尝试从 AWS Lambda 而不是桌面访问 AWS Device Farm 时出现 SSL 证书错误
SSL Certificate Errors when trying to access AWS Device Farm from AWS Lambda but Not Desktop
我正在尝试在 AWS 上使用 Selenium 创建一个抓取工具,所以我在桌面上使用了以下代码
import boto3
from selenium.webdriver import Remote
from selenium.webdriver import DesiredCapabilities
devicefarm_client = boto3.client('devicefarm', region_name='us-west-2', verify=False)
testgrid_url_response = devicefarm_client.create_test_grid_url(projectArn="<insert_arn_here>", expiresInSeconds=120)
desired_capabilities = DesiredCapabilities.CHROME
desired_capabilities['platform'] = 'windows'
desired_capabilities['acceptInsecureCerts'] = True
# fails here
driver = Remote(testgrid_url_response['url'], desired_capabilities)
# unreachable code
driver.get('https://www.google.com')
driver.quit()
当我在桌面上 运行 这段代码时,我能够成功调用 Device Farm,但是当我尝试 运行 相同的代码到 AWS Lambda 函数中时,我得到以下错误
"errorMessage": "<urlopen error [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: IP address mismatch, certificate is not valid for '54.185.155.213'. (_ssl.c:1129)>",
"errorType": "URLError",
"requestId": "8c064e3e-f362-441b-be0c-3bc00ad109ba",
"stackTrace": [
" File \"/var/task/lambda_function.py\", line 24, in lambda_handler\n driver = Remote(testgrid_url_response['url'], desired_capabilities)\n",
" File \"/opt/python/lib/python3.9/site-packages/selenium/webdriver/remote/webdriver.py\", line 92, in __init__\n self.start_session(desired_capabilities, browser_profile)\n",
" File \"/opt/python/lib/python3.9/site-packages/selenium/webdriver/remote/webdriver.py\", line 179, in start_session\n response = self.execute(Command.NEW_SESSION, capabilities)\n",
" File \"/opt/python/lib/python3.9/site-packages/selenium/webdriver/remote/webdriver.py\", line 234, in execute\n response = self.command_executor.execute(driver_command, params)\n",
" File \"/opt/python/lib/python3.9/site-packages/selenium/webdriver/remote/remote_connection.py\", line 408, in execute\n return self._request(command_info[0], url, body=data)\n",
" File \"/opt/python/lib/python3.9/site-packages/selenium/webdriver/remote/remote_connection.py\", line 478, in _request\n resp = opener.open(request, timeout=self._timeout)\n",
" File \"/var/lang/lib/python3.9/urllib/request.py\", line 517, in open\n response = self._open(req, data)\n",
" File \"/var/lang/lib/python3.9/urllib/request.py\", line 534, in _open\n result = self._call_chain(self.handle_open, protocol, protocol +\n",
" File \"/var/lang/lib/python3.9/urllib/request.py\", line 494, in _call_chain\n result = func(*args)\n",
" File \"/var/lang/lib/python3.9/urllib/request.py\", line 1389, in https_open\n return self.do_open(http.client.HTTPSConnection, req,\n",
" File \"/var/lang/lib/python3.9/urllib/request.py\", line 1349, in do_open\n raise URLError(err)\n"
]
}
尽管设置了 verify=False,并将 Lambda 置于 US-west-2 区域,并且设置了 desired_capabilities['acceptInsecureCerts'] = True 并附加了 IAM 角色策略以提供对设备农场。已尝试 运行time 环境 Python3.8 和 Python3.9。我也试过直接传入我的 aws_access_key_id 和 aws_secret_access_key,结果相同。
答案,感谢@Tobe E 的建议,与 Selenium 的版本有关。我的 requirements.txt 文件包含 selenium==3.0.2,而我的本地安装包含 selenium==3.141.0。升级 Selenium 包并重新部署到 AWS 后,代码按预期运行,没有 SSL 证书错误。
我正在尝试在 AWS 上使用 Selenium 创建一个抓取工具,所以我在桌面上使用了以下代码
import boto3
from selenium.webdriver import Remote
from selenium.webdriver import DesiredCapabilities
devicefarm_client = boto3.client('devicefarm', region_name='us-west-2', verify=False)
testgrid_url_response = devicefarm_client.create_test_grid_url(projectArn="<insert_arn_here>", expiresInSeconds=120)
desired_capabilities = DesiredCapabilities.CHROME
desired_capabilities['platform'] = 'windows'
desired_capabilities['acceptInsecureCerts'] = True
# fails here
driver = Remote(testgrid_url_response['url'], desired_capabilities)
# unreachable code
driver.get('https://www.google.com')
driver.quit()
当我在桌面上 运行 这段代码时,我能够成功调用 Device Farm,但是当我尝试 运行 相同的代码到 AWS Lambda 函数中时,我得到以下错误
"errorMessage": "<urlopen error [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: IP address mismatch, certificate is not valid for '54.185.155.213'. (_ssl.c:1129)>",
"errorType": "URLError",
"requestId": "8c064e3e-f362-441b-be0c-3bc00ad109ba",
"stackTrace": [
" File \"/var/task/lambda_function.py\", line 24, in lambda_handler\n driver = Remote(testgrid_url_response['url'], desired_capabilities)\n",
" File \"/opt/python/lib/python3.9/site-packages/selenium/webdriver/remote/webdriver.py\", line 92, in __init__\n self.start_session(desired_capabilities, browser_profile)\n",
" File \"/opt/python/lib/python3.9/site-packages/selenium/webdriver/remote/webdriver.py\", line 179, in start_session\n response = self.execute(Command.NEW_SESSION, capabilities)\n",
" File \"/opt/python/lib/python3.9/site-packages/selenium/webdriver/remote/webdriver.py\", line 234, in execute\n response = self.command_executor.execute(driver_command, params)\n",
" File \"/opt/python/lib/python3.9/site-packages/selenium/webdriver/remote/remote_connection.py\", line 408, in execute\n return self._request(command_info[0], url, body=data)\n",
" File \"/opt/python/lib/python3.9/site-packages/selenium/webdriver/remote/remote_connection.py\", line 478, in _request\n resp = opener.open(request, timeout=self._timeout)\n",
" File \"/var/lang/lib/python3.9/urllib/request.py\", line 517, in open\n response = self._open(req, data)\n",
" File \"/var/lang/lib/python3.9/urllib/request.py\", line 534, in _open\n result = self._call_chain(self.handle_open, protocol, protocol +\n",
" File \"/var/lang/lib/python3.9/urllib/request.py\", line 494, in _call_chain\n result = func(*args)\n",
" File \"/var/lang/lib/python3.9/urllib/request.py\", line 1389, in https_open\n return self.do_open(http.client.HTTPSConnection, req,\n",
" File \"/var/lang/lib/python3.9/urllib/request.py\", line 1349, in do_open\n raise URLError(err)\n"
]
}
尽管设置了 verify=False,并将 Lambda 置于 US-west-2 区域,并且设置了 desired_capabilities['acceptInsecureCerts'] = True 并附加了 IAM 角色策略以提供对设备农场。已尝试 运行time 环境 Python3.8 和 Python3.9。我也试过直接传入我的 aws_access_key_id 和 aws_secret_access_key,结果相同。
答案,感谢@Tobe E 的建议,与 Selenium 的版本有关。我的 requirements.txt 文件包含 selenium==3.0.2,而我的本地安装包含 selenium==3.141.0。升级 Selenium 包并重新部署到 AWS 后,代码按预期运行,没有 SSL 证书错误。