Certificate has expired

Question

Certificate has expired

daveteu opened this issue 2 years ago · comments

I've tried to reinstalled the app couple of times, deleted the ~/.software folders as well, and tried signing in again but I'm getting the errors in output.

Can't get Code Time started at all.

2022-09-22T23:25:39+08:00 CodeTime(p): error for POST /api/v1/anonymous_user, message: certificate has expired
2022-09-22T23:25:39+08:00 CodeTime(p): Loaded softwaredotcom.swdc-vscode v2.6.33
2022-09-22T23:25:39+08:00 CodeTime(p): initializing websocket connection
2022-09-22T23:25:39+08:00 CodeTime(p): Failed to initialize websockets: Invalid value "undefined" for header "Authorization"
2022-09-22T23:25:40+08:00 CodeTime(p): error for GET /api/v1/user, message: certificate has expired
2022-09-22T23:25:40+08:00 CodeTime(p): error for GET /api/v1/user/session_summary, message: certificate has expired
2022-09-22T23:25:43+08:00 CodeTime(p): error for POST /api/v1/anonymous_user, message: certificate has expired
2022-09-22T23:25:45+08:00 CodeTime(p): error for GET /plugin/sidebar, message: certificate has expired
2022-09-22T23:26:37+08:00 CodeTime(p): error for GET /plugin/sidebar, message: certificate has expired

Dave · Answer 1 · Fri Sep 23 2022 09:42:00 GMT+0800 (China Standard Time)

From the VScode terminal itself, I can get the certificate as follows and it's not expired

>  echo | openssl s_client -showcerts -servername api.software.com -connect api.software.com:443 2>/dev/null | openssl x509 -inform pem -noout -text

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:61:19:9f:d2:1a:12:88:95:87:af:6c:e6:f6:4d:39:18:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Jul 22 22:36:28 2022 GMT
            Not After : Oct 20 22:36:27 2022 GMT
        Subject: CN=api.software.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c0:84:a3:ec:13:e7:1f:9e:6f:72:a2:5f:fc:f5:
                    01:4e:86:80:84:ef:60:76:7b:0c:66:cd:a0:a6:85:
                    64:9b:5b:c6:85:b3:5a:74:6f:35:93:26:39:03:75:
                    3f:bf:db:48:79:1b:0c:ea:60:56:9e:13:63:8a:67:
                    8f:32:9a:0c:34:03:19:05:37:52:77:87:a6:64:10:
                    22:97:6d:ac:06:66:65:27:d7:70:7d:8d:af:bd:cc:
                    8f:6a:0e:42:a1:41:34:25:1f:be:0e:a0:71:24:b6:
                    af:51:fc:bd:06:7e:ba:2b:69:4d:25:a7:c3:65:71:
                    5c:bb:bb:af:32:96:b9:8d:5d:af:ee:8a:92:6a:ef:
                    e6:46:23:d7:d7:f3:65:a0:cd:cf:8b:37:41:d5:72:
                    40:e8:07:51:99:da:70:de:c3:91:17:3c:c1:41:a6:
                    d0:f2:34:42:d0:ea:9f:cf:dc:57:40:fd:de:47:06:
                    d1:84:50:88:c2:c5:40:bf:5b:13:aa:99:09:3c:83:
                    db:00:8c:47:ff:33:c5:c1:ce:ba:88:bc:23:f2:42:
                    86:6f:86:53:95:46:69:8a:38:81:e8:5f:6a:60:c2:
                    25:85:54:2b:a1:c8:68:53:57:69:13:38:48:18:07:
                    2e:d1:18:78:37:f5:14:04:ba:ec:ce:38:eb:ce:f5:
                    75:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                B7:B4:DB:7A:85:3B:73:78:0A:BB:2D:91:FA:41:82:9A:7A:AA:D7:C5
            X509v3 Authority Key Identifier: 
                keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6

            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/

            X509v3 Subject Alternative Name: 
                DNS:api.software.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.44947.1.1.1
                  CPS: http://cps.letsencrypt.org

            1.3.6.1.4.1.11129.2.4.2: 
                ......u.)y...99!.Vs.c.w..W}.`
..M]&\%]......(E.e.....F0D. c.....=...o
......]..8.....5...[. ]......V..#.3a1.)....1.{R.K..n.Y.w.oSv.1.1.....Q..w.......).....7......(E.
.....H0F.!..}3.:...&.Lt..J..X....@.}E.2T....!..f3....5..,:v.)KMy__.Bcn+r7B....
    Signature Algorithm: sha256WithRSAEncryption
         17:ce:2b:31:a3:48:50:a6:03:79:66:2c:7b:fa:6b:b0:f4:ad:
         9a:0a:aa:e2:ff:9b:3a:36:46:32:fb:05:67:f2:6e:f4:ff:c2:
         4f:d2:0f:bf:17:fa:8a:fd:41:7c:48:6f:13:ee:7f:c7:9b:c1:
         8b:ab:90:33:2d:d5:ff:35:63:29:14:17:f8:a0:27:94:c5:a4:
         a5:f0:0c:52:c2:ff:ec:f7:0c:dc:5f:be:63:96:7c:34:ad:b6:
         2a:4a:a7:cd:38:a5:5f:8b:aa:43:43:bd:32:04:e7:cd:94:05:
         aa:78:41:a8:79:d6:13:02:25:da:ed:b3:97:0a:66:23:8b:3c:
         4d:da:3b:86:0c:4a:e8:48:a6:5d:0d:f7:35:e2:e6:5a:bd:1e:
         02:57:08:47:dd:54:0c:2f:a5:38:6f:0d:c3:e6:c7:d6:86:ec:
         6d:8e:25:16:0a:cd:ef:3b:a8:10:0c:3b:d3:68:02:6b:2e:9a:
         72:f2:44:33:26:e0:89:8a:81:0f:97:d2:bc:6b:85:c0:cd:9f:
         c3:d1:96:11:76:44:ca:bb:e8:8e:3e:cc:6e:5b:cb:8d:48:1c:
         13:d0:d2:2d:3a:04:88:3a:45:db:bb:58:6c:db:9d:34:b9:e2:
         69:cc:19:73:ab:93:e0:b6:c9:86:32:d0:f4:6f:a9:e9:9b:f3:
         a8:dc:6e:ea

Dave · Answer 2 · Fri Sep 23 2022 12:28:59 GMT+0800 (China Standard Time)

Likely related to microsoft/vscode#134244

Dave · Answer 3 · Sat Oct 01 2022 19:48:32 GMT+0800 (China Standard Time)

After so many tries and searches, disabling the following 2 certificate options work for me at the moment.