amd64.txz
	Operating system: Unix 12.2.10.0 
	Framework: Mono: 6.8.0.123 (tarball Thu Nov 11 21:32:34 UTC 2021)
	OS/Process: X64/X64
	Runtime: usr/local/lib/mono/4.5/mscorlib.dll
	Processor count: 4
	Data path: /var/db/emby-server
	Application path: /usr/local/lib/emby-server/system
	MediaBrowser.Model.Net.HttpException: MediaBrowser.Model.Net.HttpException: Error: TrustFailure (Authentication failed, see inner exception.) ---> System.Net.WebException: Error: TrustFailure (Authentication failed, see inner exception.) ---> System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception. ---> Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x0021a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.InitConnection (System.Net.WebOperation operation, System.Threading.CancellationToken cancellationToken) [0x00141] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebOperation.Run () [0x0009a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebCompletionSource`1[T].WaitForCompletion () [0x00094] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.RunWithTimeoutWorker[T] (System.Threading.Tasks.Task`1[TResult] workerTask, System.Int32 timeout, System.Action abort, System.Func`1[TResult] aborted, System.Threading.CancellationTokenSource cts) [0x000f8] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.EndGetResponse (System.IAsyncResult asyncResult) [0x00020] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Threading.Tasks.TaskFactory`1[TResult].FromAsyncCoreLogic (System.IAsyncResult iar, System.Func`2[T,TResult] endFunction, System.Action`1[T] endAction, System.Threading.Tasks.Task`1[TResult] promise, System.Boolean requiresSynchronization) [0x0000f] in <0e6cb1433c7b46f598f86593dd03f528>:0 
	   --- End of inner exception stack trace ---
	  at Emby.Server.Implementations.HttpClientManager.HttpClientManager.SendAsyncInternal (MediaBrowser.Common.Net.HttpRequestOptions options, System.String httpMethod) [0x00858] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.HttpClientManager.HttpClientManager.SendAsync (MediaBrowser.Common.Net.HttpRequestOptions options, System.String httpMethod) [0x001f4] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.Updates.InstallationManager.GetAvailablePackagesWithoutRegistrationInfo (System.Boolean enableCache, System.Threading.CancellationToken cancellationToken) [0x000da] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.Updates.InstallationManager.GetAvailablePackages (System.Threading.CancellationToken cancellationToken, System.Boolean withRegistration, System.String packageType, System.Version applicationVersion) [0x00261] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at MediaBrowser.Api.PackageService.Get (MediaBrowser.Api.GetPackages request) [0x000bd] in <59ac92013247492db051b0d14392866c>:0 
	  at Emby.Server.Implementations.Services.ServiceController.GetTaskResult (System.Threading.Tasks.Task task) [0x00081] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.Services.ServiceHandler.ProcessRequestAsync (Emby.Server.Implementations.HttpServer.HttpListenerHost appHost, MediaBrowser.Model.Services.IRequest httpReq, MediaBrowser.Model.Services.IResponse httpRes, Emby.Server.Implementations.Services.RestPath restPath, System.String responseContentType, System.Threading.CancellationToken cancellationToken) [0x001da] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.HttpServer.HttpListenerHost.RequestHandler (MediaBrowser.Model.Services.IRequest httpReq, System.ReadOnlyMemory`1[T] urlString, System.ReadOnlyMemory`1[T] localPath, System.Threading.CancellationToken cancellationToken) [0x00bcc] in <05979d9270ab4dafac52ba5587e41c17>:0 
	Source: mscorlib
	TargetSite: Void Throw()
	InnerException: System.Net.WebException: Error: TrustFailure (Authentication failed, see inner exception.)
	Source: System
	TargetSite: System.Net.WebResponse EndGetResponse(System.IAsyncResult)
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x0021a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.InitConnection (System.Net.WebOperation operation, System.Threading.CancellationToken cancellationToken) [0x00141] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebOperation.Run () [0x0009a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebCompletionSource`1[T].WaitForCompletion () [0x00094] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.RunWithTimeoutWorker[T] (System.Threading.Tasks.Task`1[TResult] workerTask, System.Int32 timeout, System.Action abort, System.Func`1[TResult] aborted, System.Threading.CancellationTokenSource cts) [0x000f8] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.EndGetResponse (System.IAsyncResult asyncResult) [0x00020] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Threading.Tasks.TaskFactory`1[TResult].FromAsyncCoreLogic (System.IAsyncResult iar, System.Func`2[T,TResult] endFunction, System.Action`1[T] endAction, System.Threading.Tasks.Task`1[TResult] promise, System.Boolean requiresSynchronization) [0x0000f] in <0e6cb1433c7b46f598f86593dd03f528>:0 
	InnerException: System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception.
	Source: mscorlib
	TargetSite: Void Throw()
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	InnerException: Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	Source: System
	TargetSite: Boolean ProcessHandshake()
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	
2021-11-14 19:56:14.794 Info Server: http/1.1 Response 500 to X.X.X.X. Time: 332ms. http://emby.xxxx.net:8096/Packages?TargetSystems=Server&IsAdult=false&PackageType=UserInstalled&X-Emby-Client=Emby Web&X-Emby-Device-Name=Firefox&X-Emby-Device-Id=x-x-xx&X-Emby-Client-Version=4.6.4.0

Meanwhile, opening a shell in the jail and checking whether I have the proper CA certs installed is fine

root@emby:~ # openssl s_client -connect www.mb3admin.com:443 -CAfile /etc/ssl/cert.pem
CONNECTED(00000003)
depth=1 C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN =Sectigo RSA Domain Validation Secure Server CA
verify return:1
depth=0 CN = www.mb3admin.com
verify return:1
---
Certificate chain
 0 s:CN = www.mb3admin.com
   i:C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA
 1 s:C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA
   i:C = US, ST = New Jersey, L = Jersey City, O = The USERTRUST Network, CN = USERTrust RSA Certification Authority
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=CN = www.mb3admin.com

issuer=C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA

---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3711 bytes and written 413 bytes
Verification: OK
---
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1.2
    Cipher    : ECDHE-RSA-AES256-GCM-SHA384
    Session-ID: FD835D4B37605817E5F56C1669FE9E6E68071DD027701133B215338EC5DBAA4E
    Session-ID-ctx:
    Master-Key: 4F3EB0D9FC0BBC1A3921A8FD9A6C579566E819861134B7E3A0C9ABC103D40D8A72E79A88318F5FB48C38DB4B5D263EE4
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    TLS session ticket lifetime hint: 300 (seconds)
    TLS session ticket:
    0000 - a1 49 a8 98 b0 83 18 53-63 c2 46 f9 00 59 7b 5c   .I.....Sc.F..Y{\
    0010 - bf 5d 61 77 61 26 17 c7-68 10 b8 d7 ee f2 a3 c3   .]awa&..h.......
    0020 - 3f 48 ce 2e ab af c7 1d-9f 22 29 e9 94 01 e9 70   ?H.......")....p
    0030 - 6f 4c 31 a4 f3 30 67 4a-be 0b d0 84 a2 33 16 b8   oL1..0gJ.....3..
    0040 - d8 4f e5 68 47 24 5f 68-b4 9b f3 27 a0 57 da b3   .O.hG$_h...'.W..
    0050 - bf c9 e1 86 54 95 99 b4-68 41 4e c4 17 a4 a7 de   ....T...hAN.....
    0060 - c9 18 7e d7 78 9a cf 1c-63 74 63 22 08 56 07 87   ..~.x...ctc".V..
    0070 - 91 af 2d 0f a3 bc e4 b8-7d 24 1e e0 af cf db 21   ..-.....}$.....!
    0080 - cd 42 1e d2 9d cd 6b 93-d1 38 cf ea c9 b1 28 36   .B....k..8....(6
    0090 - 68 ef 51 5f f8 83 5b 41-a3 94 c5 81 e5 4d b5 bd   h.Q_..[A.....M..
    00a0 - b8 4d 0e 72 80 40 30 95-14 ef 99 44 4a af 5b 00   .M.r.@0....DJ.[.
    00b0 - dd 2b 66 b6 1b 44 65 5f-c5 14 d9 45 c1 ca 7a ce   .+f..De_...E..z.
    00c0 - 21 11 00 86 7a 67 57 c0-39 5f be 97 4a 15 61 49   !...zgW.9_..J.aI

    Start Time: 1636920291
    Timeout   : 7200 (sec)
    Verify return code: 0 (ok)
    Extended master secret: yes
---

Any advice would be appreciated, I'm new to FreeBSD but I'm a long time emby user, premier subscriber and proponent.

There are dozens of these topics for "TrustFailure" on this specific platform. Not positive if the fix was pushed to 4.6.4.0 but the Beta should resolve this issue as mentioned here.

https://emby.media/community/index.php?/topic/103024-emby-unable-to-get-pictures-from-fanarttv-on-ubuntu/&do=findComment&comment=1086480

Edited November 14, 2021 by Happy2Play

November 14, 2021

6 minutes ago, Happy2Play said:

There are dozens of these topics for "TrustFailure" on this specific platform. Not positive if the fix was pushed to 4.6.4.0 but the Beta should resolve this issue as mentioned here.

https://emby.media/community/index.php?/topic/103024-emby-unable-to-get-pictures-from-fanarttv-on-ubuntu/&do=findComment&comment=1086480

Thanks alot, guess I was searching for the wrong terms.

November 30, 2021

For those who would prefer to install Emby Server from the FreeNAS/TrueNAS plugin interface rather than our sideload packages, please go here and voice your feedback that they should merge these changes in:

https://github.com/freenas/iocage-plugin-emby/pull/6

Thanks.

December 5, 2021

On 30/11/2021 at 18:10, Luke said:

For those who would prefer to install Emby Server from the FreeNAS/TrueNAS plugin interface rather than our sideload packages, please go here and voice your feedback that they should merge these changes in:

https://github.com/freenas/iocage-plugin-emby/pull/6

Thanks.

I just gave the feedback that they should merge this PR. It may fall on deaf ears though. It appears there was a similar PR made in April that still hasn't been merged. Hopefully a PR for the Emby plugin coming from one of the Emby Dev's will have a bit more weight to it, but even then it's been sitting untouched for nearly 3 months already.

December 5, 2021

1 minute ago, MRobi said:

I just gave the feedback that they should merge this PR. It may fall on deaf ears though. It appears there was a similar PR made in April that still hasn't been merged. Hopefully a PR for the Emby plugin coming from one of the Emby Dev's will have a bit more weight to it, but even then it's been sitting untouched for nearly 3 months already.

Thanks !

February 5

I see that Luke's fix for the ffmpeg location was merged in!

However, the rc.d from that fix is missing ffdetect addition that @Duffyx called out in his post:

I've left my pull request up in the hopes that it will get integrated as I have the ffdetect included.

https://github.com/freenas/iocage-plugin-emby/pull/5/commits/df10a1217dfa71b9122681d0b95d2692e97095bb

The other option, since Luke and MRobi seem to get responses is to adopt Duffyx's suggestion that we remove the custom rc.d from the plug-in.

FreeNAS plugin

Recommended Posts

alucryd

Link to comment

Share on other sites

Baenwort

Link to comment

Share on other sites

alucryd

Link to comment

Share on other sites

Vidman

Link to comment

Share on other sites

Luke

Link to comment

Share on other sites

leithouse

Link to comment

Share on other sites

Happy2Play

Link to comment

Share on other sites

leithouse

Link to comment

Share on other sites

Luke

Link to comment

Share on other sites

MRobi

Link to comment

Share on other sites

Luke

Link to comment

Share on other sites

Baenwort

Link to comment

Share on other sites

Create an account or sign in to comment

Create an account

Sign in

Activity