[GH-ISSUE #16] centos 7 import openssl11 #13

New issue

Closed

opened 2026-02-27 21:01:12 +03:00 by kerem · 6 comments

kerem commented 2026-02-27 21:01:12 +03:00

Owner

Copy link

Originally created by @sg4r on GitHub (Apr 7, 2021).
Original GitHub issue: https://github.com/sg4r/proxmox-backup-client/issues/16

on centos 7 by default openssl version is 1.0
To build version 1.0.11 needs openssl version 1.1.0 or higher for openssl :: pkcs5 :: scrypt function
how to configure this?

DEP_OPENSSL_VERSION_NUMBER=0x1_01_01_00_0
does not work

build/main.rs have this config
enum Version {
Openssl11x,
Openssl10x,
Libressl,
}

Originally created by @sg4r on GitHub (Apr 7, 2021). Original GitHub issue: https://github.com/sg4r/proxmox-backup-client/issues/16 on centos 7 by default openssl version is 1.0 To build version 1.0.11 needs openssl version 1.1.0 or higher for openssl :: pkcs5 :: scrypt function how to configure this? DEP_OPENSSL_VERSION_NUMBER=0x1_01_01_00_0 does not work build/main.rs have this config enum Version { Openssl11x, Openssl10x, Libressl, }

kerem closed this issue 2026-02-27 21:01:13 +03:00

kerem commented 2026-02-27 21:01:14 +03:00

Author

Owner

Copy link

@sg4r commented on GitHub (Apr 7, 2021):

[dependencies]
openssl = { version = "0.10", features = ["vendored"] }

from https://docs.rs/openssl/0.10.33/openssl/
read making a *-sys crate https://kornel.ski/rust-sys-crate

<!-- gh-comment-id:814651051 --> @sg4r commented on GitHub (Apr 7, 2021): [dependencies] openssl = { version = "0.10", features = ["vendored"] } from https://docs.rs/openssl/0.10.33/openssl/ read making a *-sys crate https://kornel.ski/rust-sys-crate

kerem commented 2026-02-27 21:01:14 +03:00

Author

Owner

Copy link

@wmorgue commented on GitHub (May 7, 2021):

Hi @sg4r 👋🏻

My comrade @skazochnik97 and I solved the issue with the certificate on CentOS 7.

After installing, I got an error below:

proxmox-backup-client version --repository our_proxmox.example:8007

could not connect to server - error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:ssl/statem/statem_clnt.c:1915:
client version: 1.0.11

Hm 🤔 Let's start debugging via strace:

strace proxmox-backup-client version --repository our_proxmox.example:8007
# long long stdout and something interesting

open("/home/centos/proxmox-backup-client/proxmox-backup/target/release/build/openssl-sys-534eff37ea26a8ef/out/openssl-build/install/ssl/openssl.cnf", O_RDONLY) = -1 ENOENT (No such file or directory)

No such file or directory

The Rust language target build directory with openssl.cnf config file.

---

2-step solution

Create the missing directory:

mkdir -p /home/centos/proxmox-backup-client/proxmox-backup/target/release/build/openssl-sys-534eff37ea26a8ef/out/openssl-build/install/ssl

And finally the last magical step:

ln -s /etc/ssl/certs/ca-bundle.crt /home/centos/proxmox-backup-client/proxmox-backup/target/release/build/openssl-sys-534eff37ea26a8ef/out/openssl-build/install/ssl/cert.pem

Let's try again and we'll see:

proxmox-backup-client version --repository our_proxmox.example:8007
Password for "root@pam": *****************************************
client version: 1.0.11
server version: 1.1.1

That's all 🎉
Maybe the problem is in the build of the rpm package.

Environment: CenOS 7, OpenSSL 1.0.2k-fips 26 Jan 2017 and proxmox-backup-1.0.11-2.x86_64.el7.rpm.

<!-- gh-comment-id:834371268 --> @wmorgue commented on GitHub (May 7, 2021): Hi @sg4r 👋🏻 My comrade @skazochnik97 and I solved the issue with the certificate on CentOS 7. After installing, I got an error below: ```bash proxmox-backup-client version --repository our_proxmox.example:8007 could not connect to server - error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:ssl/statem/statem_clnt.c:1915: client version: 1.0.11 ``` Hm 🤔 Let's start debugging via `strace`: ```bash strace proxmox-backup-client version --repository our_proxmox.example:8007 # long long stdout and something interesting open("/home/centos/proxmox-backup-client/proxmox-backup/target/release/build/openssl-sys-534eff37ea26a8ef/out/openssl-build/install/ssl/openssl.cnf", O_RDONLY) = -1 ENOENT (No such file or directory) ``` > No such file or directory The Rust language target build directory with `openssl.cnf` config file. --- ### 2-step solution Create the missing directory: ```bash mkdir -p /home/centos/proxmox-backup-client/proxmox-backup/target/release/build/openssl-sys-534eff37ea26a8ef/out/openssl-build/install/ssl ``` And finally the last magical step: ```bash ln -s /etc/ssl/certs/ca-bundle.crt /home/centos/proxmox-backup-client/proxmox-backup/target/release/build/openssl-sys-534eff37ea26a8ef/out/openssl-build/install/ssl/cert.pem ``` Let's try again and we'll see: ```bash proxmox-backup-client version --repository our_proxmox.example:8007 Password for "root@pam": ***************************************** client version: 1.0.11 server version: 1.1.1 ``` That's all 🎉 Maybe the problem is in the build of the rpm package. Environment: CenOS 7, OpenSSL 1.0.2k-fips 26 Jan 2017 and `proxmox-backup-1.0.11-2.x86_64.el7.rpm`.

kerem commented 2026-02-27 21:01:14 +03:00

Author

Owner

Copy link

@charliehu commented on GitHub (May 25, 2021):

Im also can reproducate this issue.

<!-- gh-comment-id:848238334 --> @charliehu commented on GitHub (May 25, 2021): Im also can reproducate this issue.

kerem commented 2026-02-27 21:01:14 +03:00

Author

Owner

Copy link

@francescor commented on GitHub (Jan 15, 2022):

wmorgue what a genius!!! it works!

<!-- gh-comment-id:1013660139 --> @francescor commented on GitHub (Jan 15, 2022): wmorgue what a genius!!! it works!

kerem commented 2026-02-27 21:01:14 +03:00

Author

Owner

Copy link

@francescor commented on GitHub (Jan 15, 2022):

Please note that the compiled version has this issue for VM with only one CPU https://forum.proxmox.com/threads/using-backup-client-from-within-1-core-vm-stuck-with-futex_wait_private.86136/

solved with the v1.0.6-beta release (client version: 1.0.6 )

<!-- gh-comment-id:1013671847 --> @francescor commented on GitHub (Jan 15, 2022): Please note that the compiled version has this issue for VM with only one CPU https://forum.proxmox.com/threads/using-backup-client-from-within-1-core-vm-stuck-with-futex_wait_private.86136/ solved with the v1.0.6-beta release (client version: 1.0.6 )

kerem commented 2026-02-27 21:01:14 +03:00

Author

Owner

Copy link

@sg4r commented on GitHub (Jan 23, 2022):

hi, i find where set variable to use openssl11 from epel for build proxmox-backup-client
yum install openssl11 openssl11-libs

export OPENSSL_INCLUDE_DIR=/usr/include/openssl11/
export OPENSSL_LIB_DIR=/usr/lib64/openssl11/

<!-- gh-comment-id:1019544626 --> @sg4r commented on GitHub (Jan 23, 2022): hi, i find where set variable to use openssl11 from epel for build proxmox-backup-client yum install openssl11 openssl11-libs export OPENSSL_INCLUDE_DIR=/usr/include/openssl11/ export OPENSSL_LIB_DIR=/usr/lib64/openssl11/

kerem referenced this issue 2026-02-27 21:01:18 +03:00

[PR #13] [MERGED] fix: map_err build error #22

kerem referenced this issue 2026-02-27 21:01:18 +03:00

[PR #15] [MERGED] V1.0.11 #23

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

v2.2.2

v2.1.2

v1.0.13

v1.0.11

v1.0.6

v2.2.2

v2.1.2

v1.0.11

v1.0.6-beta

Labels

Clear labels   

pull-request

Mirrored from GitHub Pull Request

No labels

pull-request

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/proxmox-backup-client#13

No description provided.