CloudFlare certificates not validated by urlfetch on dev server?

68 views

Skip to first unread message

Jeff R. Allen

unread,

Dec 4, 2015, 12:07:00 PM12/4/15

to Google App Engine

I am using Go with AppEngine and urlfetch.Client(ctx).Get(url) for a https://blog.nella.org is failing with:

API error 6 (urlfetch: SSL_CERTIFICATE_ERROR): [SSL: TLSV1_ALERT_INTERNAL_ERROR] tlsv1 alert internal error (_ssl.c:590)

This happens with the development server, but not in production. I am using go_appengine_sdk_darwin_amd64-1.9.30.zip.

The certificate on blog.nella.org is a CloudFlare Universal SSL one, which means it has many many Subject Alternate Names matching other sites that CloudFlare runs. I wonder if that's the problem?

-jeff

PS: This was discussed in 2012 on Stack Overflow:

http://stackoverflow.com/questions/13755041/invalid-and-or-missing-ssl-certificate

Google, please fix it.

Adam

unread,

Dec 6, 2015, 5:40:16 PM12/6/15

to Google App Engine

I have been able to reproduce the same behavior. I've posted this to our issue tracker, and will it update it again once the issue has been acknowledged by the dev team.

Cheers,

Adam

Cloud Platform Support

Reply all

Reply to author

Forward

0 new messages