Command openssl ocsp -nonce -resp_text -respout /var/cache/ocsp/update-ocsp-PAZBNZ.tmp/unified.ocsp -issuer /etc/ssl/certs/b85455c4.0 -path http://ocsp2.globalsign.com/gsorganizationvalsha2g2 -host webproxy.codfw.wmnet:8080 -cert /etc/ssl/localcerts/ecc-uni.wikimedia.org.crt -cert /etc/ssl/localcerts/uni.wikimedia.org.crt failed with exit code 1, stderr: Error querying OCSP responder 139853469415056:error:27076072:OCSP routines:PARSE_HTTP_LINE1:server response error:ocsp_ht.c:314:Code=504,Reason=Gateway Time-out Traceback (most recent call last): File "/usr/local/sbin/update-ocsp", line 285, in <module> main() File "/usr/local/sbin/update-ocsp", line 278, in main certs_fetch_ocsp(out_tempfile, args) File "/usr/local/sbin/update-ocsp", line 212, in certs_fetch_ocsp (ocsp_err)) Exception: Did not find verification OK in stderr: Error querying OCSP responder 139853469415056:error:27076072:OCSP routines:PARSE_HTTP_LINE1:server response error:ocsp_ht.c:314:Code=504,Reason=Gateway Time-out OCSP update failed for /etc/update-ocsp.d/unified.conf
Traceback (most recent call last): File "/usr/share/varnish/zerofetch.py", line 141, in <module> main() File "/usr/share/varnish/zerofetch.py", line 108, in main json_data[ztype] = fetcher.zeroconf(ztype) File "/usr/share/varnish/zerofetch.py", line 74, in zeroconf return self._apiJSON('get', 'zeroportal', {'type': ztype}) File "/usr/share/varnish/zerofetch.py", line 27, in _apiJSON resp = getattr(self.sess, method)(self.baseurl, params=params) File "/usr/lib/python2.7/dist-packages/requests/sessions.py", line 469, in get return self.request('GET', url, **kwargs) File "/usr/lib/python2.7/dist-packages/requests/sessions.py", line 457, in request resp = self.send(prep, **send_kwargs) File "/usr/lib/python2.7/dist-packages/requests/sessions.py", line 569, in send r = adapter.send(request, **kwargs) File "/usr/lib/python2.7/dist-packages/requests/adapters.py", line 407, in send raise ConnectionError(err, request=request) requests.exceptions.ConnectionError: ('Connection aborted.', BadStatusLine("''",))
Can we change the scripts to avoid the output in case of Connection Errors or are those valuable in root@?
Thanks!
Luca