在 mac git 上克隆 https 无法验证

Question

On a mac mini with Mavericks I am having problems authenticating when I try to git clone from a private git server. I have installed and configured git on Windows and Ubuntu a few times with this same server and haven't this sort of problem before. I'm at a loss as to what to try next.

Symptoms:

git clone https://username@git.example.com:8448/git/libs/project.git
Cloning into 'project' ...
Password for 'https://username@git.example.com:8448': [1] note
fatal: Authentication failed for 'https://username@git.example.com:8448/git/libs/project.git'

[1] I am not asked for this on other systems. I believe I have configured my git client to not ask for passwords. No password I provide is good at this prompt

I have this in my ~/.gitconfig:

[http]
        sslKey = /Users/macuser/auth/username.key
        sslCert = /Users/macuser/auth/username.pem
        sslVerify = false
[user]
        name = username
        email = username@example.com

I received the following files when setting up my client certificates which I placed in a folder named ~/auth:

username.cer
username.p12
username.pem
ca.cer

I ran this command to generate the key file:

openssl rsa -in /Users/macuser/auth/username.pem -out /Users/macuser/auth/username.key

And then I ran git config commands such as:

git config --global http.sslKey /Users/macuser/auth/username.key
git config --global http.sslCert /Users/macuser/auth/username.pem
git config --global http.sslVerify false

After configuring git just like the steps above, on other systems when I do a 'git clone https' it just works. On OS X Mavericks with Xcode command line tools installed, git cannot authenticate.

What am I doing wrong?

Thanks in advance.

Edit:

I thought I'd add this piece of information. The server is using a self signed certificate, or one which comes from no authority. This is why I set http.sslVerify to false.

Here are the verbose clone commands. The setups on Linux and Mac are the same, save for auth folder locations. The Linux version succeeds while the Mac version fails.

http://cache.codebot.org/stackoverflow/linux-git-works.txt
http://cache.codebot.org/stackoverflow/mac-git-fails.txt

Answer:

sudo port install git-core

Answer 1

解决方案是使用 git 的 macports 版本，而不是使用 Xcode 命令行工具附带的版本。

sudo port install git-core

Answer 2

when you try to use git clone and if its prompt for password please provide the git personal access token here

that will resolve the issue.

Answer 3

sslVerify false ? Then you desactivate completely the certificate verification by curl.

You can have more details with:

GIT_CURL_VERBOSE=1 git clone https://...

Check if the other systems don't have a %HOME%/_netrc (Windows) or ~/.netrc (unix) with your credentials in it, which would explain why you don't have to enter a password there.

In your case, it is possible the CA and other root certificates used in Linux in /etc/ssl/certs/ca-certificates.crt aren't present on mac.
Try to add the content of that Linux file to the git cert file on the client side on your <path/to/git/bin/curl-ca-bundle.crt> file, a bit like in this solution .

The OP sysrpl reports though that it isn't necessary, since sysrpl had to do a:

sudo port install git-core

to update/reset the git installation on the Mac.

Answer 4

Instead of using a GitHub account password, use a GitHub access token to resolve the issue.