-
Notifications
You must be signed in to change notification settings - Fork 680
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
link-check: exclude funyours.co.jp (#7104) #7107
link-check: exclude funyours.co.jp (#7104) #7107
Conversation
http://company.funyours.co.jp/ redirects to https://www.funyours.co.jp and that host doesn't present a correct/complete certificate chain. In addition to that it looks like the certificate and hostname don't match. https://www.ssllabs.com/ssltest/analyze.html?d=www.funyours.co.jp Previous discussion: pingcap#6837 (comment) ``` $ curl -v -L http://company.funyours.co.jp/ * Trying 210.152.118.91:80... * Connected to company.funyours.co.jp (210.152.118.91) port 80 (#0) > GET / HTTP/1.1 > Host: company.funyours.co.jp > User-Agent: curl/7.79.1 > Accept: */* > * Mark bundle as not supporting multiuse < HTTP/1.1 301 Moved Permanently < Server: nginx < Date: Fri, 03 Dec 2021 06:37:29 GMT < Content-Type: text/html < Content-Length: 178 < Connection: keep-alive < Location: https://www.funyours.co.jp < * Ignoring the response-body * Connection #0 to host company.funyours.co.jp left intact * Issue another request to this URL: 'https://www.funyours.co.jp/' * Trying 47.245.16.139:443... * Connected to www.funyours.co.jp (47.245.16.139) port 443 (pingcap#1) * ALPN, offering h2 * ALPN, offering http/1.1 * successfully set certificate verify locations: * CAfile: /etc/pki/tls/certs/ca-bundle.crt * CApath: none * TLSv1.3 (OUT), TLS handshake, Client hello (1): * TLSv1.3 (IN), TLS handshake, Server hello (2): * TLSv1.2 (IN), TLS handshake, Certificate (11): * TLSv1.2 (OUT), TLS alert, unknown CA (560): * SSL certificate problem: unable to get local issuer certificate * Closing connection 1 curl: (60) SSL certificate problem: unable to get local issuer certificate More details here: https://curl.se/docs/sslcerts.html curl failed to verify the legitimacy of the server and therefore could not establish a secure connection to it. To learn more about this situation and how to fix it, please visit the web page mentioned above. ```
[REVIEW NOTIFICATION] This pull request has been approved by:
To complete the pull request process, please ask the reviewers in the list to review by filling The full list of commands accepted by this bot can be found here. Reviewer can indicate their review by submitting an approval review. |
/merge |
This pull request has been accepted and is ready to merge. Commit hash: 823c522
|
This is an automated cherry-pick of #7104
What is changed, added or deleted? (Required)
http://company.funyours.co.jp/ redirects to https://www.funyours.co.jp
and that host doesn't present a correct/complete certificate chain. In
addition to that it looks like the certificate and hostname don't match.
https://www.ssllabs.com/ssltest/analyze.html?d=www.funyours.co.jp
Previous discussion: #6837 (comment)
Which TiDB version(s) do your changes apply to? (Required)
What is the related PR or file link(s)?
Do your changes match any of the following descriptions?