New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Certificate verification failure has an unhelpful message #8
Comments
I'm curious if you guys have any advice on how to debug a certificate verification error in JRuby. I was looking at the verification code and it doesn't look like there is any debug logging or particularly useful error reporting going on. I ended up here as a result of looking into why |
@md5 we do have UPDATE: also please try getting the latest jruby-openssl (0.9.6) than install it (e.g. a local |
No dice on that:
The reason I'm not able to do that is that I'm looking into docker-library/official-images#391 and the SSL support in the Docker As for the debug flag, I was running a command like this: It wasn't until I noticed it wasn't giving any useful debug output that I dug into the Update: The JRuby version in question is 1.7.18 on OpenJDK 8. You can see how it's being installed here: https://github.com/cpuguy83/docker-jruby/blob/master/1.7/Dockerfile The line that's failing is line 13 ( |
@md5 I meant updating jruby-openssl (manually downloading and installing the gem) BEFORE trying a |
should be irrelevant since the jruby-openssl 0.9.7 release (JRuby >= 1.7.20) |
Spec from my project: https://github.com/basho/riak-ruby-client/blob/0e162cecbbb0ee550080de56abbb30032c59ac5f/spec/integration/riak/security_spec.rb#L45-L57
This raises an OpenSSL::SSL::SSLError with an unhelpful message:
#<OpenSSL::SSL::SSLError: No message available>
instead of one describing the problem or matching one I've seen from C-Ruby OpenSSL.The TLS connection is established at:
https://github.com/basho/riak-ruby-client/blob/0e162cecbbb0ee550080de56abbb30032c59ac5f/lib/riak/client/beefcake/socket.rb#L162
I suspect the error is one of these: https://github.com/jruby/jruby-openssl/blob/master/src/main/java/org/jruby/ext/openssl/SSLSocket.java#L202
The text was updated successfully, but these errors were encountered: