As you suspected, the failure was: Cert does not match for name 'localhost'
This fixes it, but may not be the best solution: SSLProxyCheckPeerName off On Sat, 3 Oct 2020 at 15:20, Sam Ruby <ru...@intertwingly.net> wrote: > > This is unrelated to the problem I was seeing (the websocket server > was failing). > > The message in the error log: > > [Sat Oct 03 13:52:54.956298 2020] [proxy:error] [pid 1042:tid > 140478557177600] [client 71.204.185.91:59703] AH00898: Error during > SSL Handshake with remote server returned by /board/agenda/websocket/ > > The relevant portion of the Apache configuration: > > SSLProxyEngine On > ProxyPass "/board/agenda/websocket/" "wss://localhost:34234/" > > So it looks like the Apache web server is trying to create a SSL > connection to a localhost websocket, and isn't happy about something, > most likely the certificate as it isn't possible to create a > certificate for localhost. But whimsy-vm4 is set up the same way, and > works. Not sure what the difference is, perhaps the newer libraries > are actually checking the certificate now, or perhaps the base puppet > configuration is different. > > The following seems to have some suggestions worth exploring: > > https://serverfault.com/questions/538086/proxyerror-ah00898-error-during-ssl-handshake-with-remote-server > > - Sam Ruby > > P.S. It does seem odd that the whimsy_error.log is empty and the > errors are going to whimsy_error.log.1. > > On Fri, Oct 2, 2020 at 2:43 PM Roy T. Fielding <field...@gbiv.com> wrote: > > > > I was going to send out reminders under "missing" but the agenda > > won't fill the email form after clicking on "send initial reminders". > > > > My web console shows 500 errors every few minutes > > > > GET wss://whimsy.apache.org/board/agenda/websocket/[HTTP/1.1 500 Internal > > Server Error 763ms] > > > > GET > > wss://whimsy.apache.org/board/agenda/websocket/ > > Status > > 500 > > Internal Server Error > > VersionHTTP/1.1 > > Transferred253 B (0 B size) > > Accept-Ranges > > bytes > > Connection > > close > > Content-Length > > 5220 > > Content-Type > > text/html > > Date > > Fri, 02 Oct 2020 18:37:16 GMT > > > > I would guess this is the issue that Sam talked about earlier, > > but I thought it was fixed already. > > > > Er, looks like the error logs just rotated. Is some work being done? > > > > ....Roy > >
