- From: Noah Kantrowitz <
>
- To:
- Subject: [chef] Re: Why will hosted chef not work? SSL Validation failure connecting to host: s3-external-1.amazonaws.com
- Date: Fri, 13 Jun 2014 11:29:11 -0700
Amazon changed their TLS certificates yesterday and the new CA cert is not
included in the bundles of some older OSes it seems. I've gotten reports of
this on Ubuntu 12.04 and RHEL 6.4. You can fix it by downloading the curl
cacert bundle file and adding "ssl_ca_file '/path/to/cacert.pem'" to your
client.rb. You can also check if an update is available for your system CA
bundle package.
--Noah
On Jun 13, 2014, at 6:30 AM, David Montgomery
<
>
wrote:
>
Hi,
>
>
I get the below error when trying to bootstrap a machine. Is there an
>
issue with hosted chef? How do I resolve?
>
>
- chef_handler
>
[2014-06-13T09:26:40-04:00] INFO: Storing updated
>
cookbooks/environment/recipes/chef.rb in the cache.
>
[2014-06-13T09:26:53-04:00] ERROR: SSL Validation failure connecting to
>
host: s3-external-1.amazonaws.com - SSL_connect SYSCALL returned=5 errno=0
>
state=SSLv3 read finished A
>
>
================================================================================
>
Error Syncing Cookbooks:
>
================================================================================
>
>
>
Unexpected Error:
>
-----------------
>
OpenSSL::SSL::SSLError: SSL_connect SYSCALL returned=5 errno=0 state=SSLv3
>
read finished A
>
>
>
>
Running handlers:
>
[2014-06-13T09:26:53-04:00] ERROR: Running exception handlers
>
[2014-06-13T09:26:53-04:00] ERROR: Creating JSON exception report
>
- Chef::Handler::JsonFile
>
Running handlers complete
>
>
[2014-06-13T09:26:53-04:00] ERROR: Exception handlers complete
>
[2014-06-13T09:26:53-04:00] FATAL: Stacktrace dumped to
>
/var/chef/cache/chef-stacktrace.out
>
Chef Client failed. 0 resources updated in 27.19466371 seconds
>
[2014-06-13T09:26:53-04:00] INFO: Sending resource update report (run-id:
>
68494182-c6c5-4deb-abac-3b2a5408bd72)
>
[2014-06-13T09:26:54-04:00] ERROR: SSL_connect SYSCALL returned=5 errno=0
>
state=SSLv3 read finished A
>
[2014-06-13T09:26:54-04:00] FATAL: Chef::Exceptions::ChildConvergeError:
>
Chef run process exited unsuccessfully (exit code 1)
>
:/home/ubuntu#
>
nano /var/chef/cache/chef-stacktrace.out
>
Use "fg" to return to nano.
>
Attachment:
signature.asc
Description: Message signed with OpenPGP using GPGMail
Archive powered by MHonArc 2.6.16.