Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Centos6 is failing to download Ant-Contrib.jar due to Certificate error #2486

Closed
Haroon-Khel opened this issue Feb 23, 2022 · 1 comment
Closed

Centos6 is failing to download Ant-Contrib.jar due to Certificate error #2486

Haroon-Khel opened this issue Feb 23, 2022 · 1 comment
Assignees
@Haroon-Khel
Labels
ansible
Milestone
2022-03 (March)

Comments

@Haroon-Khel
Copy link
Contributor

Haroon-Khel commented Feb 23, 2022
edited
Loading 

04:05:02 TASK [Ant-Contrib : Download ant-contrib] **************************************
04:05:04 FAILED - RETRYING: Download ant-contrib (3 retries left).
04:05:10 FAILED - RETRYING: Download ant-contrib (2 retries left).
04:05:16 FAILED - RETRYING: Download ant-contrib (1 retries left).
04:05:22 fatal: [127.0.0.1]: FAILED! => {"attempts": 3, "changed": false, "dest": "/tmp/", "elapsed": 0, "gid": 0, "group": "root", "mode": "01777", "msg": "Request failed: <urlopen error [Errno 1] _ssl.c:492: error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure>", "owner": "root", "secontext": "system_u:object_r:tmp_t:s0", "size": 4096, "state": "directory", "uid": 0, "url": "https://sourceforge.net/projects/ant-contrib/files/ant-contrib/ant-contrib-1.0b2/ant-contrib-1.0b2-bin.tar.gz"}

In a CentOS6 ssh environment

[root@build-digitalocean-centos69-x64-2 ~]# wget https://sourceforge.net/projects/ant-contrib/files/ant-contrib/ant-contrib-1.0b2/ant-contrib-1.0b2-bin.tar.gz
...
--2022-02-23 13:43:18-- https://downloads.sourceforge.net/project/ant-contrib/ant-contrib/ant-contrib-1.0b2/ant-contrib-1.0b2-bin.tar.gz?ts=gAAAAABiFjn2Z4yVUpbYRIo3hCJh1MWY0zNoeX0WaaMQtlfLJARNY4GCBiwltFeSNgPIkhZzt4MrBvI-4EVRrW9Pv0xd9iSgVw%3D%3D&use_mirror=netix&r=
Resolving downloads.sourceforge.net... 204.68.111.105
Connecting to downloads.sourceforge.net|204.68.111.105|:443... connected.
ERROR: cannot verify downloads.sourceforge.net's certificate, issued by `/C=US/O=Let\'s Encrypt/CN=R3':
 Issued certificate has expired.
To connect to downloads.sourceforge.net insecurely, use `--no-check-certificate'.

Can be seen in VPC and CentOS6 PR check job

VPC failure began 18th Feb
https://ci.adoptopenjdk.net/job/VagrantPlaybookCheck/1394/OS=CentOS6,label=vagrant/console

CentOS6 PR check job
https://github.com/adoptium/infrastructure/runs/5303764995?check_suite_focus=true

The latest ca-certificates on centos6 (yum) offers only version 2020.2.41, while working machines have 2021.2.50.

https://github.com/adoptium/infrastructure/blob/master/ansible/playbooks/AdoptOpenJDK_Unix_Playbook/roles/CentOS6-Cent7SSL/tasks/main.yml may need to be updated
@Haroon-Khel Haroon-Khel self-assigned this Feb 24, 2022
@Haroon-Khel Haroon-Khel mentioned this issue Feb 24, 2022
Merged
5 tasks
@sxa sxa added this to the 2022-03 (March) milestone Mar 1, 2022
@Haroon-Khel
Copy link
Contributor Author

Closing since #2488 is merged

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Haroon-Khel Haroon-Khel

Labels
ansible
Projects
None yet
Milestone
2022-03 (March)
Development

No branches or pull requests
2 participants
@sxa @Haroon-Khel