Problems with SSL even when SSL validation skipped
The website the request is going to, is protected by cloudflare.
The log shows the following :
2017-03-27 20:37:41,419 DEBUG d.a.s.p.hook.HttpGetPostReceiveHook Http Get Post Receive Hook started.
2017-03-27 20:37:41,430 DEBUG d.a.s.p.hook.HttpGetPostReceiveHook User: ffe96a7bf2b0ac98
2017-03-27 20:37:41,430 DEBUG d.a.s.p.hook.HttpGetPostReceiveHook Number of HttpLocations: 1
2017-03-27 20:37:41,436 DEBUG d.a.s.p.hook.HttpGetPostReceiveHook RefChange: refs/heads/master
2017-03-27 20:37:41,436 DEBUG d.a.s.p.hook.HttpGetPostReceiveHook HttpLocationUntranslated: user: - urlTemplate: https://MyAPI.com/Bla
2017-03-27 20:37:41,472 DEBUG d.a.s.p.hook.HttpGetPostReceiveHook HttpLocationTranslated: user: - pass: - url: https://MyAPI.com/Bla
2017-03-27 20:37:41,491 INFO d.a.s.p.hook.HttpGetPostReceiveHook Http request with URL: https://MyAPI.com/Bla (POST)
2017-03-27 20:37:41,500 INFO d.a.s.p.hook.HttpGetPostReceiveHook doPageRequest: MyAPI.com
2017-03-27 20:37:41,500 INFO d.a.s.p.hook.HttpGetPostReceiveHook Skip SSL Validation for https://MyAPI.com/Bla
2017-03-27 20:37:41,511 INFO d.a.s.p.hook.HttpGetPostReceiveHook Start with the POST or PUT
2017-03-27 20:37:41,556 ERROR d.a.s.p.hook.HttpGetPostReceiveHook Some IO exception occured javax.net.ssl.SSLException: Received fatal alert: internal_error - Received fatal alert: internal_error
Comments (6)
-
-
reporter OS: Windows 2012R2 Bitbucket: 4.11.2 java.vendor: Oracle Corporation java.runtime.version: 1.8.0_121-b13 Plugin Version: 4.1.0
-
hey alex,
sorry for not answering ealier. I haven't been able to reproduce it but I haven't spun up a windows instance yet. I'll do that once I'm back from my vacation :-).
I created a new plugin and put it in the download section just for you. It upgraded the http client and added the following test-client. You can find it by accessing "/plugins/servlet/stash-http-post-receive-hook-test"....
I'll be on vacation for another week but once I'm back, I'll try it out myself.
Best, Alex
-
Hi Alex,
I tried to reproduce it with the new version but failed:
I used https://www2.aeffle.de/ which is setup with cloudflare and their ssl. The test servlet which allows you to test requests using skip-ssl-verification may help you to test it more quickly without having to push stuff to git.
Let me know how it goes.
Best, Alex
-
- changed status to open
-
- changed status to resolved
Cannot reproduce :-/
- Log in to comment
Hi,
so the site is served via cloudflare and should have a valid ssl cert? Could you give me some specifics about your environment? What version of java are you using? Which version of stash/bitbucket and which version of the plugin?
Best, Alex