当前位置:网站首页>Centso7 OpenSSL error Verify return code: 20 (unable to get local issuer certificate)
Centso7 OpenSSL error Verify return code: 20 (unable to get local issuer certificate)
2022-07-07 13:25:00 【Poplar siege lion】
Problem recurrence :
because centos7 default openssl The version is 1.1.0k, When I compile the media service , need openssl edition 1.1.1 above , All previous lower versions deleted openssl, Manually compiled a 1.1.1k Version of , The media service is running normally , also CA Verify normal .
As a result, the server was powered off and restarted last night , When I was getting Telecom MQ Data time ,openssl Has been an error ,Unhandled exception. System.Security.Authentication.AuthenticationException:The remote certificate was rejected by the provided RemoteCertificateValidat
Use openssl Command to test the connection status :
openssl s_client -connect msgpush.ctwing.cn:16651
The following results are obtained :
Tips , Unable to load local certificate . Various schemes are used , Compile various versions of openssl, Not yet. .
All kinds of helpless , Can only analyze the online environment openssl( Online is ECS ,openssl by 1.02K) With the local server openssl The difference between , Another few painful hours . Finally checking openssl Version of the command , See the clue , This order is very important :
openssl version -d
Results printed online :
The result of the local server :
Enter online environment openssl The catalog of : Carry out orders
ll
Show results :
The key point is this directory , Look at the part marked in red , The soft link here is the location of the certificate
Let's see , Local server
You can see , I don't see the soft link of the certificate ,
So the reason for everything is here , Didn't tell the system openssl The location of the certificate used . So we can create a soft link .
ln -s /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem cert.pem
The results are as follows :
When we use... Again openssl When the test command of : succeed ,
边栏推荐
- “新红旗杯”桌面应用创意大赛2022
- QQ medicine, Tencent ticket
- Cookie and session comparison
- 滑轨步进电机调试(全国海洋航行器大赛)(STM32主控)
- 将数学公式在el-table里面展示出来
- How to reset Google browser? Google Chrome restore default settings?
- How to reset Firefox browser
- Pcap learning notes II: pcap4j source code Notes
- Milkdown 控件图标
- Common text processing tools
猜你喜欢
Japanese government and enterprise employees got drunk and lost 460000 information USB flash drives. They publicly apologized and disclosed password rules
High end for 8 years, how is Yadi now?
MongoDB内部的存储原理
MySQL入门尝鲜
10 张图打开 CPU 缓存一致性的大门
ESP32构解工程添加组件
靠卖概念上市,认养一头牛能走多远?
About how appium closes apps (resolved)
MATLAB中polarscatter函数使用
Esp32 ① compilation environment
随机推荐
Storage principle inside mongodb
基于鲲鹏原生安全,打造安全可信的计算平台
Initialization script
RealBasicVSR测试图片、视频
centso7 openssl 报错Verify return code: 20 (unable to get local issuer certificate)
服务器到服务器 (S2S) 事件 (Adjust)
Analysis of DHCP dynamic host setting protocol
Japanese government and enterprise employees got drunk and lost 460000 information USB flash drives. They publicly apologized and disclosed password rules
Ogre入门尝鲜
工具箱之 IKVM.NET 项目新进展
[dark horse morning post] Huawei refutes rumors about "military master" Chen Chunhua; Hengchi 5 has a pre-sale price of 179000 yuan; Jay Chou's new album MV has played more than 100 million in 3 hours
PAcP learning note 3: pcap method description
QQ medicine, Tencent ticket
Esp32 ① compilation environment
Isprs2021/ remote sensing image cloud detection: a geographic information driven method and a new large-scale remote sensing cloud / snow detection data set
Write it down once Net a new energy system thread surge analysis
The difference between cache and buffer
记一次 .NET 某新能源系统 线程疯涨 分析
COSCon'22 社区召集令来啦!Open the World,邀请所有社区一起拥抱开源,打开新世界~
Mongodb meets spark (for integration)