1. a-v-r Avatar a-v-r
  2. Bitbucket Server
  3. Bitbucket HTTP-Request Hook
  4. Issues

Problems with SSL even when SSL validation skipped

Issue #32 resolved
Alexander Rasch created an issue

The website the request is going to, is protected by cloudflare.

The log shows the following :

2017-03-27 20:37:41,419 DEBUG d.a.s.p.hook.HttpGetPostReceiveHook Http Get Post Receive Hook started.
2017-03-27 20:37:41,430 DEBUG d.a.s.p.hook.HttpGetPostReceiveHook User: ffe96a7bf2b0ac98
2017-03-27 20:37:41,430 DEBUG d.a.s.p.hook.HttpGetPostReceiveHook Number of HttpLocations: 1
2017-03-27 20:37:41,436 DEBUG d.a.s.p.hook.HttpGetPostReceiveHook RefChange: refs/heads/master
2017-03-27 20:37:41,436 DEBUG d.a.s.p.hook.HttpGetPostReceiveHook HttpLocationUntranslated: user:  - urlTemplate: https://MyAPI.com/Bla
2017-03-27 20:37:41,472 DEBUG d.a.s.p.hook.HttpGetPostReceiveHook HttpLocationTranslated: user:  - pass:  - url: https://MyAPI.com/Bla
2017-03-27 20:37:41,491 INFO  d.a.s.p.hook.HttpGetPostReceiveHook Http request with URL: https://MyAPI.com/Bla (POST)
2017-03-27 20:37:41,500 INFO  d.a.s.p.hook.HttpGetPostReceiveHook doPageRequest: MyAPI.com
2017-03-27 20:37:41,500 INFO  d.a.s.p.hook.HttpGetPostReceiveHook Skip SSL Validation for https://MyAPI.com/Bla
2017-03-27 20:37:41,511 INFO  d.a.s.p.hook.HttpGetPostReceiveHook Start with the POST or PUT
2017-03-27 20:37:41,556 ERROR d.a.s.p.hook.HttpGetPostReceiveHook Some IO exception occured javax.net.ssl.SSLException: Received fatal alert: internal_error - Received fatal alert: internal_error

Comments (6)

  1. Alexander Renteln

    Hi,

    so the site is served via cloudflare and should have a valid ssl cert? Could you give me some specifics about your environment? What version of java are you using? Which version of stash/bitbucket and which version of the plugin?

    Best, Alex

  2. Alexander Rasch reporter 
    OS: Windows 2012R2
Bitbucket: 4.11.2
java.vendor: Oracle Corporation
java.runtime.version: 1.8.0_121-b13
Plugin Version: 4.1.0
  3. Alexander Renteln

    hey alex,

    sorry for not answering ealier. I haven't been able to reproduce it but I haven't spun up a windows instance yet. I'll do that once I'm back from my vacation :-).

    I created a new plugin and put it in the download section just for you. It upgraded the http client and added the following test-client. You can find it by accessing "/plugins/servlet/stash-http-post-receive-hook-test"....

    I'll be on vacation for another week but once I'm back, I'll try it out myself.

    Best, Alex

  4. Alexander Renteln

    Hi Alex,

    I tried to reproduce it with the new version but failed: win2016server-bitbucket-screenshot.png

    I used https://www2.aeffle.de/ which is setup with cloudflare and their ssl. The test servlet which allows you to test requests using skip-ssl-verification may help you to test it more quickly without having to push stuff to git.

    Let me know how it goes.

    Best, Alex

  7. Log in to comment
Assignee
Type
bug
Priority
critical
Status
resolved
Votes
0
Watchers
2
Jira: the preferred issue tracker for Bitbucket. Join the team!