-
Notifications
You must be signed in to change notification settings - Fork 3.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Intermittent SSL issue trying to load iOS certificates #10934
Comments
I've just discovered this issue, which seems to be the problem and may be a better place: |
Based on the discussion (and looking at recent runs) I suspect this was intermittent on macOS 14 as the updated agent was rolling out, but is every time on macOS 15. |
@OliverBrown-Next We will look into the issue and keep you posted with updates. |
Seems like macos-15 20241106.316 requires us to add The issue that we are currently facing: macOS-15 20241106.316 does not seem to be rolled out to all hosted agents as of now. |
I get this same error when doing: |
even with opensslPkcsArgs: -legacy this problem happens |
This is what is currently happening to me macos-15 20241106.316 works like a charm and macos-15 20241022.244 doesn't. |
Depends which version of macos-15 was assigned to the runner |
can confirm! |
I converted my key using the following guide; and the issue is resolved: https://www.docuseal.com/docs/convert-legacy-p12-pfx-files-to-support-openssl-3 Can confirm that legacy, provider legacy, etc did not work prior to having to convert the key. |
Hi, what did you use to convert it just regular cmd ? |
I have the same problem also with the image 20241106.316.
Image 20241022.244 runs fine for me, but how to set the image version as a demand? Edit: I converted the certificate with the link provided and now everything runs fine. @amit-thapa I used just the terminal on my mac, on windows I would try the git bash Edit again: While the new certificate is running fine with image version 20241106.316, it fails with image version 20241022.244. There is something really rotten. |
Same error in our pipelines, when is a fix planned? |
As already mentioned in one of the comments, use this link https://www.docuseal.com/docs/convert-legacy-p12-pfx-files-to-support-openssl-3 to convert your current p12 file to support openssl 3. I used git bash to get the commands working as it already has open ssl installed in it. This conversion did work for me and I am no longer getting that same error. |
@sven-s That is weird, I did a re-run of the pipelines after the conversion a couple of times this morning and it used macos-15 20241022.244 both times and it ran fine both times. I have a different issue now but not related to that one. I also removed the following lines below
But I do agree there are lots of inconsistencies and errors throughout macos-15 runner. I have this error now #10686 (comment) |
Hi |
Hey there! Heads up! 👋 Unfortunately, an unpleasant situation arose where we could not create the image for technical reasons 😞, but now it fixed. 🥳 The fix will be delivered in the next release cycle, approximately by Wednesday. Currently, about two-fifths of all |
Description
We have recently started getting SSL errors when trying to install iOS certificates. Our workflow related to this has not changed for a long time. It does work sometimes (with the same certificates) so I don't believe there are any problems with the certificates.
This happens on macOS 15 20241106.316 but we only very recently switched to macOS 15 and it happened on macOS 14 too.
Platforms affected
Runner images affected
Image version and build link
Image: macos-15
Version: 20241106.316
Is it regression?
Yes
Expected behavior
Certificate install correctly.
Actual behavior
Certificates not installed.
Repro steps
Attempt to install iOS certificates. I don't know if it something specific to the certificates I'm using though.
The text was updated successfully, but these errors were encountered: