You are not logged in.

#1 2008-03-22 03:23:34

daedalus
Member
From: Mountain View
Registered: 2007-09-28
Posts: 50
Website

rtorrent certificates problem

Hey all -

I am trying to get rtorrent up and running with my favorite tracker, but am running into this error:

Tracker: [Peer certificate cannot be authenticated with known CA certificates]

I went ahead and followed the instructions in this thread:
http://bbs.archlinux.org/viewtopic.php?pid=331850

... but that didn't help either.  I have also searched the forums for my tracker and found nothing.  A friend of mine using the same tracker and rtorrent is not having this problem, and says that he did not take any specific configuration steps to account for it.

So what exactly could be happening to cause this?

My ~/.rtorrent.rc:

# This is an example resource file for rTorrent. Copy to
# ~/.rtorrent.rc and enable/modify the options as needed. Remember to
# uncomment the options you wish to enable.

# Maximum and minimum number of peers to connect to per torrent.
#min_peers = 40
#max_peers = 

# Same as above but for seeding completed torrents (-1 = same as downloading)
#min_peers_seed = 10
max_peers_seed = 50

# Maximum number of simultanious uploads per torrent.
#max_uploads = 15

# Global upload and download rate in KiB. "0" for unlimited.
download_rate = 15
upload_rate = 5

# Default directory to save the downloaded torrents.
directory = /media/ZaceMach2/Downloads/Music

# Default session directory. Make sure you don't run multiple instance
# of rtorrent using the same session directory. Perhaps using a
# relative path?
session = /home/daedalus/.session

# Watch a directory for new torrents, and stop those that have been
# deleted.
#schedule = watch_directory,5,5,load_start=./watch/*.torrent
#schedule = untied_directory,5,5,stop_untied=

# Close torrents when diskspace is low.
#schedule = low_diskspace,5,60,close_low_diskspace=100M

# Stop torrents when reaching upload ratio in percent,
# when also reaching total upload in bytes, or when
# reaching final upload ratio in percent.
# example: stop at ratio 2.0 with at least 200 MB uploaded, or else ratio 20.0
#schedule = ratio,60,60,"stop_on_ratio=200,200M,2000"

# The ip address reported to the tracker.
#ip = 127.0.0.1
#ip = rakshasa.no

# The ip address the listening socket and outgoing connections is
# bound to.
#bind = 127.0.0.1
#bind = rakshasa.no

# Port range to use for listening.
port_range = 35100-35600

# Start opening ports at a random position within the port range.
#port_random = no

# Check hash for finished torrents. Might be usefull until the bug is
# fixed that causes lack of diskspace not to be properly reported.
check_hash = yes

# Set whetever the client should try to connect to UDP trackers.
#use_udp_trackers = yes

# Alternative calls to bind and ip that should handle dynamic ip's.
#schedule = ip_tick,0,1800,ip=rakshasa
#schedule = bind_tick,0,1800,bind=rakshasa

# Encryption options, set to none (default) or any combination of the following:
# allow_incoming, try_outgoing, require, require_RC4, enable_retry, prefer_plaintext
#
# The example value allows incoming encrypted connections, starts unencrypted
# outgoing connections but retries with encryption if they fail, preferring
# plaintext to RC4 encryption after the encrypted handshake
#
#encryption = allow_incoming,enable_retry,prefer_plaintext
encryption = allow_incoming,try_outgoing,enable_retry

# Enable DHT support for trackerless torrents or when all trackers are down.
# May be set to "disable" (completely disable DHT), "off" (do not start DHT),
# "auto" (start and stop DHT as needed), or "on" (start DHT immediately).
# The default is "off". For DHT to work, a session directory must be defined.
# 
# dht = auto

# UDP port to use for DHT. 
# 
# dht_port = 6881

# Enable peer exchange (for torrents not marked private)
#
# peer_exchange = yes

#
# Do not modify the following parameters unless you know what you're doing.
#

# Hash read-ahead controls how many MB to request the kernel to read
# ahead. If the value is too low the disk may not be fully utilized,
# while if too high the kernel might not be able to keep the read
# pages in memory thus end up trashing.
#hash_read_ahead = 10

# Interval between attempts to check the hash, in milliseconds.
#hash_interval = 100

# Number of attempts to check the hash while using the mincore status,
# before forcing. Overworked systems might need lower values to get a
# decent hash checking rate.
#hash_max_tries = 10

Last edited by daedalus (2008-03-22 16:02:32)

Offline

#2 2008-03-22 15:20:14

daedalus
Member
From: Mountain View
Registered: 2007-09-28
Posts: 50
Website

Re: rtorrent certificates problem

I found a solution.  You need to add the certificate from your tracker to curl's trusted cert repository:

openssl s_client -connect <your tracker.com>:443 </dev/null 2>/dev/null |sed -n '/BEGIN CERTIFICATE/,/END CERTIFICATE/p' >>/usr/share/curl/curl-ca-bundle.crt

I hope this helps anyone else who has this problem.

Alternatively, you can consult this blog post: http://hokietux.net/blog/?p=9

Last edited by daedalus (2008-07-28 03:33:39)

Offline

Board footer

Powered by FluxBB