Jump to content

FreeNAS plugin


Luke

Recommended Posts

3 hours ago, alucryd said:

@Baenwort Thanks! Meanwhile, I pushed a new branch to our unofficial plugin, tested on a TrueNAS VM, this will have to do while the official plugin is updated: https://github.com/MediaBrowser/iocage-amd64/tree/truenas12

Thanks @alucrydyou can tell I'm not the best one for this as I'm not seeing (based upon my understanding of TrueNAS plugin system) how your artefact.git can function without a rc.d equivalent to: https://github.com/freenas/iocage-plugin-emby/tree/master/overlay/usr/local/etc/rc.d 

My understanding is that is needed to configure the jail properly.

Link to comment
Share on other sites

@Baenwort Their script is an overlay meant to replace our own service. We just use ours, it's included in our tarball that's downloaded in the post_install.sh script.

Link to comment
Share on other sites

  • 1 month later...
On 6/4/2021 at 3:35 AM, Vidman said:

Any time frame for any of the emby plugins to be updated to 4.6?

Everything should be at this point.

Link to comment
Share on other sites

  • 5 months later...

I've got a fresh emby install via Emby Server plugin on a new TrueNas (TrueNAS-12.0-U6.1) install and it seems like the server isn't sourcing CA data from /etc/ssl/cert.pem.

 

Attempting to fetch the list of available plugins results in the following error:

2021-11-14 19:56:14.467 Info HttpClient: HttpClientManager GET: https://www.mb3admin.com/admin/service/EmbyPackages.json
2021-11-14 19:56:14.786 Error HttpClient: Error TrustFailure getting response from 
	*** Error Report ***
	Version: 4.6.4.0
	Command line: /usr/local/lib/emby-server/system/EmbyServer.exe -os freebsd -ffmpeg /usr/local/bin/ffmpeg -ffprobe /usr/local/bin/ffprobe -programdata /var/db/emby-server -updatepackage emby-server-freebsd_{version}_amd64.txz
	Operating system: Unix 12.2.10.0 
	Framework: Mono: 6.8.0.123 (tarball Thu Nov 11 21:32:34 UTC 2021)
	OS/Process: X64/X64
	Runtime: usr/local/lib/mono/4.5/mscorlib.dll
	Processor count: 4
	Data path: /var/db/emby-server
	Application path: /usr/local/lib/emby-server/system
	System.Net.WebException: System.Net.WebException: Error: TrustFailure (Authentication failed, see inner exception.) ---> System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception. ---> Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x0021a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.InitConnection (System.Net.WebOperation operation, System.Threading.CancellationToken cancellationToken) [0x00141] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebOperation.Run () [0x0009a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebCompletionSource`1[T].WaitForCompletion () [0x00094] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.RunWithTimeoutWorker[T] (System.Threading.Tasks.Task`1[TResult] workerTask, System.Int32 timeout, System.Action abort, System.Func`1[TResult] aborted, System.Threading.CancellationTokenSource cts) [0x000f8] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.EndGetResponse (System.IAsyncResult asyncResult) [0x00020] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Threading.Tasks.TaskFactory`1[TResult].FromAsyncCoreLogic (System.IAsyncResult iar, System.Func`2[T,TResult] endFunction, System.Action`1[T] endAction, System.Threading.Tasks.Task`1[TResult] promise, System.Boolean requiresSynchronization) [0x0000f] in <0e6cb1433c7b46f598f86593dd03f528>:0 
	Source: System
	TargetSite: System.Net.WebResponse EndGetResponse(System.IAsyncResult)
	InnerException: System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception.
	Source: mscorlib
	TargetSite: Void Throw()
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	InnerException: Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	Source: System
	TargetSite: Boolean ProcessHandshake()
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	
2021-11-14 19:56:14.791 Error Server: Error processing request
	*** Error Report ***
	Version: 4.6.4.0
	Command line: /usr/local/lib/emby-server/system/EmbyServer.exe -os freebsd -ffmpeg /usr/local/bin/ffmpeg -ffprobe /usr/local/bin/ffprobe -programdata /var/db/emby-server -updatepackage emby-server-freebsd_{version}_amd64.txz
	Operating system: Unix 12.2.10.0 
	Framework: Mono: 6.8.0.123 (tarball Thu Nov 11 21:32:34 UTC 2021)
	OS/Process: X64/X64
	Runtime: usr/local/lib/mono/4.5/mscorlib.dll
	Processor count: 4
	Data path: /var/db/emby-server
	Application path: /usr/local/lib/emby-server/system
	MediaBrowser.Model.Net.HttpException: MediaBrowser.Model.Net.HttpException: Error: TrustFailure (Authentication failed, see inner exception.) ---> System.Net.WebException: Error: TrustFailure (Authentication failed, see inner exception.) ---> System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception. ---> Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x0021a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.InitConnection (System.Net.WebOperation operation, System.Threading.CancellationToken cancellationToken) [0x00141] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebOperation.Run () [0x0009a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebCompletionSource`1[T].WaitForCompletion () [0x00094] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.RunWithTimeoutWorker[T] (System.Threading.Tasks.Task`1[TResult] workerTask, System.Int32 timeout, System.Action abort, System.Func`1[TResult] aborted, System.Threading.CancellationTokenSource cts) [0x000f8] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.EndGetResponse (System.IAsyncResult asyncResult) [0x00020] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Threading.Tasks.TaskFactory`1[TResult].FromAsyncCoreLogic (System.IAsyncResult iar, System.Func`2[T,TResult] endFunction, System.Action`1[T] endAction, System.Threading.Tasks.Task`1[TResult] promise, System.Boolean requiresSynchronization) [0x0000f] in <0e6cb1433c7b46f598f86593dd03f528>:0 
	   --- End of inner exception stack trace ---
	  at Emby.Server.Implementations.HttpClientManager.HttpClientManager.SendAsyncInternal (MediaBrowser.Common.Net.HttpRequestOptions options, System.String httpMethod) [0x00858] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.HttpClientManager.HttpClientManager.SendAsync (MediaBrowser.Common.Net.HttpRequestOptions options, System.String httpMethod) [0x001f4] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.Updates.InstallationManager.GetAvailablePackagesWithoutRegistrationInfo (System.Boolean enableCache, System.Threading.CancellationToken cancellationToken) [0x000da] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.Updates.InstallationManager.GetAvailablePackages (System.Threading.CancellationToken cancellationToken, System.Boolean withRegistration, System.String packageType, System.Version applicationVersion) [0x00261] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at MediaBrowser.Api.PackageService.Get (MediaBrowser.Api.GetPackages request) [0x000bd] in <59ac92013247492db051b0d14392866c>:0 
	  at Emby.Server.Implementations.Services.ServiceController.GetTaskResult (System.Threading.Tasks.Task task) [0x00081] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.Services.ServiceHandler.ProcessRequestAsync (Emby.Server.Implementations.HttpServer.HttpListenerHost appHost, MediaBrowser.Model.Services.IRequest httpReq, MediaBrowser.Model.Services.IResponse httpRes, Emby.Server.Implementations.Services.RestPath restPath, System.String responseContentType, System.Threading.CancellationToken cancellationToken) [0x001da] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.HttpServer.HttpListenerHost.RequestHandler (MediaBrowser.Model.Services.IRequest httpReq, System.ReadOnlyMemory`1[T] urlString, System.ReadOnlyMemory`1[T] localPath, System.Threading.CancellationToken cancellationToken) [0x00bcc] in <05979d9270ab4dafac52ba5587e41c17>:0 
	Source: mscorlib
	TargetSite: Void Throw()
	InnerException: System.Net.WebException: Error: TrustFailure (Authentication failed, see inner exception.)
	Source: System
	TargetSite: System.Net.WebResponse EndGetResponse(System.IAsyncResult)
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x0021a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.InitConnection (System.Net.WebOperation operation, System.Threading.CancellationToken cancellationToken) [0x00141] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebOperation.Run () [0x0009a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebCompletionSource`1[T].WaitForCompletion () [0x00094] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.RunWithTimeoutWorker[T] (System.Threading.Tasks.Task`1[TResult] workerTask, System.Int32 timeout, System.Action abort, System.Func`1[TResult] aborted, System.Threading.CancellationTokenSource cts) [0x000f8] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.EndGetResponse (System.IAsyncResult asyncResult) [0x00020] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Threading.Tasks.TaskFactory`1[TResult].FromAsyncCoreLogic (System.IAsyncResult iar, System.Func`2[T,TResult] endFunction, System.Action`1[T] endAction, System.Threading.Tasks.Task`1[TResult] promise, System.Boolean requiresSynchronization) [0x0000f] in <0e6cb1433c7b46f598f86593dd03f528>:0 
	InnerException: System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception.
	Source: mscorlib
	TargetSite: Void Throw()
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	InnerException: Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	Source: System
	TargetSite: Boolean ProcessHandshake()
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	
2021-11-14 19:56:14.794 Info Server: http/1.1 Response 500 to X.X.X.X. Time: 332ms. http://emby.xxxx.net:8096/Packages?TargetSystems=Server&IsAdult=false&PackageType=UserInstalled&X-Emby-Client=Emby Web&X-Emby-Device-Name=Firefox&X-Emby-Device-Id=x-x-xx&X-Emby-Client-Version=4.6.4.0

 

Meanwhile, opening a shell in the jail and checking whether I have the proper CA certs installed is fine

root@emby:~ # openssl s_client -connect www.mb3admin.com:443 -CAfile /etc/ssl/cert.pem
CONNECTED(00000003)
depth=1 C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN =Sectigo RSA Domain Validation Secure Server CA
verify return:1
depth=0 CN = www.mb3admin.com
verify return:1
---
Certificate chain
 0 s:CN = www.mb3admin.com
   i:C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA
 1 s:C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA
   i:C = US, ST = New Jersey, L = Jersey City, O = The USERTRUST Network, CN = USERTrust RSA Certification Authority
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=CN = www.mb3admin.com

issuer=C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA

---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3711 bytes and written 413 bytes
Verification: OK
---
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1.2
    Cipher    : ECDHE-RSA-AES256-GCM-SHA384
    Session-ID: FD835D4B37605817E5F56C1669FE9E6E68071DD027701133B215338EC5DBAA4E
    Session-ID-ctx:
    Master-Key: 4F3EB0D9FC0BBC1A3921A8FD9A6C579566E819861134B7E3A0C9ABC103D40D8A72E79A88318F5FB48C38DB4B5D263EE4
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    TLS session ticket lifetime hint: 300 (seconds)
    TLS session ticket:
    0000 - a1 49 a8 98 b0 83 18 53-63 c2 46 f9 00 59 7b 5c   .I.....Sc.F..Y{\
    0010 - bf 5d 61 77 61 26 17 c7-68 10 b8 d7 ee f2 a3 c3   .]awa&..h.......
    0020 - 3f 48 ce 2e ab af c7 1d-9f 22 29 e9 94 01 e9 70   ?H.......")....p
    0030 - 6f 4c 31 a4 f3 30 67 4a-be 0b d0 84 a2 33 16 b8   oL1..0gJ.....3..
    0040 - d8 4f e5 68 47 24 5f 68-b4 9b f3 27 a0 57 da b3   .O.hG$_h...'.W..
    0050 - bf c9 e1 86 54 95 99 b4-68 41 4e c4 17 a4 a7 de   ....T...hAN.....
    0060 - c9 18 7e d7 78 9a cf 1c-63 74 63 22 08 56 07 87   ..~.x...ctc".V..
    0070 - 91 af 2d 0f a3 bc e4 b8-7d 24 1e e0 af cf db 21   ..-.....}$.....!
    0080 - cd 42 1e d2 9d cd 6b 93-d1 38 cf ea c9 b1 28 36   .B....k..8....(6
    0090 - 68 ef 51 5f f8 83 5b 41-a3 94 c5 81 e5 4d b5 bd   h.Q_..[A.....M..
    00a0 - b8 4d 0e 72 80 40 30 95-14 ef 99 44 4a af 5b 00   .M.r.@0....DJ.[.
    00b0 - dd 2b 66 b6 1b 44 65 5f-c5 14 d9 45 c1 ca 7a ce   .+f..De_...E..z.
    00c0 - 21 11 00 86 7a 67 57 c0-39 5f be 97 4a 15 61 49   !...zgW.9_..J.aI

    Start Time: 1636920291
    Timeout   : 7200 (sec)
    Verify return code: 0 (ok)
    Extended master secret: yes
---

 

Any advice would be appreciated, I'm new to FreeBSD but I'm a long time emby user, premier subscriber and proponent.

Link to comment
Share on other sites

4 minutes ago, leithouse said:

I've got a fresh emby install via Emby Server plugin on a new TrueNas (TrueNAS-12.0-U6.1) install and it seems like the server isn't sourcing CA data from /etc/ssl/cert.pem.

 

Attempting to fetch the list of available plugins results in the following error:

2021-11-14 19:56:14.467 Info HttpClient: HttpClientManager GET: https://www.mb3admin.com/admin/service/EmbyPackages.json
2021-11-14 19:56:14.786 Error HttpClient: Error TrustFailure getting response from 
	*** Error Report ***
	Version: 4.6.4.0
	Command line: /usr/local/lib/emby-server/system/EmbyServer.exe -os freebsd -ffmpeg /usr/local/bin/ffmpeg -ffprobe /usr/local/bin/ffprobe -programdata /var/db/emby-server -updatepackage emby-server-freebsd_{version}_amd64.txz
	Operating system: Unix 12.2.10.0 
	Framework: Mono: 6.8.0.123 (tarball Thu Nov 11 21:32:34 UTC 2021)
	OS/Process: X64/X64
	Runtime: usr/local/lib/mono/4.5/mscorlib.dll
	Processor count: 4
	Data path: /var/db/emby-server
	Application path: /usr/local/lib/emby-server/system
	System.Net.WebException: System.Net.WebException: Error: TrustFailure (Authentication failed, see inner exception.) ---> System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception. ---> Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x0021a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.InitConnection (System.Net.WebOperation operation, System.Threading.CancellationToken cancellationToken) [0x00141] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebOperation.Run () [0x0009a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebCompletionSource`1[T].WaitForCompletion () [0x00094] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.RunWithTimeoutWorker[T] (System.Threading.Tasks.Task`1[TResult] workerTask, System.Int32 timeout, System.Action abort, System.Func`1[TResult] aborted, System.Threading.CancellationTokenSource cts) [0x000f8] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.EndGetResponse (System.IAsyncResult asyncResult) [0x00020] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Threading.Tasks.TaskFactory`1[TResult].FromAsyncCoreLogic (System.IAsyncResult iar, System.Func`2[T,TResult] endFunction, System.Action`1[T] endAction, System.Threading.Tasks.Task`1[TResult] promise, System.Boolean requiresSynchronization) [0x0000f] in <0e6cb1433c7b46f598f86593dd03f528>:0 
	Source: System
	TargetSite: System.Net.WebResponse EndGetResponse(System.IAsyncResult)
	InnerException: System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception.
	Source: mscorlib
	TargetSite: Void Throw()
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	InnerException: Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	Source: System
	TargetSite: Boolean ProcessHandshake()
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	
2021-11-14 19:56:14.791 Error Server: Error processing request
	*** Error Report ***
	Version: 4.6.4.0
	Command line: /usr/local/lib/emby-server/system/EmbyServer.exe -os freebsd -ffmpeg /usr/local/bin/ffmpeg -ffprobe /usr/local/bin/ffprobe -programdata /var/db/emby-server -updatepackage emby-server-freebsd_{version}_amd64.txz
	Operating system: Unix 12.2.10.0 
	Framework: Mono: 6.8.0.123 (tarball Thu Nov 11 21:32:34 UTC 2021)
	OS/Process: X64/X64
	Runtime: usr/local/lib/mono/4.5/mscorlib.dll
	Processor count: 4
	Data path: /var/db/emby-server
	Application path: /usr/local/lib/emby-server/system
	MediaBrowser.Model.Net.HttpException: MediaBrowser.Model.Net.HttpException: Error: TrustFailure (Authentication failed, see inner exception.) ---> System.Net.WebException: Error: TrustFailure (Authentication failed, see inner exception.) ---> System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception. ---> Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	   --- End of inner exception stack trace ---
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x0021a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.InitConnection (System.Net.WebOperation operation, System.Threading.CancellationToken cancellationToken) [0x00141] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebOperation.Run () [0x0009a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebCompletionSource`1[T].WaitForCompletion () [0x00094] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.RunWithTimeoutWorker[T] (System.Threading.Tasks.Task`1[TResult] workerTask, System.Int32 timeout, System.Action abort, System.Func`1[TResult] aborted, System.Threading.CancellationTokenSource cts) [0x000f8] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.EndGetResponse (System.IAsyncResult asyncResult) [0x00020] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Threading.Tasks.TaskFactory`1[TResult].FromAsyncCoreLogic (System.IAsyncResult iar, System.Func`2[T,TResult] endFunction, System.Action`1[T] endAction, System.Threading.Tasks.Task`1[TResult] promise, System.Boolean requiresSynchronization) [0x0000f] in <0e6cb1433c7b46f598f86593dd03f528>:0 
	   --- End of inner exception stack trace ---
	  at Emby.Server.Implementations.HttpClientManager.HttpClientManager.SendAsyncInternal (MediaBrowser.Common.Net.HttpRequestOptions options, System.String httpMethod) [0x00858] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.HttpClientManager.HttpClientManager.SendAsync (MediaBrowser.Common.Net.HttpRequestOptions options, System.String httpMethod) [0x001f4] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.Updates.InstallationManager.GetAvailablePackagesWithoutRegistrationInfo (System.Boolean enableCache, System.Threading.CancellationToken cancellationToken) [0x000da] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.Updates.InstallationManager.GetAvailablePackages (System.Threading.CancellationToken cancellationToken, System.Boolean withRegistration, System.String packageType, System.Version applicationVersion) [0x00261] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at MediaBrowser.Api.PackageService.Get (MediaBrowser.Api.GetPackages request) [0x000bd] in <59ac92013247492db051b0d14392866c>:0 
	  at Emby.Server.Implementations.Services.ServiceController.GetTaskResult (System.Threading.Tasks.Task task) [0x00081] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.Services.ServiceHandler.ProcessRequestAsync (Emby.Server.Implementations.HttpServer.HttpListenerHost appHost, MediaBrowser.Model.Services.IRequest httpReq, MediaBrowser.Model.Services.IResponse httpRes, Emby.Server.Implementations.Services.RestPath restPath, System.String responseContentType, System.Threading.CancellationToken cancellationToken) [0x001da] in <05979d9270ab4dafac52ba5587e41c17>:0 
	  at Emby.Server.Implementations.HttpServer.HttpListenerHost.RequestHandler (MediaBrowser.Model.Services.IRequest httpReq, System.ReadOnlyMemory`1[T] urlString, System.ReadOnlyMemory`1[T] localPath, System.Threading.CancellationToken cancellationToken) [0x00bcc] in <05979d9270ab4dafac52ba5587e41c17>:0 
	Source: mscorlib
	TargetSite: Void Throw()
	InnerException: System.Net.WebException: Error: TrustFailure (Authentication failed, see inner exception.)
	Source: System
	TargetSite: System.Net.WebResponse EndGetResponse(System.IAsyncResult)
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x0021a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.InitConnection (System.Net.WebOperation operation, System.Threading.CancellationToken cancellationToken) [0x00141] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebOperation.Run () [0x0009a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebCompletionSource`1[T].WaitForCompletion () [0x00094] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.RunWithTimeoutWorker[T] (System.Threading.Tasks.Task`1[TResult] workerTask, System.Int32 timeout, System.Action abort, System.Func`1[TResult] aborted, System.Threading.CancellationTokenSource cts) [0x000f8] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.HttpWebRequest.EndGetResponse (System.IAsyncResult asyncResult) [0x00020] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Threading.Tasks.TaskFactory`1[TResult].FromAsyncCoreLogic (System.IAsyncResult iar, System.Func`2[T,TResult] endFunction, System.Action`1[T] endAction, System.Threading.Tasks.Task`1[TResult] promise, System.Boolean requiresSynchronization) [0x0000f] in <0e6cb1433c7b46f598f86593dd03f528>:0 
	InnerException: System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception.
	Source: mscorlib
	TargetSite: Void Throw()
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	InnerException: Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
	  at /wrkdirs/usr/ports/lang/mono6.8/work/mono-6.8.0.123/external/boringssl/ssl/handshake_client.c:1132
	Source: System
	TargetSite: Boolean ProcessHandshake()
	  at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
	  at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	  at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <2deb8ccd8f0546038e28d46e7bcc1998>:0 
	
2021-11-14 19:56:14.794 Info Server: http/1.1 Response 500 to X.X.X.X. Time: 332ms. http://emby.xxxx.net:8096/Packages?TargetSystems=Server&IsAdult=false&PackageType=UserInstalled&X-Emby-Client=Emby Web&X-Emby-Device-Name=Firefox&X-Emby-Device-Id=x-x-xx&X-Emby-Client-Version=4.6.4.0

 

Meanwhile, opening a shell in the jail and checking whether I have the proper CA certs installed is fine

root@emby:~ # openssl s_client -connect www.mb3admin.com:443 -CAfile /etc/ssl/cert.pem
CONNECTED(00000003)
depth=1 C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN =Sectigo RSA Domain Validation Secure Server CA
verify return:1
depth=0 CN = www.mb3admin.com
verify return:1
---
Certificate chain
 0 s:CN = www.mb3admin.com
   i:C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA
 1 s:C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA
   i:C = US, ST = New Jersey, L = Jersey City, O = The USERTRUST Network, CN = USERTrust RSA Certification Authority
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=CN = www.mb3admin.com

issuer=C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA

---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3711 bytes and written 413 bytes
Verification: OK
---
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1.2
    Cipher    : ECDHE-RSA-AES256-GCM-SHA384
    Session-ID: FD835D4B37605817E5F56C1669FE9E6E68071DD027701133B215338EC5DBAA4E
    Session-ID-ctx:
    Master-Key: 4F3EB0D9FC0BBC1A3921A8FD9A6C579566E819861134B7E3A0C9ABC103D40D8A72E79A88318F5FB48C38DB4B5D263EE4
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    TLS session ticket lifetime hint: 300 (seconds)
    TLS session ticket:
    0000 - a1 49 a8 98 b0 83 18 53-63 c2 46 f9 00 59 7b 5c   .I.....Sc.F..Y{\
    0010 - bf 5d 61 77 61 26 17 c7-68 10 b8 d7 ee f2 a3 c3   .]awa&..h.......
    0020 - 3f 48 ce 2e ab af c7 1d-9f 22 29 e9 94 01 e9 70   ?H.......")....p
    0030 - 6f 4c 31 a4 f3 30 67 4a-be 0b d0 84 a2 33 16 b8   oL1..0gJ.....3..
    0040 - d8 4f e5 68 47 24 5f 68-b4 9b f3 27 a0 57 da b3   .O.hG$_h...'.W..
    0050 - bf c9 e1 86 54 95 99 b4-68 41 4e c4 17 a4 a7 de   ....T...hAN.....
    0060 - c9 18 7e d7 78 9a cf 1c-63 74 63 22 08 56 07 87   ..~.x...ctc".V..
    0070 - 91 af 2d 0f a3 bc e4 b8-7d 24 1e e0 af cf db 21   ..-.....}$.....!
    0080 - cd 42 1e d2 9d cd 6b 93-d1 38 cf ea c9 b1 28 36   .B....k..8....(6
    0090 - 68 ef 51 5f f8 83 5b 41-a3 94 c5 81 e5 4d b5 bd   h.Q_..[A.....M..
    00a0 - b8 4d 0e 72 80 40 30 95-14 ef 99 44 4a af 5b 00   .M.r.@0....DJ.[.
    00b0 - dd 2b 66 b6 1b 44 65 5f-c5 14 d9 45 c1 ca 7a ce   .+f..De_...E..z.
    00c0 - 21 11 00 86 7a 67 57 c0-39 5f be 97 4a 15 61 49   !...zgW.9_..J.aI

    Start Time: 1636920291
    Timeout   : 7200 (sec)
    Verify return code: 0 (ok)
    Extended master secret: yes
---

 

Any advice would be appreciated, I'm new to FreeBSD but I'm a long time emby user, premier subscriber and proponent.

There are dozens of these topics for "TrustFailure" on this specific platform.  Not positive if the fix was pushed to 4.6.4.0 but the Beta should resolve this issue as mentioned here.

https://emby.media/community/index.php?/topic/103024-emby-unable-to-get-pictures-from-fanarttv-on-ubuntu/&do=findComment&comment=1086480

 

Edited by Happy2Play
Link to comment
Share on other sites

6 minutes ago, Happy2Play said:

There are dozens of these topics for "TrustFailure" on this specific platform.  Not positive if the fix was pushed to 4.6.4.0 but the Beta should resolve this issue as mentioned here.

https://emby.media/community/index.php?/topic/103024-emby-unable-to-get-pictures-from-fanarttv-on-ubuntu/&do=findComment&comment=1086480

 

Thanks alot, guess I was searching for the wrong terms.

Link to comment
Share on other sites

  • 3 weeks later...
On 30/11/2021 at 18:10, Luke said:

For those who would prefer to install Emby Server from the FreeNAS/TrueNAS plugin interface rather than our sideload packages, please go here and voice your feedback that they should merge these changes in:

https://github.com/freenas/iocage-plugin-emby/pull/6

Thanks.

I just gave the feedback that they should merge this PR. It may fall on deaf ears though. It appears there was a similar PR made in April that still hasn't been merged. Hopefully a PR for the Emby plugin coming from one of the Emby Dev's will have a bit more weight to it, but even then it's been sitting untouched for nearly 3 months already.

Link to comment
Share on other sites

1 minute ago, MRobi said:

I just gave the feedback that they should merge this PR. It may fall on deaf ears though. It appears there was a similar PR made in April that still hasn't been merged. Hopefully a PR for the Emby plugin coming from one of the Emby Dev's will have a bit more weight to it, but even then it's been sitting untouched for nearly 3 months already.

Thanks !

Link to comment
Share on other sites

  • 2 months later...

I see that Luke's fix for the ffmpeg location was merged in!

However, the rc.d from that fix is missing ffdetect addition that @Duffyx called out in his post: 

I've left my pull request up in the hopes that it will get integrated as I have the ffdetect included. 

https://github.com/freenas/iocage-plugin-emby/pull/5/commits/df10a1217dfa71b9122681d0b95d2692e97095bb 

The other option, since Luke and MRobi seem to get responses is to adopt Duffyx's suggestion that we remove the custom rc.d from the plug-in.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...