Skip to content
This repository has been archived by the owner on Jul 10, 2022. It is now read-only.


Folders and files

Last commit message
Last commit date

Latest commit



72 Commits

Repository files navigation

Go Report Card GoDoc Build Status Docker Repository on Quay SSL Rating Twitter Follow GitHub followers Subreddit subscribers



A small Go app intended to help troubleshoot certificate chains.

A detailed use case that prompted the creation of this code was featured on I highly recommend reading it.


  • go (if you want to modify paths to certificates you will need to run: go build)
  • Valid TLS keys
  • sudo (or root access) to run the ssl-tester server that binds to port 443


Installation to your $GOPATH is recommended:

go get

A public and private key at /etc/ssl-tester/tls.crt and /etc/ssl-tester/tls.key respectively are expected. These paths can be symlinks to keypairs in another path.

If you want to compile ssl-tester for another platform you can clone this repo and use go build. I encourage you to read Dave Chaney's Cross compilation with Go to better understand that process.


To build the container you will need to set environment variables in your local environment and pass them through to the container.

Container uses Let's Encrypt (certbot) and Cloudflare to obtain DNS. Say what you want about Cloudflare but it's free and good so it's the lowest barrier to entry.

docker build --build-arg cf_email=$CF_EMAIL --build-arg cf_key=$CF_KEY --build-arg cf_domain=$CF_DOMAIN -t .

Yes, this README is not great. Check me, Boo.


You might be able to use it to serve a frontend for a small service too if you'd so desire. Pull requests welcome!




Chris Short