Strange Cloudflare Cert on

Dagobert Michelsen dam at
Sun Apr 23 19:51:41 CEST 2017

Hi Hsan,

Am 23.04.2017 um 16:55 schrieb ihsan at
>> I noticed that our package propagation is broken because the buglist could not be retreived
>> by the go program from
>> The cert from Cloudflare can not be viewed by our current openssl, maybe the ciphers are
>> too new?
>> web at web [web]:/home/web/bin/gar/go > openssl s_client -connect -showcerts
>> CONNECTED(00000004)
>> 18446744071545616348:error:14077438:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error:s23_clnt.c:757:
> You have to use SNI. All browsers are doing that by default, but with OpenSSL you have to specify it first:
> $ openssl s_client -servername -connect -showcerts

I can’t fiugure out how to do this in GO, which is what our propagation is using.
Any hot tipps appreciated…

Best regards

  — Dago

"You don't become great by trying to be great, you become great by wanting to do something,
and then doing it so hard that you become great in the process." - xkcd #896

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 841 bytes
Desc: Message signed with OpenPGP
URL: <>

More information about the buildfarm mailing list