All geek questions in one place

SSL: "Unable to obtain a local issuer certificate"

I am using OSX: 10.12.4

I was initially able to use git, homebrew and curl without any problems. I don’t remember what I did to cause this, but all of a sudden these SSL errors start appearing in my git commands.

I get errors when running any git command. Also, I get an error when trying to reinstall git with . unable to get local issuer certificatebrew install git

Relevant part of brew output :

Downloading https://www.kernel.org/pub/software/scm/git/git-2.12.2.tar.xz

curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here: https://curl.haxx.se/docs/sslcerts.html

I tried:

  • Rebooting
  • Moving the ~ / Library / Keychains folder to ~ / Desktop and rebooting
  • Switch to https://www.kernel.org/pub/software/scm/git on safari and view the certificate . In accordance with [these instructions] (cannot post more than two links, sorry), the "Always trust" site must be checked. I do not see this flag.
  • I was going to try first aid on key binding, however this feature was removed in the latest Mac OS.
  • I tried to look at many other similar questions, however, with many, it was difficult for me to understand or follow the instructions in the answers.

, , squid808 . : " CA git, ". , , , . , , , . , Mac.

, git config --global http.sslVerify false -k curl. , , SSL .

curl -L https://homebrew.bintray.com/bottles/libpng-1.6.29.sierra.bottle.tar.gz | bash -s stable ( brew, )

  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here: https://curl.haxx.se/docs/sslcerts.html

curl performs SSL certificate verification by default, using a "bundle"
 of Certificate Authority (CA) public keys (CA certs). If the default
 bundle file isn't adequate, you can specify an alternate file
 using the --cacert option.
If this HTTPS server uses a certificate signed by a CA represented in
 the bundle, the certificate verification probably failed due to a
 problem with the certificate (it might be expired, or the name might
 not match the domain name in the URL).
If you'd like to turn off curl verification of the certificate, use
 the -k (or --insecure) option.

  • , , , , , , git, , , SSL- . , , .
  • , .

, . , . , , . .

+4
2

, Homebrew/ brew issue 1625 (edrozenberg):

, ATP Podcast 7.

, : iCloud Keychain iCloud

, :

  • MacOS / reset
  • Keychain Access, .
  • Keychain Access ( )
  • https://google.com Google Chrome SSL CERT , brew, curl (35)

, / . , , Keychain Access . , , .

( X), Mac OS (, 10.12.2?) .

- iCloud Keychain prefs iCloud ( ).

Mac Sierra 10.12.4... , .

(jamver):

macOS Sierra (10.12) , :

cd ~
sudo wget http://curl.haxx.se/ca/cacert.pem
export CURL_CA_BUNDLE=~/cacert.pem

FWIW, , . , , wget Dir Homebrew Cache.

. ca bundle? Apple ?

+1

brew doctor . . , , brew .

, , . brew doctor, , 10 . , , , .

, :

Warning: Setting DYLD_* vars can break dynamic linking.
Set variables:
  DYLD_LIBRARY_PATH: /Applications/MATLAB/MATLAB_Runtime/v92/runtime/maci64:/Applications/MATLAB/MATLAB_Runtime/v92/sys/os/maci64:/Applications/MATLAB/MATLAB_Runtime/v92/bin/maci64


set -x DYLD_LIBRARY_PATH /Applications/MATLAB/MATLAB_Runtime/v92/runtime/maci64:/Applications/MATLAB/MATLAB_Runtime/v92/sys/os/maci64:/Applications/MATLAB/MATLAB_Runtime/v92/bin/maci64

~/.config/fish/config.fish, , , .

@VonC , brew doctor.

+4

Source: https://habr.com/ru/post/1674151/

More articles:


All Articles