Hi
I need some help on a podcast that doesn’t work any more.
I’m running Volumio 2.861
The issue occurs with the Podcast 0.3.0 plugin
Most podcasts just work fine
The issue is on a specific Podcast with error message:
Error Failed to decode https://chtbl.com/track/6875AF/stats.podcloud.fr/yann-darwin/numero-37-applique-ces-3-conseils-maintenant-et-ta-vie-dinvestisseur-va-changer/enclosure.d559b3644469d72e31675542755de1d01220bd1cc21b8f7037d76386fe9881f4.mp3?p=f;
CURL failed: server certificate verification failed.
CAfile: /etc/ssl/certs/ca-certificates.crt
CRLfile: none
This URL plays the audio in Firefox browser like a charm.
My issue is quite similar with Webradio won't play. Certificate? - #3 by jopreu so I’ve tried to solve it the same way…with no luck
- I downloaded s3-eu-central-1-amazonaws-com-chain.pem with Firefox
- renamed in *.crt and moved to /usr/local/share/ca-certificates
sudo update-ca-certificates
Updating certificates in /etc/ssl/certs... 1 added, 0 removed; done.
Running hooks in /etc/ca-certificates/update.d....done.
These steps didn’t help
Then I try the following:
curl -v https://chtbl.com/track/6875AF/stats.podcloud.fr/yann-darwin/numero-38-comment-jai-achete-mon-1er-immeuble-pour-490eu-et-revendu-370-point-000/enclosure.6619fd981a54ee96795c5259b9f636e95e0287cfdeda1b7d98d07e915b293bca.mp3?p=f
* Hostname was NOT found in DNS cache
* Trying 52.222.174.86...
* Connected to chtbl.com (52.222.174.86) port 443 (#0)
* successfully set certificate verify locations:
* CAfile: none
CApath: /etc/ssl/certs
* SSLv3, TLS handshake, Client hello (1):
* SSLv3, TLS handshake, Server hello (2):
* SSLv3, TLS handshake, CERT (11):
* SSLv3, TLS handshake, Server key exchange (12):
* SSLv3, TLS handshake, Server finished (14):
* SSLv3, TLS handshake, Client key exchange (16):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256
* Server certificate:
* subject: CN=chtbl.com
* start date: 2021-01-14 00:00:00 GMT
* expire date: 2022-02-12 23:59:59 GMT
* subjectAltName: chtbl.com matched
* issuer: C=US; O=Amazon; OU=Server CA 1B; CN=Amazon
* SSL certificate verify ok.
> GET /track/6875AF/stats.podcloud.fr/yann-darwin/numero-38-comment-jai-achete-mon-1er-immeuble-pour-490eu-et-revendu-370-point-000/enclosure.6619fd981a54ee96795c5259b9f636e95e0287cfdeda1b7d98d07e915b293bca.mp3?p=f HTTP/1.1
> User-Agent: curl/7.38.0
> Host: chtbl.com
> Accept: */*
>
< HTTP/1.1 302 FOUND
< Content-Type: text/html; charset=utf-8
< Content-Length: 0
< Connection: keep-alive
< Date: Sun, 31 Oct 2021 20:21:03 GMT
* Server nginx/1.17.10 is not blacklisted
< Server: nginx/1.17.10
< Location: https://stats.podcloud.fr/yann-darwin/numero-38-comment-jai-achete-mon-1er-immeuble-pour-490eu-et-revendu-370-point-000/enclosure.6619fd981a54ee96795c5259b9f636e95e0287cfdeda1b7d98d07e915b293bca.mp3?p=f
< Set-Cookie: _chtbl=ac8ea307c7e741b297ad789dca8644df; Domain=.chtbl.com; Path=/
< Access-Control-Allow-Origin: *
< X-Cache: Miss from cloudfront
< Via: 1.1 e01ab9056cc78875229a55be936f41ee.cloudfront.net (CloudFront)
< X-Amz-Cf-Pop: CDG50-P2
< X-Amz-Cf-Id: BjiZgWACrXS1iFuXWyLr0JOW_ACE5MgrpRtJVFrWmZTBisMXlzVEAg==
<
* Connection #0 to host chtbl.com left intact
I don’t understand this: SSL certificate verify ok