Sslv3 alert bad certificate

eug · April 25, 2023, 1:58pm

Problem:
After upgrade openssl library to openssl-quic-libs-3.0.8-1 ( in during httpd package to be upgraded to 2.57 version ). After this I started getting an error

Error: Could not prefetch pulp_rpmrepo provider ‘api’: https request threw exception SSL_read: sslv3 alert bad certificate. Connection details: url=https://domain.name/pulp/api/v2/repositories/, cert_path=/root/.pulp/user-cert.pem.
Error: Failed to apply catalog: https request threw exception SSL_read: sslv3 alert bad certificate. Connection details: url=https://domain.name/pulp/api/v2/repositories/, cert_path=/root/.pulp/user-cert.pem.

Expected outcome:

Pulpcore version:
2.16
Pulp plugins installed and their versions:

Operating system - distribution and version:
CentOS 7.9

ggainey · April 25, 2023, 2:29pm

Hi @eug - Pulp2 went EOL in November-2022, with 2.21.5 as its current release. The problem you’re describing sounds like the system pulp2 is installed-on, has been updated to where it no longer supports ssl-certs built using older, insecure algorithms. I don’t think there’s much we can do to help with that, even if Pulp2 was still being supported.

Sslv3 alert bad certificate

Problem: After upgrade openssl library to openssl-quic-libs-3.0.8-1 ( in during httpd package to be upgraded to 2.57 version ). After this I started getting an error

Problem:
After upgrade openssl library to openssl-quic-libs-3.0.8-1 ( in during httpd package to be upgraded to 2.57 version ). After this I started getting an error