Closed william-coulter closed 2 years ago
What is the base image for the docker container you are running your application in? We use AWS's CA.
Hi Liz, I'm using Docker Desktop for Mac: https://hub.docker.com/editions/community/docker-ce-desktop-mac
No, I need to see your Dockerfile, in particular the first line of it.
Ah yep, here you go.
We use stretch
rather than buster
because buster's libc is too high, meaning the binary can't be run on Ubuntu 18.04 LTS.
FROM golang:stretch AS builder
RUN apt-get update -y && apt-get install -y netcat
WORKDIR /app
...
FROM debian:stretch-slim
WORKDIR /app
COPY --from=builder /bin/nc /bin/
...
I suspect Stretch is missing the AWS CA from its ca-certificates package. I suggest you install a more recent ca-certificates backport as part of your image generation process.
Yep so I've install the ca-certificates
package with the following code snippet in my Dockerfile
# Add the stretch-backports repository to your package sources list
RUN sh -c 'echo "deb http://deb.debian.org/debian stretch-backports main" >> /etc/apt/sources.list.d/ca-certificates.list'
# Update the package cache and install netcat
RUN apt-get update -y && apt-get install -y netcat
# Install ca-certificates package from the stretch-backports repository
RUN apt-get -t stretch-backports install ca-certificates
Everything runs as usual but I'm still getting that x509: certificate signed by unknown authority
error.
Nobody from Debian has backported it :(
Hello,
We will be closing this issue as it is a low priority for us. It is unlikely that we'll ever get to it, and so we'd like to set expectations accordingly.
As we enter 2022 Q1, we are trimming our OSS backlog. This is so that we can focus better on areas that are more aligned with the OpenTelemetry-focused direction of telemetry ingest for Honeycomb.
If this issue is important to you, please feel free to ping here and we can discuss/re-open.
MacOS Version:
High Sierra 10.13.6
Golang Version:go1.12.6 darwin/amd64
Libhoney Version:v1.12.4
Client Docker Engine:19.03.2
1.40
go1.12.8
darwin/amd64
false
I'm trying to send an
event
to my dataset using thelibhoney-go
package. I'm following the first example at: https://docs.honeycomb.io/getting-data-in/go/sdk/#examples.Here is a snippet of my code which is running in a local
docker container
The response returned from the
libhoney.Responses()
channel is:x509: certificate signed by unknown authority
A lot of the docs online point to this being an issue with
MacOS
andDocker
(https://forums.docker.com/t/docker-private-registry-x509-certificate-signed-by-unknown-authority/21262) but I've played around with mykeychains
and can't overcome this issue. I suspect keychains aren't the issue because I'm running thenodejs
beeline package in a differentdocker container
and it has no issues sending messages toHoneycomb
.I was wondering if something like this has come up previously with a different user? Any help would be appreciated, thanks :)