Forums

Resolved
0 votes
Anyone else seeing this?

[root@gateway ~]# yum update
Loaded plugins: clearcenter-marketplace, fastestmirror
ClearCenter Marketplace: fetching repositories...
ClearCenter Marketplace: <urlopen error [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:618)>
Thursday, September 30 2021, 03:30 PM
Share this post:
Responses (2)
  • Accepted Answer

    Friday, October 01 2021, 08:29 AM - #Permalink
    Resolved
    0 votes
    Short answer:
    It has nothing to do with the devs as it turns out. To fix, there is now an updated ca-certificates package available. A "yum update" will fix it for the following "yum update" or it will fix itself overnight.

    Long answer:
    Start by reading https://blog.devgenius.io/lets-encrypt-change-affects-openssl-1-0-x-and-centos-7-49bd66016af3. Then things conspired against us. Centos only released an updated ca-certificates package in the last couple of weeks. Community is up to 7 days behind Centos releases and paid customers are a further week behind. This means Community received the updated package on Tuesday night and Paid would receive it next week ....... except that the certificate has now expired and blocks access to the Paid repos. Fortunately there are two Community repos repos that Paid customers also have access to, so we are injecting the updated ca-certificates package into one of these repos and the normal nightly updates should sort it out.

    [edit]
    Note it is not just us who are affected. Other Linux suppliers are as well.
    [/edit]
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, September 30 2021, 03:59 PM - #Permalink
    Resolved
    0 votes
    That was an issue last week but the devs fixed it. I've just tried it on two servers and it fails on one of them. I'll contact the devs again.
    The reply is currently minimized Show
Your Reply