x509: certificate signed by unknow n authority

最新推荐文章于 2025-01-14 16:00:57 发布
最新推荐文章于 2025-01-14 16:00:57 发布
阅读量4.9k 收藏 1
点赞数
分类专栏: 错误集锦 go 文章标签: go
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.youkuaiyun.com/ic_xcc/article/details/108471367
版权

最近的go项目遇见这个问题,记录一下,问题起因是调用别的项目组接口时,接口由http更改为https,之前调试通过的调用接口推送信息方式返回的request请求报错如下:x509: certificate signed by unknow n authority

几番查找之后修改完毕,更改如下

1.引入 "crypto/tls" 包

2.定义TLSClientConfig,忽略证书校验

原写法

//发起请求
func Request(url string, header http.Header, method string, params io.Reader) (status string, resHead http.Header, body []byte, res *http.Response, err error) {

	defer func() { //必须要先声明defer,否则不能捕获到panic异常
		if err := recover(); err != nil {
			fmt.Println("request中panic了,消息:", err) //这里的err其实就是panic传入的内容
			return
		}
	}()

	tr := &http.Transport{
		DisableKeepAlives: true,
	}
	client := &http.Client{}
	req, err := http.NewRequest(method, url, params)

	if err != nil {
		//fmt.Println(err)
		return
	}
	req.Header = header
	res, err = client.Do(req)
	if err != nil {
		return
	}
	defer func() {
		if err = res.Body.Close(); err != nil {
			logger.Error("request 请求中返回的body关闭失败:" + err.Error())
		}
	}()
	bodyByte, err := ioutil.ReadAll(res.Body)
	return res.Status, res.Header, bodyByte, res, nil
}

更改代码段即可

tr := &http.Transport{
		DisableKeepAlives: true,
		TLSClientConfig: &tls.Config{InsecureSkipVerify: true},
	}

client := &http.Client{Transport: tr}

 

golang 报错 `tls: failed to verify certificate: x509: certificate signed by unknown authority`
JineD的博客
11-28 1004
报错的位置是 golang 的 http client,并未有很特殊的配置。
Tanzu:x509: certificate signed by unknown authority
随笔记录-分享&记忆
06-24 728
x509: certificate signed by unknown authority ERRO[0000] Error occurred during HTTP request: Get https://192.16.6.1/wcp/loginbanner: x509: certificate signed by unknown authority There was an error when trying to connect to the server 解决办法: 如果出于任何原因无法添加证书
go get x509:certificate signed by unknown authority
qq_38189542的博客
03-14 2669
在arm设备上构建golang 1.22的Docker镜像,用来做程序的编译镜像,直接安装用ubuntu作为基础镜像,构建好的镜像,在编译的时候执行go get的时候,会报下面错误。
x509: certificate signed by unknown authority;容器部署的服务建立https通信报错
qq_37106501的博客
11-30 3912
x509: certificate signed by unknown authority docker-compose部署的服务访问https报错
golang中请求接口出错 tls: failed to verify certificate: x509: certificate signed by unknown authority
最新发布
秋̶᭄ꦿ攻城狮࿆ྂ
01-14 1251
如果你遇到 tls: failed to verify certificate: x509: certificate signed by unknown authority 的错误,通常是因为 Go 的 HTTP 客户端无法验证服务器的 SSL/TLS 证书。这可能是因为证书是自签名的,或者是由一个不被信任的证书颁发机构(CA)签发的 .在开发和测试阶段,忽略证书验证可能是方便的,但在生产环境中,确保使用受信任的证书是非常重要的,以保护数据的安全性。
Get “https://xx.xx.x.xx/v2/“: x509: certificate signed by unknown authority
qq_1801743621的博客
06-26 1390
Get "https://xx.xx.x.xx/v2/": x509: certificate signed by unknown authority
x509: certificate signed by unknown authoritygolang http请求报错)
D1124615130的博客
04-14 2497
client初始化时加上t.TLSClientConfig = &tls.Config{InsecureSkipVerify: true}
docker 报错x509: certificate signed by unknown authority
Python开发分享的博客
12-14 1万+
1.未开启证书验证的仓库 # vim /etc/docker/daemon.json { "insecure-registries": ["registry.svc.xxx.cn"] } #systemctl restart docker 2.开启证书验证的仓库 从私有仓库拉取镜像时报错: docker pull x509:certificate signed by unknown authority 解决方案: 1、登陆私有仓库服务器,进入/etc/docker/certs.d/目录
Altermanager 发送告警报 x509: certificate signed by unknown authority 错误解决
01-08
这是alter manager配置默认需要证书,官方config解释: ...The default SMTP TLS requirement. Note that Go does not support unencrypted connections to remote SMTP endpoints. [ smtp_require_tls: | default = ...
x509: certificate signed by unknown authority
颹蕭蕭
01-09 3574
如果可能,优先使用方法 1(信任自签名证书),这是最安全和推荐的方式。如果无法获取证书,可以尝试方法 2(禁用 SSL 验证),但请注意安全风险。如果问题仍然存在,可以尝试方法 3(手动拉取镜像)或方法 4(旧版 Docker 的解决方案)。
docker容器报x509:certificate signed by unknown authority错误
热门推荐
Canger_的博客
03-30 2万+
解决证书验证的问题,x509:certificate signed by unknown authority 我们在构建 docker 镜像时一般使用的是 linux(centos或者ubuntu等待) 系统,默认是不带 ca-certificates 根证书的,导致无法识别外部 https 携带的数字证书。 如图:所以可能会有以下这个错误。 那么,在访问的时候就会抛出 x509: certificate signed by unknown authority 的错误,导致 docker 容器的接口服务返回
x509: certificate signed by unknown authority (harbor)
xiunai78的专栏
03-19 2万+
最近在做Docker相关的东西,发现只要一pull镜像,就出现如下的ERROR x509: certificate signed by unknown authority. 调查后发现,是公司IT把https证书换成了公司的证书(目的大家自己猜)。 解决思路: 把替换后的证书直接用openssl拉下来,然后加入到系统(我是Ubuntu)系统证书中,然后使用update-ca-certificate...
ubuntu Docker 镜像go使用https出现X509: Certificate Signed by Unknown Authority
thehunters的专栏
07-20 2148
问题成因:应用镜像时,如果没有向镜像中添加证书颁发机构(CA, Certificate Authority)发布的证书,您就有可能遭遇这个错误。解决方法1:可以添加ca-certificates证书,可以将CA证书打包到docker镜像,Dockerfile中增加。解决方法2:忽略证书校验,不过有些第三方库没有这个提供的时候只能使用方法1了。
docker login : x509: certificate signed by unknown authority
张伯毅的专栏
08-29 2479
docker login 登录harbor镜像仓库报错.
Harbor/Docker: x509: certificate signed by unknown authority
tom_fans的博客
07-27 2万+
完成Harbor安装之后,我们使用docker login/push/pull去与Harbor打交道,上传下载镜像等。 但是发现出现x509: certificate signed by unknown authority之类的错误。 [root@test01 harbor.dev]# docker login harbor.dev Authenticating with existing credentials... Login did not succeed, error: Error respon
x509: certificate signed by unknown authority (possibly because of “crypto/rsa: verification error“
johnhuster的专栏
10-29 7433
执行下面命令初始化k8s集群时 kubeadm init --pod-network-cidr 10.21.0.0/16 \ --image-repository registry.cn-hangzhou.aliyuncs.com/google_containers 通过 kubectl get pods -n kube-system 查看pods状态 发现coredns对应的pod状态为ContainerCreating, 通过kubectl describe pods -n kube-
成功解决docker从本地私库push或pull镜像时报x509: certificate signed by unknown authority
weixin_44410358的博客
12-01 6706
成功解决docker从本地私库push或pull镜像时报x509: certificate signed by unknown authorityDockerQ:docker登录私库时提示 x509: certificate signed by unknown authorityA:解决办法Docker的配置文件 daemon.json 详解(当需要配置多个镜像地址怎么写的问题) Docker Q:docker登录私库时提示 x509: certificate signed by unknown autho
docker buildx 构建多平台镜像错误x509: certificate signed by unknown authority
三劫散仙
05-30 2153
buildx 构建时,如果去公司内部的仓库拉取镜像时,会遇到下面的这种授权不通过问题。添加到BuildKitd容器中。
Golang x509: certificate signed by unknown authority 问题
QQ6550523的博客
07-20 5044
方法一,使用匹配的证书方法: rootCA := `*.pem 文件的内容` roots := x509.NewCertPool() ok := roots.AppendCertsFromPEM([]byte(rootCA)) if !ok { panic("failed to parse root certificate") } client = &http.Client{ Transport: &http.Transport{ TLSClientConfig:
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值