1636684 - Trees Closed Raptor Certificate issue| mitmproxy.log shows 127.0.0.1:49883: Failed to send error response to client: ClientHandshakeException('Cannot establish TLS with client (sni: m.media-amazon.com)

Status: RESOLVED FIXED

(Testing :: Condprofile, defect, P1)

Description

[Treeherder Bug Filer]

Filed by: btara [at] mozilla.com
Parsed log: https://treeherder.mozilla.org/logviewer.html#?job_id=301543990&repo=autoland
Full log: https://firefox-ci-tc.services.mozilla.com/api/queue/v1/task/TZcoO9lsRgOKq9PL-RfpGQ/runs/0/artifacts/public/logs/live_backing.log

---

mitmproxy log: https://firefox-ci-tc.services.mozilla.com/tasks/TZcoO9lsRgOKq9PL-RfpGQ/runs/0/logs/https%3A%2F%2Ffirefox-ci-tc.services.mozilla.com%2Fapi%2Fqueue%2Fv1%2Ftask%2FTZcoO9lsRgOKq9PL-RfpGQ%2Fruns%2F0%2Fartifacts%2Fpublic%2Ftest_info%2Fmitmproxy.log#L1447

127.0.0.1:49876: POST https://aan.amazon.com/cem
    Host: aan.amazon.com
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0
    Accept: */*
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate, br
    Content-Type: text/plain;charset=UTF-8
    Content-Length: 164
    Origin: https://www.amazon.com
    Connection: keep-alive
    Referer: https://www.amazon.com/s?k=laptop&ref=nb_sb_noss_1
    Sec-Fetch-Dest: empty
    Sec-Fetch-Mode: cors
    Sec-Fetch-Site: same-site
[replay]  << 200 OK 20b
    Server: Server
    Date: Sat, 09 May 2020 12:10:26 -0000
    Content-Type: application/json
    Content-Length: 20
    Connection: keep-alive
    x-amzn-RequestId: d96f4e83-929a-11e9-8488-111d586bb5c9
    Access-Control-Allow-Origin: *
    Content-Encoding: gzip
    Cache-Control: no-store
    Cache-Control: must-revalidate
    Expires: 0
    Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amzn-ErrorMessage,Date
    Pragma: no-cache
    x-amz-rid: CNWFS7ECMMDGXAMCMM46
    Vary: Accept-Encoding,X-Amzn-CDN-Cache,X-Amzn-AX-Treatment,User-Agent
127.0.0.1:49884: ALPN for client: b'h2'
127.0.0.1:49885: ALPN for client: b'h2'
127.0.0.1:49881: clientdisconnect
127.0.0.1:49883: Failed to send error response to client: ClientHandshakeException('Cannot establish TLS with client (sni: m.media-amazon.com): TlsException("SSL handshake error: Error([(\'SSL routines\', \'ssl3_read_bytes\', \'sslv3 alert bad certificate\')],)",)',)
127.0.0.1:49883: CONNECT m.media-amazon.com:443
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Firefox/78.0
    Proxy-Connection: keep-alive
    Connection: keep-alive
    Host: m.media-amazon.com:443
 << Cannot establish TLS with client (sni: m.media-amazon.com): TlsException("SSL handshake error: Error([('SSL routines', 'ssl3_read_bytes', 'sslv3 alert bad certificate')],)",)
127.0.0.1:49887: Set new server address: m.media-amazon.com:443

Comment 1

[Bogdan Tara[:bogdan_tara | bogdant]]

Seeing this on windows 7 and windows 10 raptor.

https://treeherder.mozilla.org/#/jobs?repo=autoland&fromchange=aa44cf2c1455428413b61d33ff16c8d50e6efa52&searchStr=raptor&tochange=78ed541858a26f7ebfe55eb05db9c7b1871fc9ba&selectedTaskRun=VVP31yBTQWmCU7_CmWSGUA-0

Comment 2

[Tarek Ziadé (:tarek)]

Attachment: Bug 1636684 - deactivate complex condprofs

deactivate complex condprofs

Comment 3

[Tarek Ziadé (:tarek)]

try run https://treeherder.mozilla.org/#/jobs?repo=try&revision=7c0ec768002d070b578d406143308a9d9bd23e65

Comment 4

[Bogdan Tara[:bogdan_tara | bogdant]]

Forcing a rerun of FBy33qUJRwq-51C8imhAbg seems to have solved the issue.

Comment 5

[Pulsebot]

Pushed by btara@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/5c1764931969
deactivate complex condprofs r=sparky

Comment 6

[Cristina Coroiu [:ccoroiu]]

https://hg.mozilla.org/mozilla-central/rev/5c1764931969

Comment 7

[Intermittent Failures Robot]

61 failures in 260 pushes (0.235 failures/push) were associated with this bug yesterday.

Repository breakdown:

• mozilla-central: 11
• autoland: 50

Platform breakdown:

• windows10-64-ref-hw-2017: 6
• windows7-32-shippable: 6
• windows10-64-shippable-qr: 31
• windows10-64-shippable: 18

For more details, see:
https://treeherder.mozilla.org/intermittent-failures.html#/bugdetails?bug=1636684&startday=2020-05-09&endday=2020-05-09&tree=all

Comment 8

[Intermittent Failures Robot]

61 failures in 5276 pushes (0.012 failures/push) were associated with this bug in the last 7 days.

This is the #21 most frequent failure this week.

** This failure happened more than 30 times this week! Resolving this bug is a high priority. **

** Try to resolve this bug as soon as possible. If unresolved for 2 weeks, the affected test(s) may be disabled. **

Repository breakdown:

• mozilla-central: 11
• autoland: 50

Platform breakdown:

• windows10-64-ref-hw-2017: 6
• windows7-32-shippable: 6
• windows10-64-shippable-qr: 31
• windows10-64-shippable: 18

For more details, see:
https://treeherder.mozilla.org/intermittent-failures.html#/bugdetails?bug=1636684&startday=2020-05-04&endday=2020-05-10&tree=all

Comment 9

[Henrik Skupin [:whimboo][⌚️UTC+1]]

(In reply to Tarek Ziadé (:tarek) from comment #2)

Bug 1636684 - deactivate complex condprofs

deactivate complex condprofs

Are we going to re-enable complex profiles? If yes, where can I find the follow-up bug? Or should we keep this bug open?

Comment 10

[Greg Mierzwinski [:sparky]]

Tarek, would you have a bug open about re-enabling the full and settled2 conditioned profiles?

Comment 11

[Tarek Ziadé (:tarek)]

Bug 1639017, Greg