My backups to STACK (transip) stopped working since yesterday with the same error every time: SecureChannelFailure (BadCertificate). I tried to open the url on Chrome and Safari, and both browser seem to accept the certificate without any warnings. Although, I did notice that the certificate was very recently issued by Comodo (not sure who issued it previously).
Since I haven’t specified any particular certificate hash in the Duplicati config, I believe this could be due to mono using outdated certificate store. Is there anyway I can get more info about this error and/or update mono’s cert store?
I’m running Duplicati - 2.0.2.1_beta_2017-08-01 on macOS. Following is the backtrace from the log file:
Fatal error
System.Net.WebException: Error: SecureChannelFailure (BadCertificate) ---> Mono.Security.Interface.TlsException: BadCertificate
at Mono.AppleTls.AppleTlsContext.CheckStatusAndThrow (Mono.AppleTls.SslStatus status, Mono.AppleTls.SslStatus[] acceptable) [0x00070] in <70507a44a84041d599bbfa8f3d0ea5b1>:0
at Mono.AppleTls.AppleTlsContext.ProcessHandshake () [0x00026] in <70507a44a84041d599bbfa8f3d0ea5b1>:0
at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncProtocolRequest asyncRequest, Mono.Net.Security.AsyncOperationStatus status) [0x0002a] in <70507a44a84041d599bbfa8f3d0ea5b1>:0
at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (Mono.Net.Security.AsyncOperationStatus status) [0x0006b] in <70507a44a84041d599bbfa8f3d0ea5b1>:0
at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation () [0x0000d] in <70507a44a84041d599bbfa8f3d0ea5b1>:0
at Mono.Net.Security.AsyncProtocolRequest.StartOperation () [0x0003c] in <70507a44a84041d599bbfa8f3d0ea5b1>:0
at Mono.Net.Security.AsyncProtocolRequest.StartOperation (Mono.Net.Security.AsyncOperation operation) [0x00024] in <70507a44a84041d599bbfa8f3d0ea5b1>:0
at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Net.LazyAsyncResult lazyResult) [0x00057] in <70507a44a84041d599bbfa8f3d0ea5b1>:0
--- End of stack trace from previous location where exception was thrown ---
at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw () [0x0000c] in <c9f8153c41de4f8cbafd0e32f9bf6b28>:0
at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Net.LazyAsyncResult lazyResult) [0x00078] in <70507a44a84041d599bbfa8f3d0ea5b1>:0
at Mono.Net.Security.MobileAuthenticatedStream.AuthenticateAsClient (System.String targetHost, System.Security.Cryptography.X509Certificates.X509CertificateCollection clientCertificates, System.Security.Authentication.SslProtocols enabledSslProtocols, System.Boolean checkCertificateRevocation) [0x0000c] in <70507a44a84041d599bbfa8f3d0ea5b1>:0
at Mono.Net.Security.Private.MonoSslStreamWrapper.AuthenticateAsClient (System.String targetHost, System.Security.Cryptography.X509Certificates.X509CertificateCollection clientCertificates, System.Security.Authentication.SslProtocols enabledSslProtocols, System.Boolean checkCertificateRevocation) [0x00006] in <70507a44a84041d599bbfa8f3d0ea5b1>:0
at Mono.Net.Security.MonoTlsStream.CreateStream (System.Byte[] buffer) [0x0007b] in <70507a44a84041d599bbfa8f3d0ea5b1>:0
at System.Net.WebConnection.CreateStream (System.Net.HttpWebRequest request) [0x00073] in <70507a44a84041d599bbfa8f3d0ea5b1>:0
--- End of inner exception stack trace ---
at Duplicati.Library.Main.BackendManager.List () [0x00038] in <118ad25945a24a3991f7b65e7a45ea1e>:0
at Duplicati.Library.Main.Operation.FilelistProcessor.RemoteListAnalysis (Duplicati.Library.Main.BackendManager backend, Duplicati.Library.Main.Options options, Duplicati.Library.Main.Database.LocalDatabase database, Duplicati.Library.Main.IBackendWriter log, System.String protectedfile) [0x0000d] in <118ad25945a24a3991f7b65e7a45ea1e>:0
at Duplicati.Library.Main.Operation.FilelistProcessor.VerifyRemoteList (Duplicati.Library.Main.BackendManager backend, Duplicati.Library.Main.Options options, Duplicati.Library.Main.Database.LocalDatabase database, Duplicati.Library.Main.IBackendWriter log, System.String protectedfile) [0x00000] in <118ad25945a24a3991f7b65e7a45ea1e>:0
at Duplicati.Library.Main.Operation.BackupHandler.PreBackupVerify (Duplicati.Library.Main.BackendManager backend, System.String protectedfile) [0x000fd] in <118ad25945a24a3991f7b65e7a45ea1e>:0
at Duplicati.Library.Main.Operation.BackupHandler.Run (System.String[] sources, Duplicati.Library.Utility.IFilter filter) [0x0038b] in <118ad25945a24a3991f7b65e7a45ea1e>:0
Update: Nevermind, the backup seems to work after a restart.