(我在Ubuntu 14.10上。uname -r => 3.16.0-31-generic)
apt-get更新
Failed to fetch https://get.docker.com/ubuntu/dists/docker/main/binary-amd64/Packages server certificate verification failed. CAfile: /etc/ssl/certs/ca-certificates.crt CRLfile: none. git clone https://github.com/sdelements/lets-chat.git
I can't clone anything - fatal: unable to access 'https://github.com/sdelements/lets-chat.git/': server certificate verification failed. CAfile: /etc/ssl/certs/ca-certificates.crt CRLfile: none.
docker工运行你好,世界
Get https://index.docker.io/v1/repositories/library/hello-world/images: x509: certificate signed by unknown authority.
ls /etc/ssl/certs/ca-certificates.crt -l
-rw-r--r-- 1 root root 1964 Mar 26 18:19 /etc/ssl/certs/ca-certificates.crt
任何线索将不胜感激。
我所有的ca证书都从/ usr / share / ca-certificates / *中丢失
重新安装这个软件包把它们放回去
如果他们从那个位置丢失,做强制重装会显示0的0:
update-ca-certificates -f
Clearing symlinks in /etc/ssl/certs...done. Updating certificates in /etc/ssl/certs... 0 added, 0 removed; done.
apt-get install –reinstall ca-certificates
Preparing to unpack .../ca-certificates_20141019ubuntu0.14.10.1_all.deb ... Unpacking ca-certificates (20141019ubuntu0.14.10.1) over (20141019ubuntu0.14.10.1) ... Processing triggers for man-db (2.7.0.2-2) ... Setting up ca-certificates (20141019ubuntu0.14.10.1) ... Processing triggers for ca-certificates (20141019ubuntu0.14.10.1) ... Updating certificates in /etc/ssl/certs... WARNING: Skipping duplicate certificate Go_Daddy_Class_2_CA.pem WARNING: Skipping duplicate certificate Go_Daddy_Class_2_CA.pem 173 added, 0 removed; done. Running hooks in /etc/ca-certificates/update.d....done.
另一个原因可能是您的服务器时间:通过运行date检查您的服务器时间是否正确。 如果不是,运行sudo ntpdate -s ntp.ubuntu.com 。 不正确的服务器时间可能导致ssl证书无效
就我而言,我恢复了服务器快照。 因此,服务器时间仍设置为快照时间。 重启也许可以解决这个问题,因为Ubuntu试图更新启动时间。