docker ubuntu18.04镜像apt update报错Certificate verification failed

最新推荐文章于 2025-10-17 21:57:56 发布
原创 最新推荐文章于 2025-10-17 21:57:56 发布 · 6.7k 阅读 · 7 ·
CC 4.0 BY-SA版权
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
文章标签:

#docker #ubuntu

本文解决Docker环境下Ubuntu镜像使用HTTPS源时遇到的证书验证失败问题,提供手动安装ca-certificates及依赖包的方法。

公司环境使用docker的ubuntu:18.04镜像,因为公司网络限制,apt无法使用http源(我也不知道为啥。。。),改为https源后,apt update 报错Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown. Could not handshake: Error in the certificate verification.

 

问题原因:

上网各种搜,最终发现大佬给出的正确答案:缺少ca-certificates包

 

 

解决办法:

因无法正常使用apt install(http源被禁,https源无法使用,如果能正常使用apt,直接apt install ca-certificates解决一切),需要手动安装ca-certificates包,要下载ca-certificates包还有libssl和openssl两个依赖包,按照如下顺序安装3个包后,再次apt update正常。(注意,我的版本对应ubuntu18.04)

dpkg -i libssl1.1_1.1.1-1ubuntu2.1_18.04.6_amd64.deb

dpkg -i openssl_1.1.1-1ubuntu2.1_18.04.6_amd64.deb

dpkg -i ca-certificates_20190110_18.04.1_all.deb

包下载路径如下(忘了打压缩包了,下载3次吧,反正不要分):

https://download.youkuaiyun.com/download/sc_goddog/12493173
https://download.youkuaiyun.com/download/sc_goddog/12493167
https://download.youkuaiyun.com/download/sc_goddog/12493135

 

--------------------------------------------------------------------------------------------------------------

补充ubuntu16.04的镜像无法使用https源解决方法,与ubuntu18.04类似,下载附件解压缩后执行setup.sh安装相关deb包即可

https://download.youkuaiyun.com/download/sc_goddog/12500401

 

 

ubuntu20.4执行apt-get update报错404 Not Found [IP: 185.125.190.36 80] 最佳解决方案
kingch_ban的专栏
09-24 2018
【代码】ubuntu20.4执行apt-get update报错404 Not Found [IP: 185.125.190.36 80] 最佳解决方案。
【云原生】UbuntuDocker 环境的安装与使用
CopperSun 技术博客
10-17 1273
【云原生】Ubuntu 18Docker 环境的安装与使用 【1】安装 Docker 环境 【1.1】安装依赖 apt install apt-transport-https ca-certificates curl software-properties-common 【1.2】添加 Docker 官方密钥 curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add - 【1.3】添加 Dock
手把手教你:在Ubuntu上从零部署Docker应用,全程无坑!
这里是技术探索者的前沿阵地。我们聚焦开源技术与IT运维实践,分享深度解析、前沿趋势与实战经验。从代码到云原生,从自动化到智能化运维,共同见证并参与塑造技术的未来。关注我们,一起用开源,定义未来。
10-17 974
本文提供了Ubuntu系统下Docker的详细安装指南,包含在线和离线两种安装方式。在线安装包括更新系统、卸载旧版本、添加阿里云镜像源、安装Docker和Compose等完整步骤;离线安装则指导下载安装包并手动安装。两种方法均涵盖服务启动验证和镜像源配置,确保环境快速部署。文中还包含常见问题排查和安全优化建议,适合不同网络环境下的Docker部署需求,帮助开发者高效搭建容器化应用环境。
libssl1.1_1.1.1-1ubuntu2.1_18.04.6_amd64.deb
06-03
ubuntu18.04的libssl包。apt update报错Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown. Could not handshake: Error in the certificate verification.时可能用到
docker.io/nginx 修改apt源后提示Certificate verification failed: The certificate is NOT trusted.
Rolkey 小家
05-18 2084
从官网获取docker.io/nginx镜像之后,大家肯定都需要安装一些自己需要的东西,但是修改/etc/apt/sources.list数据为国内源的时候,apt update报错,源内容 # deb http://snapshot.debian.org/archive/debian/20200422T000000Z buster main # deb http://deb.debian.org/debian buster main deb https://mirrors.aliyun.com/debia
Certificate verification failed: The certificate is NOT trusted | Docker
古承风的博客
11-02 540
执行上面的命令就好了。
ubuntu18.04安装kubernetes集群环境
m0_48780071的博客
08-19 1221
sudo mv /etc/kubernetes/kubelet.conf /etc/kubernetes/kubelet.conf.bak #备份冲突文件。sudo mv /etc/kubernetes/pki/ca.crt /etc/kubernetes/pki/ca.crt.bak #备份冲突文件。--pod-network-cidr=10.244.0.0/16 直接填这个就好,他是k8s的节点网络,后续用不到。从第三步初始化成功的输出信息中找到下面命令执行,注意:不同人的命令不一样!
WARNING: apt does not have a stable CLI interface. Use with caution in scripts. Ign:1 https://mirrors.tuna.tsinghua.edu.cn/ubuntu bionic InRelease Ign:2 https://mirrors.tuna.tsinghua.edu.cn/ubuntu bionic-updates InRelease Ign:3 https://mirrors.tuna.tsinghua.edu.cn/ubuntu bionic-backports InRelease Ign:4 https://mirrors.tuna.tsinghua.edu.cn/ubuntu bionic-security InRelease Ign:5 https://apt.kitware.com/ubuntu bionic InRelease Ign:6 https://deb.nodesource.com/node_16.x nodistro InRelease Err:7 https://mirrors.tuna.tsinghua.edu.cn/ubuntu bionic Release Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown. Could not handshake: Error in the certificate verification. [IP: 101.6.15.130 443] Err:8 https://mirrors.tuna.tsinghua.edu.cn/ubuntu bionic-updates Release Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown. Could not handshake: Error in the certificate verification. [IP: 101.6.15.130 443] Err:9 https://mirrors.tuna.tsinghua.edu.cn/ubuntu bionic-backports Release Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown. Could not handshake: Error in the certificate verification. [IP: 101.6.15.130 443] Err:10 https://mirrors.tuna.tsinghua.edu.cn/ubuntu bionic-security Release Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown. Could not handshake: Error in the certificate verification. [IP: 101.6.15.130 443] Err:11 https://apt.kitware.com/ubuntu bionic Release Could not handshake: Error in the pull function. [IP: 66.194.253.25 443] Err:12 https://deb.nodesource.com/node_16.x nodistro Release Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown. Could not handshake: Error in the certificate verification. [IP: 104.20.45.190 443] Reading package lists... W: https://mirrors.tuna.tsinghua.edu.cn/ubuntu/dists/bionic/InRelease: No system certificates available. Try installing ca-certificates. W: https://mirrors.tuna.tsinghua.edu.cn/ubuntu/dists/bionic-updates/InRelease: No system certificates available. Try installing ca-certificates. W: https://deb.nodesource.com/node_16.x/dists/nodistro/InRelease: No system certificates available. Try installing ca-certificates. W: https://mirrors.tuna.tsinghua.edu.cn/ubuntu/dists/bionic-backports/InRelease: No system certificates available. Try installing ca-certificates. W: https://mirrors.tuna.tsinghua.edu.cn/ubuntu/dists/bionic-security/InRelease: No system certificates available. Try installing ca-certificates. W: https://apt.kitware.com/ubuntu/dists/bionic/InRelease: No system certificates available. Try installing ca-certificates. W: https://mirrors.tuna.tsinghua.edu.cn/ubuntu/dists/bionic/Release: No system certificates available. Try installing ca-certificates. E: The repository 'https://mirrors.tuna.tsinghua.edu.cn/ubuntu bionic Release' does not have a Release file. W: https://mirrors.tuna.tsinghua.edu.cn/ubuntu/dists/bionic-updates/Release: No system certificates available. Try installing ca-certificates. E: The repository 'https://mirrors.tuna.tsinghua.edu.cn/ubuntu bionic-updates Release' does not have a Release file. W: https://mirrors.tuna.tsinghua.edu.cn/ubuntu/dists/bionic-backports/Release: No system certificates available. Try installing ca-certificates. E: The repository 'https://mirrors.tuna.tsinghua.edu.cn/ubuntu bionic-backports Release' does not have a Release file. W: https://deb.nodesource.com/node_16.x/dists/nodistro/Release: No system certificates available. Try installing ca-certificates. W: https://mirrors.tuna.tsinghua.edu.cn/ubuntu/dists/bionic-security/Release: No system certificates available. Try installing ca-certificates. E: The repository 'https://mirrors.tuna.tsinghua.edu.cn/ubuntu bionic-security Release' does not have a Release file. W: https://apt.kitware.com/ubuntu/dists/bionic/Release: No system certificates available. Try installing ca-certificates. E: The repository 'https://apt.kitware.com/ubuntu bionic Release' no longer has a Release file. E: The repository 'https://deb.nodesource.com/node_16.x nodistro Release' no longer has a Release file. The command '/bin/sh -c apt update' returned a non-zero code: 100
最新发布
11-08
- "Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown." - "Could not handshake: Error in the certificate verification." - "No system certificates ...
Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown.
Moolight_shadow的专栏
08-08 6798
1. 问题描述 2. 解决方式 1. 问题描述 |组件|版本|备注| |Ubuntu Docker Image|20.04|| 使用镜像时无论是镜像默认源还是清华源、阿里源都报错 Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown. Could not handshake: Error in the certificate verification g..
解决ubuntu Certificate verification failed: The certificate is NOT trusted.
Karthus77的博客
09-08 2646
解决ccertificate verificcation failed
ubuntu执行apt update报错 Error in the certificate verification解决
qq_42476938的博客
12-08 1368
出现 “No system certificates available” 的错误时,这通常表示系统缺少必要的证书文件或证书配置有问题。这可能导致无法建立安全连接来验证软件包索引的来源。完成后再执行apt updateapt-get update即可。
记录docker镜像中证书验证失败导致更新不成功
门前大橋下丶
11-25 4104
使用apt update进行更新时报以下错误 root@yzw-home:~# sudo apt update 忽略:1 https://home-packages.chinauos.com/home plum InRelease 忽略:2 https://home-store-packages.chinauos.com/appstore eagle InRelease 忽略:3 https://home-packages.chinauos.com/printer eagle InRelease 错误:4
Ubuntuapt更新时报错The certificate issuer is unknown的解决办法
曹无悔的博客
04-21 2984
在鲲鹏服务器和openEuler系统上使用docker配置Ubuntu,改apt配置文件中的https为http,解决apt换源后The certificate issuer is unknown的问题。
apt命令报证书错误的解决方法------- Certificate verification failed: The certificate is NOT trusted.
热门推荐
Chaowanq的博客
11-26 3万+
apt命令报证书错误的解决方法------- Certificate verification failed: The certificate is NOT trusted. 一、错误描述 用apt-get install命令安装软件或apt-get update命令更新时报错,错误如下: Certificate verification failed: The certificate is NOT trusted. The certificate chain uses expired certificat
ubuntu Docker 镜像go使用https出现X509: Certificate Signed by Unknown Authority
thehunters的专栏
07-20 2283
问题成因:应用镜像时,如果没有向镜像中添加证书颁发机构(CA, Certificate Authority)发布的证书,您就有可能遭遇这个错误。解决方法1:可以添加ca-certificates证书,可以将CA证书打包到docker镜像,Dockerfile中增加。解决方法2:忽略证书校验,不过有些第三方库没有这个提供的时候只能使用方法1了。
apt 源证书验证不过 Certificate verification failed: The certificate is NOT trusted. The certificate issuer
eloudy的专栏
04-25 619
ubuntu 22.04 apt 源切到国内时,执行 apt-get update 报错Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown. Could not handshake: Error in the certificate verification.先切回原先的 apt 源,更新证书: 再切到国内的 apt
解决 UbuntuDocker 安装时“无法找到软件包”错误
2301_78101515的博客
02-21 2529
这些错误通常表明你的系统中无法找到 Docker 相关的软件包。然后,按照 Docker 官方文档的指引,添加正确的软件源。首先,确保你的系统满足 Docker 的安装要求。希望这篇文章能帮助你解决 Docker 安装问题!
ubuntu使用阿里云镜像报证书错误
qq_42488996的博客
03-01 1738
错误如下 Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown. Could not handshake: Error in the certificate verification. 解决方法 https可以改成http的,但是这样的话可能有些源用不了,需要手动把错误的源移除,治标不治本。 校对系统时间,时间或时区不对的话,ssl肯定失败;设置时区可以安装
Certificate verification failed: The certificate is NOT trusted.解决方案
赵宗义的专栏
06-16 3万+
我在linux上安装一个包的时候遇到了如下的错误: (base) cnptucs1@cnptucs1:~$ sudo apt-get install -y libssl-dev --fix-missing Reading package lists... Done Building dependency tree Reading state information... Done The following packages were automatically installed and are no
ubuntu24.04 sudo apt update报错
02-14
### 解决 Ubuntu 24.04 中 `sudo apt update` 命令执行时遇到的错误 对于在 Ubuntu 24.04 上运行 `sudo apt update` 遇到的问题,有几种可能的原因以及相应的解决方案。 #### 关于 apt-news.service 的提示信息 如果仅是关于 `apt-news.service` 提示的信息,并不影响系统的正常使用。这类消息通常不会阻碍其他软件包管理操作的成功完成[^1]。 然而,若确实存在实质性错误,则可采取以下措施: #### 更新系统工具 确保安装最新的更新工具集可以帮助修复一些潜在问题: ```bash sudo apt update && sudo apt install ubuntu-news-tools -y ``` 这一步骤有助于同步本地索引至最新状态并获取必要的组件来支持后续的操作。 #### 清理重复或冲突的APT源列表文件 有时多个相同内容的仓库定义可能会引起冲突,移除不必要的自定义源能有效减少此类情况的发生几率。例如,如果有来自 Docker 官方站点的多余条目,可以通过下面命令将其删除: ```bash sudo rm /etc/apt/sources.list.d/archive_uri-https_download_docker_com_linux_ubuntu-noble.list ``` 此动作旨在消除任何可能导致混淆或冗余的数据源声明,从而简化依赖解析过程中的复杂度[^2]。 #### 修改默认镜像站地址为更稳定的国内资源库 考虑到网络连接质量差异等因素影响下载效率甚至成功率,在中国大陆地区推荐切换成清华大学开源软件镜像服务作为新的官方档案服务器位置之一。具体做法是在 `/etc/apt/sources.list.d/` 下创建一个新的 `.list` 文件用于指定清华源的相关参数设置: ```plaintext Types: deb URIs: http://mirrors.tuna.tsinghua.edu.cn/ubuntu/ Suites: noble noble-updates noble-security Components: main restricted universe multiverse Signed-By: /usr/share/keyrings/ubuntu-archive-keyring.gpg ``` 保存更改后再次尝试刷新缓存即可验证效果如何[^3]。 通过上述调整应该能够显著改善大多数情况下由于外部因素引起的 APT 资料库同步失败现象。
评论 1
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值