Docker 0.5.0 image fails to start with certificate error

Ranbato commented 2 years ago

Reverting back to 0.4.3 fixes the issue.

 docker logs -f zeronsd                                                                          [2022-05-18 08:33:22 MDT] 
May 18 14:33:22.648  INFO zeronsd::init: Welcome to ZeroNS!
Error: Communication Error error sending request for url (https://my.zerotier.com/api/v1/network/asdf): error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate)

Caused by:
    0: error sending request for url (https://my.zerotier.com/api/v1/network/asdf): error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate)
    1: error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate)
    2: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate)
    3: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914:
May 18 14:33:27.044  INFO zeronsd::init: Welcome to ZeroNS!
Error: Communication Error error sending request for url (https://my.zerotier.com/api/v1/network/asdf): error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate)

Caused by:
    0: error sending request for url (https://my.zerotier.com/api/v1/network/asdf): error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate)
    1: error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate)
    2: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate)
    3: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914:
^C

erikh commented 2 years ago

Thanks for the heads up, I'll look into this today.

------- Original Message ------- On Wednesday, May 18th, 2022 at 7:44 AM, Mark Lambert @.***> wrote:

Reverting back to 0.4.3 fixes the issue.

docker logs -f zeronsd [2022-05-18 08:33:22 MDT] May 18 14:33:22.648 INFO zeronsd::init: Welcome to ZeroNS! Error: Communication Error error sending request for url (https://my.zerotier.com/api/v1/network/93afae5963945f34): error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate)

Caused by: 0: error sending request for url (https://my.zerotier.com/api/v1/network/93afae5963945f34): error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate) 1: error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate) 2: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate) 3: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: May 18 14:33:27.044 INFO zeronsd::init: Welcome to ZeroNS! Error: Communication Error error sending request for url (https://my.zerotier.com/api/v1/network/93afae5963945f34): error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate)

Caused by: 0: error sending request for url (https://my.zerotier.com/api/v1/network/93afae5963945f34): error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate) 1: error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate) 2: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: (unable to get local issuer certificate) 3: error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed:../ssl/statem/statem_clnt.c:1914: ^C

— Reply to this email directly, view it on GitHub, or unsubscribe. You are receiving this because you are subscribed to this thread.Message ID: @.***>

erikh commented 2 years ago

0.5.2 should resolve this. Sorry for the delay. reopen this issue if you see more trouble, please.

Ranbato commented 2 years ago

I'm still seeing the container failing on start with latest or 0.5.2. I'm not getting any logs all though so I'm going to see if I can do some troubleshooting.

Ranbato commented 2 years ago

This is all I have been able to get so far. No core file yet

 # zeronsd start -vv -t /var/lib/zerotier-one/token -s /var/lib/zerotier-one/authtoken.secret <network id>

Segmentation fault (core dumped)

Ranbato commented 2 years ago

OK, I have narrowed it down to the Alpine image. Other image works fine for me. I'm pretty busy for the next while, but might be able to do additional troubleshooting next week. LMK if you want me to reopen this issue or start a new one.

erikh commented 2 years ago

No, this is fine. Thanks!!

------- Original Message ------- On Wednesday, May 25th, 2022 at 3:24 PM, Mark Lambert @.***> wrote:

OK, I have narrowed it down to the Alpine image. Other image works fine for me. I'm pretty busy for the next while, but might be able to do additional troubleshooting next week. LMK if you want me to reopen this issue or start a new one.

— Reply to this email directly, view it on GitHub, or unsubscribe. You are receiving this because you modified the open/close state.Message ID: @.***>

erikh commented 1 year ago

lemme look at it. sorry about this!

------- Original Message ------- On Wednesday, May 25th, 2022 at 1:03 PM, Mark Lambert @.***> wrote:

This is all I have been able to get so far. No core file yet

zeronsd start -vv -t /var/lib/zerotier-one/token -s /var/lib/zerotier-one/authtoken.secret Segmentation fault (core dumped)

— Reply to this email directly, view it on GitHub, or unsubscribe. You are receiving this because you modified the open/close state.Message ID: @.***>

zerotier / zeronsd

Docker 0.5.0 image fails to start with certificate error #189

zeronsd start -vv -t /var/lib/zerotier-one/token -s /var/lib/zerotier-one/authtoken.secret Segmentation fault (core dumped)