Join GitHub today
crypto/tls: include more details when issuing "certificate signed by unknown authority" error #4619
What steps will reproduce the problem? # go get -v code.google.com/p/go.codereview/cmd/hgpatch package code.google.com/p/go.codereview/cmd/hgpatch: Get https://code.google.com/p/go/source/checkout?repo=codereview: x509: certificate signed by unknown authority What is the expected output? What do you see instead? Package installation succeeds Please use labels and text to provide additional information. I believe this is a failure of the crypto/tls package to locate the ca-certs.txt file on this machine. Doing the checkout manually produces # hg clone https://code.google.com/p/go.codereview code.google.com/p/go.codereview warning: code.google.com certificate with fingerprint ca:5e:a3:f8:40:90:6b:ea:25:19:6f:a8:a1:82:bb:6c:6b:2d:96:85 not verified (check hostfingerprints or web.cacerts config setting) requesting all changes # uname -a FreeBSD raspberry-pi.local 10.0-CURRENT FreeBSD 10.0-CURRENT #0 r244906M: Sat Jan 5 01:14:23 JST 2013 email@example.com:/usr/obj-rpi-clang/arm.armv6/usr/src/sys/RPI-B-test11 arm
I have the same issue in OS X 10.7.5. 'hg clone' works, but 'go get' fails. In IRC, davecheney suggested that's because Mercurial treats the problem as a warning, whereas the go tools treat it as an error. I haven't gotten any workaround to do the trick for me, so I'll have to go about it manually for now.
This issue was closed.