stackoom
  简体   繁体   中英

How do I add trusted certificate for golang

 原文  2018-09-19 00:06:36       ssl/ go/ ssl-certificate

Question

I am trying to use go get or godep to pull some dependency for my project but I see this in my mac

KALEI-M-V11L:election kalei$ dep ensure
The following issues were found in Gopkg.toml:

  ✗ unable to deduce repository and source type for "k8s.io/apiextensions-apiserver": unable to read metadata: unable to fetch raw metadata: failed HTTP request to URL "http://k8s.io/apiextensions-apiserver?go-get=1": Get https://k8s.io/apiextensions-apiserver?go-get=1: x509: certificate signed by unknown authority
  ✗ unable to deduce repository and source type for "k8s.io/apimachinery": unable to read metadata: unable to fetch raw metadata: failed HTTP request to URL "http://k8s.io/apimachinery?go-get=1": Get https://k8s.io/apimachinery?go-get=1: x509: certificate signed by unknown authority
  ✗ unable to deduce repository and source type for "k8s.io/client-go": unable to read metadata: unable to fetch raw metadata: failed HTTP request to URL "http://k8s.io/client-go?go-get=1": Get https://k8s.io/client-go?go-get=1: x509: certificate signed by unknown authority
  ✗ unable to deduce repository and source type for "sigs.k8s.io/controller-runtime": unable to read metadata: unable to fetch raw metadata: failed HTTP request to URL "http://sigs.k8s.io/controller-runtime?go-get=1": Get https://sigs.k8s.io/controller-runtime?go-get=1: x509: certificate signed by unknown authority
  ✗ unable to deduce repository and source type for "k8s.io/code-generator": unable to read metadata: unable to fetch raw metadata: failed HTTP request to URL "http://k8s.io/code-generator?go-get=1": Get https://k8s.io/code-generator?go-get=1: x509: certificate signed by unknown authority
  ✗ unable to deduce repository and source type for "k8s.io/api": unable to read metadata: unable to fetch raw metadata: failed HTTP request to URL "http://k8s.io/api?go-get=1": Get https://k8s.io/api?go-get=1: x509: certificate signed by unknown authority

If I do curl to https://k8s.io/api?go-get=1 , it works perfectly so looks like go doesn't trust the cert somehow.

Is there a way to configure it?

1 answers

solution1
 1  2019-11-04 18:00:19

According to the go docs

On UNIX systems the environment variables SSL_CERT_FILE and SSL_CERT_DIR can be used to override the system default locations for the SSL certificate file and SSL certificate files directory, respectively.

Sample

SSL_CERT_FILE=/path/to/x509_encoded_cert_file dep ensure
SSL_CERT_DIR=/path/to/dir/ dep ensure

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How do I go about getting the trusted CAs to add to my certificate store how do I check if the X509Certificate issuer is trusted? How do I import a trusted certificate into an existing keystore programmatically? How do I install a certificate to trusted root certificates using python? How to add a trusted Certificate Autority to Firefox with JSS How to add a trusted certificate to HTTPPoison/hackney? How can I add a server certificate to my local trusted Java key store? The certificate is not trusted elasticsearch, but I do have the SSL certificates API certificate not trusted by browser, what can i do? How to add a Valid and trusted security certificate for my website in my iphone?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM