[BUG]: RadarrErrorPipeline|Invalid request Validation failed: -- : Unable to connect to indexer

[mrDevGit]

Is there an existing issue for this?

• I have searched the existing issues

Current Behavior

I have Sonarr, Radarr and SABnzbd on one Pi server.

All has been working perfectly for months.

Sonarr still work perfectly.
Sabnzbd still work perfectly.

Radarr has stopped being able to connect to nzb.su, which is an indexer it has always been fine with, and is the indexer that still work fine with Sonarr on the SAME server!!

Expected Behavior

Radar should connect to this indexer.

Steps To Reproduce

add new indexer
use nzb preset
input API key provided by indexer.

press Test.

Test should pass, but does not.

Environment

- OS: raspbian
- Radarr:3.2.2.5080 - Jun 3 2021

- Docker Install:
- Using Reverse Proxy:
- Browser:

What branch are you running?

Master

Anything else?

log excerpt:

2021-10-01 15:17:59.1|Error|X509CertificateValidationService|Certificate validation for https://api.nzb.su/api?t=caps&apikey=(removed) failed. RemoteCertificateChainErrors
2021-10-01 15:18:00.3|Error|X509CertificateValidationService|Certificate validation for https://api.nzb.su/api?t=caps&apikey=(removed) failed. RemoteCertificateChainErrors
2021-10-01 15:18:00.3|Warn|Newznab|Unable to connect to indexer

[v3.2.2.5080] System.Net.WebException: Error: TrustFailure (Authentication failed, see inner exception.): 'https://api.nzb.su/api?t=caps&apikey=(removed) ---> System.Net.WebException: Error: TrustFailure (Authentication failed, see inner exception.) ---> System.Security.Authentication.AuthenticationException: Authentication failed, see inner exception. ---> Mono.Btls.MonoBtlsException: Ssl error:1000007d:SSL routines:OPENSSL_internal:CERTIFICATE_VERIFY_FAILED
at /build/mono-6.12.0.122/external/boringssl/ssl/handshake_client.c:1132
at Mono.Btls.MonoBtlsContext.ProcessHandshake () [0x00048] in <9c6e2cb7ddd8473fa420642ddcf7ce48>:0
at Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake (Mono.Net.Security.AsyncOperationStatus status, System.Boolean renegotiate) [0x000da] in <9c6e2cb7ddd8473fa420642ddcf7ce48>:0
at (wrapper remoting-invoke-with-check) Mono.Net.Security.MobileAuthenticatedStream.ProcessHandshake(Mono.Net.Security.AsyncOperationStatus,bool)
at Mono.Net.Security.AsyncHandshakeRequest.Run (Mono.Net.Security.AsyncOperationStatus status) [0x00006] in <9c6e2cb7ddd8473fa420642ddcf7ce48>:0
at Mono.Net.Security.AsyncProtocolRequest.ProcessOperation (System.Threading.CancellationToken cancellationToken) [0x000fc] in <9c6e2cb7ddd8473fa420642ddcf7ce48>:0
--- End of inner exception stack trace ---
at Mono.Net.Security.MobileAuthenticatedStream.ProcessAuthentication (System.Boolean runSynchronously, Mono.Net.Security.MonoSslAuthenticationOptions options, System.Threading.CancellationToken cancellationToken) [0x00262] in <9c6e2cb7ddd8473fa420642ddcf7ce48>:0
at Mono.Net.Security.MonoTlsStream.CreateStream (System.Net.WebConnectionTunnel tunnel, System.Threading.CancellationToken cancellationToken) [0x0016a] in <9c6e2cb7ddd8473fa420642ddcf7ce48>:0
at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x001ba] in <9c6e2cb7ddd8473fa420642ddcf7ce48>:0
--- End of inner exception stack trace ---
at System.Net.WebConnection.CreateStream (System.Net.WebOperation operation, System.Boolean reused, System.Threading.CancellationToken cancellationToken) [0x0021a] in <9c6e2cb7ddd8473fa420642ddcf7ce48>:0
at System.Net.WebConnection.InitConnection (System.Net.WebOperation operation, System.Threading.CancellationToken cancellationToken) [0x00141] in <9c6e2cb7ddd8473fa420642ddcf7ce48>:0
at System.Net.WebOperation.Run () [0x0009a] in <9c6e2cb7ddd8473fa420642ddcf7ce48>:0
at System.Net.WebCompletionSource1[T].WaitForCompletion () [0x00094] in <9c6e2cb7ddd8473fa420642ddcf7ce48>:0 at System.Net.HttpWebRequest.RunWithTimeoutWorker[T] (System.Threading.Tasks.Task1[TResult] workerTask, System.Int32 timeout, System.Action abort, System.Func1[TResult] aborted, System.Threading.CancellationTokenSource cts) [0x000f8] in <9c6e2cb7ddd8473fa420642ddcf7ce48>:0 at System.Net.HttpWebRequest.GetResponse () [0x00016] in <9c6e2cb7ddd8473fa420642ddcf7ce48>:0 at NzbDrone.Common.Http.Dispatchers.ManagedHttpDispatcher.GetResponse (NzbDrone.Common.Http.HttpRequest request, System.Net.CookieContainer cookies) [0x00125] in <58b90a54d3944563998b3af0ba2e1743>:0 --- End of inner exception stack trace --- at NzbDrone.Common.Http.Dispatchers.ManagedHttpDispatcher.GetResponse (NzbDrone.Common.Http.HttpRequest request, System.Net.CookieContainer cookies) [0x001ee] in <58b90a54d3944563998b3af0ba2e1743>:0 at NzbDrone.Common.Http.HttpClient.ExecuteRequest (NzbDrone.Common.Http.HttpRequest request, System.Net.CookieContainer cookieContainer) [0x00086] in <58b90a54d3944563998b3af0ba2e1743>:0 at NzbDrone.Common.Http.HttpClient.Execute (NzbDrone.Common.Http.HttpRequest request) [0x00008] in <58b90a54d3944563998b3af0ba2e1743>:0 at NzbDrone.Common.Http.HttpClient.Get (NzbDrone.Common.Http.HttpRequest request) [0x00007] in <58b90a54d3944563998b3af0ba2e1743>:0 at NzbDrone.Core.Indexers.Newznab.NewznabCapabilitiesProvider.FetchCapabilities (NzbDrone.Core.Indexers.Newznab.NewznabSettings indexerSettings) [0x000a1] in <70bcba0d870f4fcb9ba91f295f9b5ffe>:0 at NzbDrone.Core.Indexers.Newznab.NewznabCapabilitiesProvider+<>c__DisplayClass4_0.<GetCapabilities>b__0 () [0x00000] in <70bcba0d870f4fcb9ba91f295f9b5ffe>:0 at NzbDrone.Common.Cache.Cached1[T].Get (System.String key, System.Func1[TResult] function, System.Nullable1[T] lifeTime) [0x000b1] in <58b90a54d3944563998b3af0ba2e1743>:0
at NzbDrone.Core.Indexers.Newznab.NewznabCapabilitiesProvider.GetCapabilities (NzbDrone.Core.Indexers.Newznab.NewznabSettings indexerSettings) [0x00046] in <70bcba0d870f4fcb9ba91f295f9b5ffe>:0
at NzbDrone.Core.Indexers.Newznab.Newznab.get_PageSize () [0x0000c] in <70bcba0d870f4fcb9ba91f295f9b5ffe>:0
at NzbDrone.Core.Indexers.Newznab.Newznab.GetRequestGenerator () [0x0000b] in <70bcba0d870f4fcb9ba91f295f9b5ffe>:0
at NzbDrone.Core.Indexers.HttpIndexerBase`1[TSettings].TestConnection () [0x00019] in <70bcba0d870f4fcb9ba91f295f9b5ffe>:0

2021-10-01 15:18:00.3|Warn|RadarrErrorPipeline|Invalid request Validation failed:
-- : Unable to connect to indexer, check the log for more details

AB#1643

[github-actions]

👋 @mrDevGit, we use the issue tracker exclusively for bug reports and feature requests. However, this issue appears to be a support request. Please hop over onto our Discord or Subreddit

[bakerboy448]

This is due to LE's Root Cert expiring yesterday.

Not a radarr bug

sonarr likely isn't complaining as either you're on EOL v2 which does not validate certs or it's leveraging the mono workaround.

to fix it for radarr you likely need to get your pi's cert store squared away so trusts the cross signed on

alternatively it could be possible you're ignoring the healthcheck and still running the EOL mono version of radarr, if so upgrade to .net

[mrDevGit]

I was ignoring the .net update warning. I did it now, that solved it. Many thanks.

[fmunteanu]

@bakerboy448 you mentioned:

to fix it for radarr you likely need to get your pi's cert store squared away so trusts the cross signed on

Can you please provide more details? I cannot upgrade to a .NET package yet, running Radarr on a TrueNAS jail. Thank you for your help.

[RobinDadswell]

@bakerboy448 you mentioned:

to fix it for radarr you likely need to get your pi's cert store squared away so trusts the cross signed on

Can you please provide more details? I cannot upgrade to a .NET package yet, running on TrueNAS. Thank you for your help.

You will need to update your root CA's on TrueNAS, how that is done is not something we can help with

[fmunteanu]

Thanks @RobinDadswell, I presume is probably related to a ca-certs package which does not include the new Let's Encrypt Root cert?

[ta264]

@fmunteanu the mono build will never work, you need to upgrade to .net. Its possible on truenas.

[fmunteanu]

@ta264 I actually found a package built by @Thefrank, you have it link in your wiki. It works well, except none of the download clients are functional. They do work in Sonarr. I have the same setup like the OP, all software running into same jail.

Checking local SABnzbd service:

root@media:~ # curl -I http://localhost:8080/
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
Server: CherryPy/17.4.2
Date: Thu, 07 Oct 2021 20:46:10 GMT
X-Frame-Options: SameOrigin
Vary: Accept-Encoding
Content-Length: 564426

Radarr error log:

2021-10-07 16:30:06.6|Info|Bootstrap|Starting Radarr - /usr/local/share/radarrv3/Radarr - Version 3.2.2.5080
2021-10-07 16:30:07.4|Info|AppFolderInfo|Data directory is being overridden to [/usr/local/radarr]
2021-10-07 16:30:07.6|Info|Router|Application mode: Interactive
2021-10-07 16:30:07.7|Info|MigrationController|*** Migrating data source=/usr/local/radarr/radarr.db;cache size=-20000;datetimekind=Utc;journal mode=Wal;pooling=True;version=3 ***
2021-10-07 16:30:08.3|Info|MigrationController|*** Migrating data source=/usr/local/radarr/logs.db;cache size=-20000;datetimekind=Utc;journal mode=Wal;pooling=True;version=3 ***
2021-10-07 16:30:08.7|Info|WebHostController|Listening on the following URLs:
2021-10-07 16:30:08.7|Info|WebHostController|  http://*:7878
2021-10-07 16:30:09.2|Info|RadarrBootstrapper|Starting Web Server
2021-10-07 16:30:10.8|Info|CommandExecutor|Starting 2 threads for tasks.
2021-10-07 16:34:41.0|Warn|DownloadMonitoringService|Unable to retrieve queue and history items from SABnzbd

[v3.2.2.5080] NzbDrone.Core.Download.Clients.DownloadClientUnavailableException: Unable to connect to SABnzbd, Connection reset by peer (localhost:8080): 'http://localhost:8080/api?mode=queue&start=0&limit=0&apikey=(removed)&output=json'
---> System.Net.WebException: Connection reset by peer (localhost:8080): 'http://localhost:8080/api?mode=queue&start=0&limit=0&apikey=(removed)&output=json'
---> System.Net.WebException: Connection reset by peer (localhost:8080)
---> System.Net.Http.HttpRequestException: Connection reset by peer (localhost:8080)
---> System.Net.Sockets.SocketException (54): Connection reset by peer
   at System.Net.Sockets.Socket.UpdateStatusAfterSocketErrorAndThrowException(SocketError error, String callerName)
   at System.Net.Sockets.Socket.GetSocketOption(SocketOptionLevel optionLevel, SocketOptionName optionName)
   at System.Net.Sockets.Socket.get_NoDelay()
   at System.Net.Sockets.Socket.ReplaceHandle()
   at System.Net.Sockets.Socket.ReplaceHandleIfNecessaryAfterFailedConnect()
   at System.Net.Sockets.Socket.ValidateForMultiConnect(Boolean isMultiEndpoint)
   at System.Net.Sockets.Socket.Connect(EndPoint remoteEP)
   at System.Net.Sockets.Socket.Connect(IPAddress[] addresses, Int32 port)
--- End of stack trace from previous location ---
   at System.Net.Sockets.Socket.Connect(IPAddress[] addresses, Int32 port)
   at System.Net.Sockets.Socket.Connect(String host, Int32 port)
   at System.Net.Sockets.Socket.Connect(EndPoint remoteEP)
   at System.Net.Http.ConnectHelper.Connect(String host, Int32 port, CancellationToken cancellationToken)
   --- End of inner exception stack trace ---
   at System.Net.Http.ConnectHelper.Connect(String host, Int32 port, CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.ConnectToTcpHostAsync(String host, Int32 port, HttpRequestMessage initialRequest, Boolean async, CancellationToken cancellationToken)
--- End of stack trace from previous location ---
   at System.Net.Http.HttpConnectionPool.ConnectAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.CreateHttp11ConnectionAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.GetHttpConnectionAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.SendWithRetryAsync(HttpRequestMessage request, Boolean async, Boolean doRequestAuth, CancellationToken cancellationToken)
   at System.Net.Http.DecompressionHandler.SendAsync(HttpRequestMessage request, Boolean async, CancellationToken cancellationToken)
   at System.Net.Http.HttpMessageHandlerStage.Send(HttpRequestMessage request, CancellationToken cancellationToken)
   at System.Net.Http.SocketsHttpHandler.Send(HttpRequestMessage request, CancellationToken cancellationToken)
   at System.Net.Http.HttpClientHandler.Send(HttpRequestMessage request, CancellationToken cancellationToken)
   at System.Net.Http.HttpMessageInvoker.Send(HttpRequestMessage request, CancellationToken cancellationToken)
   at System.Net.Http.HttpClient.<>n__1(HttpRequestMessage request, CancellationToken cancellationToken)
   at System.Net.Http.HttpClient.SendAsyncCore(HttpRequestMessage request, HttpCompletionOption completionOption, Boolean async, Boolean emitTelemetryStartStop, CancellationToken cancellationToken)
   at System.Net.Http.HttpClient.Send(HttpRequestMessage request, HttpCompletionOption completionOption, CancellationToken cancellationToken)
   at System.Net.HttpWebRequest.SendRequest(Boolean async)
   at System.Net.HttpWebRequest.GetResponse()
   --- End of inner exception stack trace ---
   at System.Net.HttpWebRequest.GetResponse()
   at NzbDrone.Common.Http.Dispatchers.ManagedHttpDispatcher.GetResponse(HttpRequest request, CookieContainer cookies) in D:\a\1\s\src\NzbDrone.Common\Http\Dispatchers\ManagedHttpDispatcher.cs:line 81
   --- End of inner exception stack trace ---
   at NzbDrone.Common.Http.Dispatchers.ManagedHttpDispatcher.GetResponse(HttpRequest request, CookieContainer cookies) in D:\a\1\s\src\NzbDrone.Common\Http\Dispatchers\ManagedHttpDispatcher.cs:line 107
   at NzbDrone.Common.Http.HttpClient.ExecuteRequest(HttpRequest request, CookieContainer cookieContainer) in D:\a\1\s\src\NzbDrone.Common\Http\HttpClient.cs:line 124
   at NzbDrone.Common.Http.HttpClient.Execute(HttpRequest request) in D:\a\1\s\src\NzbDrone.Common\Http\HttpClient.cs:line 57
   at NzbDrone.Core.Download.Clients.Sabnzbd.SabnzbdProxy.ProcessRequest(HttpRequestBuilder requestBuilder, SabnzbdSettings settings) in D:\a\1\s\src\NzbDrone.Core\Download\Clients\Sabnzbd\SabnzbdProxy.cs:line 185
   --- End of inner exception stack trace ---
   at NzbDrone.Core.Download.Clients.Sabnzbd.SabnzbdProxy.ProcessRequest(HttpRequestBuilder requestBuilder, SabnzbdSettings settings) in D:\a\1\s\src\NzbDrone.Core\Download\Clients\Sabnzbd\SabnzbdProxy.cs:line 198
   at NzbDrone.Core.Download.Clients.Sabnzbd.SabnzbdProxy.GetQueue(Int32 start, Int32 limit, SabnzbdSettings settings) in D:\a\1\s\src\NzbDrone.Core\Download\Clients\Sabnzbd\SabnzbdProxy.cs:line 113
   at NzbDrone.Core.Download.Clients.Sabnzbd.Sabnzbd.GetQueue() in D:\a\1\s\src\NzbDrone.Core\Download\Clients\Sabnzbd\Sabnzbd.cs:line 57
   at NzbDrone.Core.Download.Clients.Sabnzbd.Sabnzbd.GetItems()+MoveNext() in D:\a\1\s\src\NzbDrone.Core\Download\Clients\Sabnzbd\Sabnzbd.cs:line 188
   at System.Collections.Generic.List`1..ctor(IEnumerable`1 collection)
   at System.Linq.Enumerable.ToList[TSource](IEnumerable`1 source)
   at NzbDrone.Core.Download.TrackedDownloads.DownloadMonitoringService.ProcessClientDownloads(IDownloadClient downloadClient) in D:\a\1\s\src\NzbDrone.Core\Download\TrackedDownloads\DownloadMonitoringService.cs:line 89

[ta264]

It works, join the discord channel for support.

[fmunteanu]

For those who encounter the same issue, for some reason, .NET cannot resolve localhost to 127.0.0.1, even if everything checks, network and other related jail settings wise. Using the IP instead hostname fixed the issue for me, myself and @Thefrank troubleshooted for an hour, trying to see why localhost is not resolving inside web UI, while resolving inside jail.

root@media:~ # curl -I http://localhost:8080/
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
Server: CherryPy/17.4.2
Date: Thu, 07 Oct 2021 20:46:10 GMT
X-Frame-Options: SameOrigin
Vary: Accept-Encoding
Content-Length: 564426