Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 8DDB0200BAB for ; Sat, 22 Oct 2016 12:48:03 +0200 (CEST) Received: by cust-asf.ponee.io (Postfix) id 8C5FA160AEF; Sat, 22 Oct 2016 10:48:03 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id D4F20160ADF for ; Sat, 22 Oct 2016 12:48:02 +0200 (CEST) Received: (qmail 71584 invoked by uid 500); 22 Oct 2016 10:48:01 -0000 Mailing-List: contact user-help@couchdb.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: user@couchdb.apache.org Delivered-To: mailing list user@couchdb.apache.org Received: (qmail 71572 invoked by uid 99); 22 Oct 2016 10:48:01 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd2-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 22 Oct 2016 10:48:01 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd2-us-west.apache.org (ASF Mail Server at spamd2-us-west.apache.org) with ESMTP id 365B81A044B for ; Sat, 22 Oct 2016 10:48:01 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd2-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: -0.72 X-Spam-Level: X-Spam-Status: No, score=-0.72 tagged_above=-999 required=6.31 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01] autolearn=disabled Authentication-Results: spamd2-us-west.apache.org (amavisd-new); dkim=pass (1024-bit key) header.d=messagingengine.com Received: from mx1-lw-us.apache.org ([10.40.0.8]) by localhost (spamd2-us-west.apache.org [10.40.0.9]) (amavisd-new, port 10024) with ESMTP id p7iJmi50rvRc for ; Sat, 22 Oct 2016 10:48:00 +0000 (UTC) Received: from out1-smtp.messagingengine.com (out1-smtp.messagingengine.com [66.111.4.25]) by mx1-lw-us.apache.org (ASF Mail Server at mx1-lw-us.apache.org) with ESMTPS id 323E85F1B3 for ; Sat, 22 Oct 2016 10:48:00 +0000 (UTC) Received: from compute2.internal (compute2.nyi.internal [10.202.2.42]) by mailout.nyi.internal (Postfix) with ESMTP id 67FBD20611 for ; Sat, 22 Oct 2016 06:47:57 -0400 (EDT) Received: from frontend2 ([10.202.2.161]) by compute2.internal (MEProxy); Sat, 22 Oct 2016 06:47:57 -0400 DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-sasl-enc:x-sasl-enc; s=smtpout; bh=GBK6ZLWnHfW7KVL QzkeUcPKKB0Q=; b=DbdZj6DA+3psjFWyPDBOYaii7jceUsy9wd+1sf3yrgyp/hT AMd2RebxL0UTYhgeJ3V5DOlKnd/1Oe64odJYGEi+Wd9M2Njkw3WOMUE5InYIl2iq f9Ef/CMMKFGaqdAvBw17NDivm8Dt/nPNCJAqqWvE7IKdWwJWX+DlqY6i+O+Q= X-Sasl-enc: o2BPm81bavwj0Hbb31DEv2Mhxju7jxGOn1tRGCkG0W8g 1477133277 Received: from [198.18.13.70] (19.aa.089f.ip4.static.sl-reverse.com [159.8.170.25]) by mail.messagingengine.com (Postfix) with ESMTPA id 1542ECC0C2 for ; Sat, 22 Oct 2016 06:47:56 -0400 (EDT) From: Robert Samuel Newson Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Mime-Version: 1.0 (Mac OS X Mail 10.0 \(3226\)) Subject: Re: HTTPS problem with CouchDB 1.6.1 Date: Sat, 22 Oct 2016 11:47:58 +0100 References: <11e8ee68-3c51-94d1-6be8-e3e280ec07c6@flimzy.com> To: user In-Reply-To: <11e8ee68-3c51-94d1-6be8-e3e280ec07c6@flimzy.com> Message-Id: <45B1F8E0-D647-41EE-939C-7D63CC4ED939@apache.org> X-Mailer: Apple Mail (2.3226) archived-at: Sat, 22 Oct 2016 10:48:03 -0000 The eacces errors are unrelated. They are caused by the erlang runtime = searching for .beam files in a directory it cannot read. This can be = remedied by modifying the init.d script to 'cd' to a directory that it = can read. The errors are harmless. To your real problem then. Use curl's -k option to get more information = of the TLS failure or visit the couchdb url in a browser, which will = render that information more clearly. What version of erlang are you using? What version of openssl? B. > On 21 Oct 2016, at 14:25, Jonathan Hall wrote: >=20 > I've recently and suddenly started having problems accessing my = CouchDB 1.6.1 installation via HTTPS: >=20 > $ curl -v https://$HOST:6984/ > * Trying $IP... > * Connected to $HOST ($IP) port 6984 (#0) > * found 173 certificates in /etc/ssl/certs/ca-certificates.crt > * found 696 certificates in /etc/ssl/certs > * ALPN, offering h2 > * ALPN, offering http/1.1 > * gnutls_handshake() failed: The TLS connection was non-properly = terminated. > * Closing connection 0 > curl: (35) gnutls_handshake() failed: The TLS connection was = non-properly terminated. >=20 > How can I debug this on the server side? I've turned on debug logs, = but it doesn't show me anything that's apparently useful. I just get a = bunch of lines like this, when I restart the server: >=20 > [Fri, 21 Oct 2016 13:21:13 GMT] [error] [<0.20.0>] = {error_report,<0.9.0>, > {<0.20.0>,std_error, > "File operation error: eacces. = Target: ./tls_connection.beam. Function: get_file. Process: = code_server."}} >=20 > Each one with a different value after Target: (full log here: = http://pastebin.com/h6MmzRrD ). >=20 > I get no logs when I try to connect to the server. >=20 > How can I troubleshoot this? >=20 > Thanks for any help. >=20 > -- Jonathan >=20