New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
"Unable to download from ..." SSL Certificat Error #1050
Comments
SSLv3 is no longer supported due to POODLE. What OpenSSL version are you using? |
I'm not sure, but if you tell me where to find that info I'll look. This problem started about an hour ago. I've been installing gems just fine and I haven't made any real changes to Ruby (I've just been installing gems). It just stopped working. EDIT: Wanted to mention I'm using Ruby 2.1.0 and I've been installing gems to use with a new Rails installation. I'm an amateur. |
I'm running into this as well. I originally reported over at oneclick/rubyinstaller#241 to give @luislavena a heads up. |
@ferventcoder looking into this with RubyGems folks at |
joining... |
This is resolved for Windows now based on conversation in irc. Looks like SSLv3 is still disabled, so that is FTW. |
@Protosac what platform are/were you seeing this issue from? |
Windows 7. Thanks all for the information and updates. I'll let you know if I'm still having any issues, but it seems like this is all temporary. |
Recap: Several Windows users were having trouble connecting to rubygems.org with the new SSL cert we deployed today. We rolled back the cert and that seems to have fixed the problem. However, we do need to re-deploy this cert in the very near future. Looks like this is related or similar to #665 ? @drbrain Do the vendored certs need to be updated? The new cert has a completely different chain. |
No issues since the roll back. Sorry I didn't think to mention it earlier but I'm using Windows 7 64-bit if that matters. |
@drbrain Any ideas here? We need to push the new cert out soon - probably this week. |
@dwradcliffe if we change the certs, we need the new chains and new releases of RubyGems versions. Problem is chicken-egg situation:
I think this needs to be rolled out in two phases to avoid this:
@drbrain does something like the above plan works? |
Sounds like a mess, but I don't think we have a choice. |
We also need to release new versions of Bundler, so please ping me about this. |
@dwradcliffe @indirect waiting from @drbrain confirmation if there is something else I'm missing. |
@luislavena @drbrain Can we get this released ASAP? I'm expecting Chrome 39 to ship next week. |
@dwradcliffe I don't control RubyGems releases, I'm only contributor. Perhaps we can get @evanphx also to see if he can do the release? |
v2.4.x is broken on Windows. It has been reported and that is still pending someone to tackle that 😢
Things seems to be working (at least for now)
|
I'm still seeing this problem; note a slightly different error (certificate B)
|
This still seems to be a problem on Windows; I don't see how the gem 2.4.3 release fixed it in any way. |
I [REDACTED], and manually installed 2.4.3. I still see the same errors @courtenay mentioned. |
@dwradcliffe I can confirm that the change of the certificate has broken lot installations where RubyGems is not 2.4.3 possible (due 2.4.x bug I mentioned on Windows) Also, by the approach taken it is now not possible to update RubyGems since the SSL connection cannot be established. |
Another Ruby 2.1.4 installation: |
@drbrain @evanphx @skottler or @indirect can any of you revert the new SSL deployed to production? It broke every single installation of Ruby that do not have the bundled certificates update and is not possible to upgrade to latest version of RubyGems because it can no longer connect to the server. Not to mention that RubyGems 2.4.x is still broken on Windows. I'm on IRC if you want to discuss my original plan to get this sorted out (which appears was ignored) 😢 |
I have rolled back the cert. |
What does the certificate change have to do with SSLv3 failures? We already don't allow SSLv3:
So I'm puzzled why we see users with |
@MikaelSmith @dwradcliffe I logged just to say I love you hahaha 💃 |
On Win 7 machine: C:>gem --version C:>gem update bundler C:>gem install rails |
I tried updating local gem... but failing on cert error C:>gem update --system |
@gigaimage You need to update your rubygems version. See: |
@dwradcliffe Thanks! |
Hi, Im seeing the same issue without the SSL error on my OS X 10.9.5 C:~ gmangalo$ gem update --system Tried adding --source parameter but no avail [REDACTED - error indicates hostname lookup failure] |
Am having the same certificate issue on windows 8.1. |
me 2 |
@gmangalo you appear to be unable to resolve DNS names properly. @shyakaster, @lichtamberg check the guide for the certificate error |
I'm trying to implement the recommended solution at http://guides.rubygems.org/ssl-certificate-update/ but I don't seem to be able to update rubygems on Windows7 with Ruby21-x64 installed.
And then as you would expect:
Copying the new certificate into the ssl_certs directory manually doesn't appear to work either. Any suggestion you can offer would be greatly appreciated. I'm new to Ruby, and am basically just trying to follow instructions created by a team member who has more experience with Ruby but is similarly stumped by this issue. |
@ber855 RubyGems and gems are not known to work well with directories containing spaces. Does it work when using a space-free directory? |
Unfortunately, I'm in a locked-down environment and can't run exe's from outside the "Program Files" or "Program Files (x86)" directory. Gems does seem to run, though. Could that be the source of the "certificate verify failed" error? At the suggestion of a teammate, I tried dropping back to version 2.0.0p643, which somewhat unexpectedly came with Gems 2.4.6. Unfortunately, I'm still getting the same error.
The same teammate now suggests I drop back to version 1.9.3p551... :-/ |
Dropping back to version 1.9.3p551 did not help.
And then, as you would expect.
Could that space in the path to the ruby or gem exe be preventing me from upgrading the Gems version? If so, I might be able to ask for a temporary exception from the security policy. |
I am getting the same error, too: C:\Sites>gem update bundler |
I am in the same position, tried every permutation of GEMS / Ruby and to put it mildly its totally broken. Is there an official statement regarding this and when it will be resolved. |
C:\WINDOWS\system32>gem install rack --clear-sources --verbose --source https://staging.rubygems.org -v 1.5.2 C:\WINDOWS\system32> |
@silentbinary Why are you using staging? The full set of gems is not available on staging, and it should not be used. |
My Ruby knowledge is zero, I am just trying to follow the recommended fix. Is there a fix that will solve the issue, as I have tried everything that has been mentioned? On Thu, Sep 24, 2015 at 3:33 PM, David Radcliffe notifications@github.com
Land Line | 0208 1234 409 | Mobile | 07779256256 Conference Call | 0844737373 | Pin 590342 Email | Skype | Gareth.Davies@SilentBinary.co LinkedIn | https://www.linkedin.com/in/alwaysdelivers SilentBinary.Co.Uk accepts no liability for the content of this email, or |
This is an old issue that is resolved. The mention of staging above was to test a new SSL cert before it was rolled out to production. |
@silentbinary Looks like your issue is with the softlayer api, not the rubygems api. I'm guessing their HTTPS settings or their certificate are not compatible with windows. You may need to manually install their certificate or something like that. |
going to try on Linux tmrw
|
Got the same issue. [REDACTED] |
I gave up on Windows put have it installed on Ubuntu and it works a treat. |
I got the same issue on my Windows 7 |
I have up and just spun up a linux desktop and had no issue installing. |
The original problem from this issue has been resolved. If you're still experiencing problems that seem related, open a help ticket or a new issue. Thanks! |
The error is as follows:
https://gist.github.com/Protosac/a5b86b0461940d36e298
I saw some old posts about this but they didn't offer any solutions, since it seemed the error isn't on the user side. Any help appreciated.
The text was updated successfully, but these errors were encountered: