New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
crypto/x509: 'certificate signed by unknown authority' on mipsle #32878
Comments
@vitaliy-kuzmich, note that the issue to which you are replying was specific to Darwin (a.k.a. macOS). I'm guessing that |
@vitaliy-kuzmich, @FiloSottile was asking for folks to run the test, but |
@bcmills Thank you for quick response, indeed it is not darwin, but I have exactly same on mipsle on my router. I am trying to run cross compiled binary on embedded device. Here it is source code that I used for test :
I am not sure, but /etc/ssl/certs empty on embedded device, should there be some certs ? Or built binary should create it ? |
@vitaliy-kuzmich, you can use I don't know how you would need to configure the root certs on a router so that a Go binary can find them. |
Apologies, my fault, there is nothing wrong with go, works like a charm. I use openwrt system, for some reasons certificate package were missed. It so cool that same code works on different devices! |
@bcmills Just thinking maybe make message more clear ? Like "none certificates was found at default paths" or something, because it really confuses if say if it signed by unknown authority,but the file just does not exists. |
@vitaliy-kuzmich, clearer error messages are always nice to have. If you could post specific steps that we can run to reproduce the issue (preferably as a new issue on GitHub), I'd be happy to leave it open as |
@vitaliy-kuzmich which package did you need to install? |
I'm actually working on an OpenEmbedded based system. But your solution pointed me in the right direction, so thanks @vitaliy-kuzmich For anyone that might be interested, I solved this by adding |
Hello @FiloSottile, tested on mipsle, does not work. It says "509: certificate signed by unknown authority". Build command that I used :
env CGO_ENABLED=0 GOOS=linux GOARCH=mipsle gotip build -a -o test
You can use our ✨ new golang.org/dl/gotip tool ✨ to easily test the development branch:
You can also use
gotip build
orgotip get
in place ofgo build
/go get
to test if the patches resolve any issues you were experiencing. Please report back! Thank you./cc @cvigo @dichque @wdec @adamrothman @calmh @dadrian @vdemario
Originally posted by @FiloSottile in #24652 (comment)
The text was updated successfully, but these errors were encountered: