search

erikrose / peep

A "pip install" that is cryptographically guaranteed repeatable
MIT License
221 stars 28 forks source link

bug repart letsencrypt #133

Open oldjoe opened 8 years ago

oldjoe commented 8 years ago

@erikrose Joachim Eberle

Germany, 26133 Oldenburg

Email: j.eberle@gmx.org

In advance: The last trial ran mar 6 2016. The complete environment was changed since the last run on feb 25 2016. The older system included Ubuntu (Debian Wheezy), apache2.2

But the client program of Letsencrypt, started from /opt/letsencrypt/, dates from febuary. Only the file /opt/letsencrypt/letsencrypt-auto has now the date of march 6.

All files in /etc/letsencrypt/ are not touched since february.

Actual System:

OS: Bananian Version: 15.08 (released 2015-08-22) Debian Jessie (https://www.bananian.org/download)

Apache2.4
Only the apache program has settings concerning ssl. That's the standard 
system with the "snakeoil"-certs.

So the complete system has changed since fabruary und the letsencrypt-files may be in a wrong state now.

Since the neu OS has no graphical display, 'copy and paste' was no way scuring the particulars. I took photos and transcribed the output:

Downloading traceback2==1.4.0 (16K)... Downloading unittest2==1.1.0 (96K)... Downloading zope.component==4.2.2 (546K)... Downloading zope.event==4.1.0 (476K)...

Oh no! Peep had a problem while trying to do stuff. Please write up a bug report with the specifics so we can fix it:

https://github.com/erikrose/peep/issues/new

Here are some particulars you can copy and paste into the bug report:

peep: (3,1,1) python: '2.7.9 (default, Mar 1 2015, 13:48:22) [GCC 4,9,2]' pip: '1.5.6' Command line: ['/tmp/tmp.iZfGKQmeej/peep.py', 'install', '-r', '/tmp/tmp.iZfGKQmeej/letsencrypt-auto-requirements.txt'] Tracebaback (most recent call last): File "/tmp/tmp.iZfGKQmeej/peep.py", line 967, in exit(main()) File "/tmp/tmp.iZfGKQmeej/peep.py", line 939, in main return commandsargv[1] File "/tmp/tmp.iZfGKQmeej/peep.py", line 864, in peep_install for path in req_paths)) File "/tmp/tmp.iZfGKQmeej/peep.py", line 864, in for path in req_paths)) File "/tmp/tmp.iZfGKQmeej/peep.py", line 841, in downloaded_reqs_from_path _parse_requirements(path, finder)]
File "/tmp/tmp.iZfGKQmeej/peep.py", line 422, in init self.class = self._class() File "/tmp/tmp.iZfGKQmeej/peep.py", line 701, in _class
if self._actual_hash() not in self._expected_hashes(): File "/tmp/tmp.iZfGKQmeej/peep.py", line 331, in memoizer self._cache[func.name] = func(self) File "/tmp/tmp.iZfGKQmeej/peep.py", line 657, in _actual_hash return hash_of_file(join(self._temp_path, self._downloaded_filename())) File "/tmp/tmp.iZfGKQmeej/peep.py", line 331, in memoizer self._cache[func.name] = func(self) File "/tmp/tmp.iZfGKQmeej/peep.py", line 615, in _downloaded_filename file_path = self._downloaded(link) File "/tmp/tmp.iZfGKQmeej/peep.py", line 585, in _download pipe_to_file(response. join(self._temp_path, filename), size=size) File "/tmp/tmp.iZfGKQmeej/peep.py", line 572, in pipe_to_file for chunk in progress_indicator(response_chunks(4096), 4096): File "/tmp/tmp.iZfGKQmeej/peep.py", line 561, in response_chunks chunk = response.read(chunk_size) File "/usr/lib/python2.7/socket.py", line 380, in read data = self._sock.recv(left) File "/usr/lib/python2.7/httplib.py", line 573, in read s = self.fp.read(amt) File "/usr/lib/python2.7/socket.py", line 380, in read date = self._sock.recv(left) File "/usr/lib/python2.7/ssl.py", line 714, in recv return self.read(buflen) File "/usr/lib/python2.7/ssl.py", line 608, in read v = self._sslobj.read(len or 1024) SSLERROR: [SSL: DECRYPTION_FAILED_OR_BAD_RECORD_MAC] decryption failed or bad record mac (_ssl.c:1750)

./letsencrypt-auto --apache 158,64s user 42,13s system 85% cpu 3:55,36 total 1 root@buster /opt/letsencrypt # oldjoe has logged off pts/1 from 192.168.1.20.
1 root@buster /opt/letsencrypt #