Invalid SSL certificate on devcenter.bitrise.io

koral · October 25, 2017, 10:24pm

Certificate is issued to github.com, not to bitrise.io

curl -v https://devcenter.bitrise.io
* Rebuilt URL to: https://devcenter.bitrise.io/
*   Trying 151.101.37.147...
* TCP_NODELAY set
* Connected to devcenter.bitrise.io (151.101.37.147) port 443 (#0)
* ALPN, offering http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* successfully set certificate verify locations:
*   CAfile: /etc/ssl/certs/ca-certificates.crt
  CApath: /etc/ssl/certs
* TLSv1.2 (OUT), TLS header, Certificate Status (22):
* TLSv1.2 (OUT), TLS handshake, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
* TLSv1.2 (IN), TLS handshake, Server finished (14):
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
* TLSv1.2 (OUT), TLS change cipher, Client hello (1):
* TLSv1.2 (OUT), TLS handshake, Finished (20):
* TLSv1.2 (IN), TLS change cipher, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256
* ALPN, server accepted to use http/1.1
* Server certificate:
*  subject: C=US; ST=California; L=San Francisco; O=GitHub, Inc.; CN=www.github.com
*  start date: Mar 23 00:00:00 2017 GMT
*  expire date: May 13 12:00:00 2020 GMT
*  subjectAltName does not match devcenter.bitrise.io
* SSL: no alternative certificate subject name matches target host name 'devcenter.bitrise.io'
* Closing connection 0
* TLSv1.2 (OUT), TLS alert, Client hello (1):
curl: (51) SSL: no alternative certificate subject name matches target host name 'devcenter.bitrise.io'

viktorbenei · October 28, 2017, 8:13am

Hi @koral,

Can it be that you use an SSL/HTTPS enforcing browser addon / plugin?
We don’t have SSL/HTTPS set up for http://devcenter.bitrise.io/ right now, and so every link to http://devcenter.bitrise.io/ from our sites should be http not https (for exactly the reason you mentioned, that it’s hosted as a github pages static website).

Or did you find a link on our sites where it was with https?

koral · October 28, 2017, 5:56pm

I’ve manually entered HTTPS URL hoping that it will work.

viktorbenei · October 29, 2017, 8:36am

Got it. It’s on our list for quite some time now to add SSL to devcenter, unfortunately that’s not a simple feet for github pages. We’re still discussing whether we should move it to another host, or just setup Cloudflare or similar for github pages; unfortunately did not have enough time to research & implement, yet.

Topic		Replies	Views
Updated SSL certificate for hooks.bitrise.io Changelog announcements	3	1327	January 11, 2017
Error when loading Certs Builds	3	2273	February 16, 2017
No development nor production certificate identified on development portal Builds	5	2388	March 23, 2019
VPN config works locally on bitrise CLI but fails on bitrise.io Issues	7	2990	February 12, 2021
Issue with input: failed to parse certificate URL and passphrase inputs: certificates count (1) and passphrases count (2) should match Builds ios , certificate	1	1162	January 27, 2022

Invalid SSL certificate on devcenter.bitrise.io

Related topics