jenkinsci / cisco-spark-notifier-plugin

Sends messages to Spark rooms from Jenkins
https://plugins.jenkins.io/cisco-spark-notifier/
MIT License
6 stars 4 forks source link

Force TLS 1.2 #9

Closed etherfoundry closed 5 years ago

etherfoundry commented 5 years ago

The Webex Teams API has discontinued support for TLS 1.1, causing the bot to no longer function. (Announced late April, appears to have happened late June)

It seems that most JVM command line options for changing the connection setup do not work to affect this plugin.

This likely only affects JDK 6 as JDK 7+ default to TLS 1.2.

The error that occurs is:

Sending message to Spark Room: xxxx-xxxx-xxxx-xxxx-xxxx
Could not send message because of an unknown issue; please file an issue
javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure

My relevant JVM options are as follows: -Dhttps.protocols=TLSv1.2 -Ddeployment.security.SSLv2Hello=false -Ddeployment.security.SSLv3=false -Ddeployment.security.TLSv1=false -Ddeployment.security.TLSv1.1=false -Ddeployment.security.TLSv1.2=true