Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-65226

Add preference for allowing insecure, i.e. no-TLS, XMPP connections

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Open (View Workflow)
    • Priority: Blocker
    • Resolution: Unresolved
    • Component/s: jabber-plugin
    • Labels:
      None
    • Environment:
      Jenkins 2.285, jabber-plugin 1.41
    • Similar Issues:

      Description

      After version 1.41 i receive this error on logs:

       
      mar 10, 2021 2:37:42 PM ADVERTÊNCIA hudson.plugins.jabber.im.transport.JabberIMConnection createConnection
      org.jivesoftware.smack.SmackException$SecurityRequiredByClientException: SSL/TLS required by client but not supported by serverCould not create IM connection
      hudson.plugins.im.IMException: Connection failed

      Revert to 1.39 resolve the problem.

        Attachments

          Activity

          Hide
          acrespo Andre Crespo added a comment -

          Searching on google i found other applications with the same problem, like that:

          Jigasi: Failed to connect to XMPP because of TLS problems - Install & Config - Jitsi Community Forum - developers & users

          Maybe you can understand what's happening reading this post and others. I search on google with the string "org.jivesoftware.smack.SmackException$SecurityRequiredByClientException" SSL

          Show
          acrespo Andre Crespo added a comment - Searching on google i found other applications with the same problem, like that: Jigasi: Failed to connect to XMPP because of TLS problems - Install & Config - Jitsi Community Forum - developers & users Maybe you can understand what's happening reading this post and others. I search on google with the string "org.jivesoftware.smack.SmackException$SecurityRequiredByClientException" SSL
          Hide
          acrespo Andre Crespo added a comment - - edited

          Florian Schmaus this server is a xmpp used by all employees on my organization. I am not the server administrator and I can't change anything on that. I think there are other people with the same situation so I think that plugin need something to keep the behavior of v1.39, trying to connect without SSL/TLS. This can be a configuration on Jenkins Management menu.

          Show
          acrespo Andre Crespo added a comment - - edited Florian Schmaus this server is a xmpp used by all employees on my organization. I am not the server administrator and I can't change anything on that. I think there are other people with the same situation so I think that plugin need something to keep the behavior of v1.39, trying to connect without SSL/TLS. This can be a configuration on Jenkins Management menu.
          Hide
          flow Florian Schmaus added a comment -

          Thanks, but the interesting parts, that is, what is happening before the connection got authenticated, are missing.

          I can only repeat what I wrote above, it appears your server does not offer TLS, while the jabber-plugin (currently) requires TLS. I can not explain exactly (yet) what is going on with 1.39, I won't rule out the possibility that you are on an insecure connection with that version.

          Show
          flow Florian Schmaus added a comment - Thanks, but the interesting parts, that is, what is happening before the connection got authenticated, are missing. I can only repeat what I wrote above, it appears your server does not offer TLS, while the jabber-plugin (currently) requires TLS. I can not explain exactly (yet) what is going on with 1.39, I won't rule out the possibility that you are on an insecure connection with that version.
          Hide
          acrespo Andre Crespo added a comment -

          Well, I can't do anything on my side, as this can impact 500 employes that use a client that i don't know if support SSL, and even if my xmpp server version support ssl too. And, I said before I can't configure this as I am not the admin of xmpp server. I already have something notifying on slack but not all, because many employees are not using slack.

          Show
          acrespo Andre Crespo added a comment - Well, I can't do anything on my side, as this can impact 500 employes that use a client that i don't know if support SSL, and even if my xmpp server version support ssl too. And, I said before I can't configure this as I am not the admin of xmpp server. I already have something notifying on slack but not all, because many employees are not using slack.
          Hide
          flow Florian Schmaus added a comment -

          We could add an setting allowing insecure connections to the jabber-plugin.

          Show
          flow Florian Schmaus added a comment - We could add an setting allowing insecure connections to the jabber-plugin.

            People

            Assignee:
            flow Florian Schmaus
            Reporter:
            acrespo Andre Crespo
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated: