Having trouble to get gitlab pages to work over https with custom domains I followed instructions at https://docs.gitlab.com/ee/administration/pages/.
The option without TLS works, but when using https I get SSL_ERROR_INTERNAL_ERROR_ALERT
error in Firefox and ERR_SSL_PROTOCOL_ERROR
in Chrome. When doing curl, I get following error:
~$ curl -v https://user.pages.example.com
* Rebuilt URL to: https://user.pages.example.com/
* Hostname was NOT found in DNS cache
* Trying XX.XX.XX.XX...
* Connected to user.pages.example.com (XX.XX.XX.XX) port 443 (#0)
* successfully set certificate verify locations:
* CAfile: none
CApath: /etc/ssl/certs
* SSLv3, TLS handshake, Client hello (1):
* SSLv3, TLS alert, Server hello (2):
* error:14077438:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error
* Closing connection 0
curl: (35) error:14077438:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error
Using gitlab 10.0 omnibus installation on CentOS. My config is:
pages_external_url "https://pages.example.com"
pages_nginx['enable'] = false
gitlab_pages['cert'] = "/etc/gitlab/ssl/pages.example.com.crt"
gitlab_pages['cert_key'] = "/etc/gitlab/ssl/pages.example.com.key"
gitlab_pages['external_http'] = ['1.1.1.2:80']
gitlab_pages['external_https'] = ['1.1.1.2:443']
with 1.1.1.2 being the virtual IP where the pages daemon is listening. pages.example.com.crt contains the wildcard certificate for *.pages.example.com.
Any hints how to troubleshoot this?