So, to avoid late work, and some of the complaints, we do not fetch work in this situation - even if a CPU is idle. Users complained that work was reported late because we allowed work to be fetched in this situation. John McLeod wrote: We tried getting work with projects suspended and there were deadline problems. There's this, but I'm not sure if it's talking about the same thing: I don't know what's the reason behind it, though. "If the user has suspended a result for a project, don't fetch more work from it". Not requesting tasks: some task is suspended via Manager What OpenSSL version does BOINC for Windows show at the beginning of the log? I already mentioned this in 2020 when the AddTrust certificate expired and we had the same problem. But OpenSSL 1.0 sees the X3 certificate expired and gives up, instead of noticing the project's certificate is also signed with X1 which is still valid. BOINC's ca-bundle.crt has had the new LetsEncrypt X1 certificate since January 2018, so that doesn't need to be updated. What OpenSSL version does BOINC for Windows show at the beginning of the log?OpenSSL/1.0.2s What do you mean by "adding the certificates"? Are you modifying ca-bundle.crt? That would also explain why adding the root, intermediate and even the certificate for the project itself doesn't remediate the issue. The real fix is still to upgrade OpenSSL, but devs told me it won't be quick :) In addition to the workaround of removing the expired certificate from ca-bundle, it seems projects can also work around this by using certbot -preferred-chain "ISRG Root X1" when getting their letsencrypt certificate, this gives compatibility with old OpenSSL (while breaking compatibility with old Android). Their server is affected by the same problem as the BOINC client. OpenSSL Error messages: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed in /home/boinc/cpdnboinc/html/inc/header.inc on line 9 Warning: file_get_contents(): SSL operation failed with code 1. I am seeing this error on the CPDN forum ? Coincidence or part of same issue ? HTTP error: Peer certificate cannot be authenticated with given CA certificates (with workaround)
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |