webhooks broken after ssl update

I recently updated an expiring ssl cert on the target machine: https://video-d.myglance.org/webhook Is the new cert somehow incompatible with gitlab? Web browsers claim it's OK.

Error:

webhooks broken? "SSL_connect returned=1 errno=0 state=error: certificate verify failed"

My outbound webhook requests do not make it into the access log of my target machine; https://video-d.myglance.org/webhook Your server abandons the requests during the TLS negotiation phase. They do make it successfully to other target machines, just not this one with the newly updated wildcard cert, issued by Digicert, on *.myglance.org.

It appears that the OpenSSL certificate store in your servers is incorrectly configured. The message I'm complaining about comes from your Ruby OpenSSL module.

You can ask your network engineer to read this.

https://stackoverflow.com/questions/37257296/getting-ssl-connect-returned-1-errno-0-state-error-certificate-verify-failed

My certificate has this certification path:

*.myglance.org 
DigiCert SHA2 Secure Server CA 
Digicert

It should be OK.

ZD: https://gitlab.zendesk.com/agent/tickets/86081

cc// @victorcete

Edited Dec 20, 2017 by Arihant