Skip to Content
0

My SAP Hana Express edition is unable to download a buildpack from github.

Jan 31 at 05:35 PM

68

avatar image

I just installed SAP HANA and I like to deploy an application on XSA using an external buildpack.

When pushing this application with the -b buildpack argument it tries to download the buildpack from github, but it fails as it is unable to find valid certification path to requested target (which is github). I believe this means it can't validate the SSL certificate as it is missing the CA.

Is there anyone who has experience with this who can help me fix this?

See below Stacktrace snippet:

cannot
open git-upload-pack  at
org.eclipse.jgit.transport.TransportHttp.connect(TransportHttp.java:518)at 
org.eclipse.jgit.transport.TransportHttp.openFetch(TransportHttp.java:296)  at 
org.eclipse.jgit.transport.FetchProcess.executeImp(FetchProcess.java:136)  at 
org.eclipse.jgit.transport.FetchProcess.execute(FetchProcess.java:122)
at 
org.eclipse.jgit.transport.Transport.fetch(Transport.java:1138)  at 
org.eclipse.jgit.api.FetchCommand.call(FetchCommand.java:130)  ... 4 moreCaused by:  javax.net.ssl.SSLHandshakeException:
sun.security.validator.ValidatorException: PKIX path building failed: 
sun.security.provider.certpath.SunCertPathBuilderException: unable to
find valid certification path to  requested target  at
sun.security.ssl.Alerts.getSSLException(Alerts.java:192)  at 
sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1959)  at 
sun.security.ssl.Handshaker.fatalSE(Handshaker.java:302)  at  sun.security.ssl.Handshaker.fatalSE(Handshaker.java:296)  at 
sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1514)  at 
sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:216)  at  sun.security.ssl.Handshaker.processLoop(Handshaker.java:1026)  at 
sun.security.ssl.Handshaker.process_record(Handshaker.java:961)  at 
sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1072)  at  sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1385)  at 
sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1413)
at 
sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1397)
at  sun.net.www.protocol.https.HttpsClient.afterConnect(HttpsClient.java:559)  atsun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(AbstractDelegateHttpsURLConnection.java:1  85) 
at sun.net.www.protocol.http.HttpURLConnection.getInputStream0(HttpURLConnection.java:1564)  at
10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

1 Answer

Best Answer
avatar image
Former Member
Feb 07 at 08:08 AM
1

Hi Erno,

which GitHub are you trying to access exactly? In case your trying to download the buildpack from company github with a company-specific certificate, you need to use the command "xs trust-certificate" upfront in order to make XSA trust this GitHub's server certificate (please see https://help.sap.com/viewer/4505d0bdaf4948449b7f7379d24d0f0d/2.0.02/en-US/860394705c894162847cf4e3bda70c7a.html for a detailed description of this command).

Best regards,

Andreas

Show 1 Share
10 |10000 characters needed characters left characters exceeded

Hi Andreas,

Thanks for your feedback. At the end I managed to add the Github certificate into the trust store of XSA. Which resolved the issue for now.


Cheers

Erno

0