When running curl you must currently provide the location of the ca key store otherwise you get this error:
curl: (60) SSL certificate problem: unable to get local issuer certificate
To set the ca store you specify:
--cacert /QOpenSys/QIBM/UserData/SC1/OpenSSL/cert.pem
--capath /QOpenSys/QIBM/UserData/SC1/OpenSSL/certs
curl -v "
https://www.midrange.com"; --cacert /QOpenSys/QIBM/UserData/SC1/OpenSSL/cert.pem --capath /QOpenSys/QIBM/UserData/SC1/OpenSSL/certs
It looks like you might be able to get the current config value using this command:
curl-config -ca
However when I run it I do not get any output, making me feel that it has not been configured.
--
Chris Hiebert
Senior Programmer/Analyst
Disclaimer: Any views or opinions presented are solely those of the author and do not necessarily represent those of the company.
From: OpenSource <opensource-bounces@xxxxxxxxxxxxxxxxxx> On Behalf Of Brad Stone
Sent: Friday, September 23, 2022 6:07 AM
To: IBMi Open Source Roundtable <opensource@xxxxxxxxxxxxxxxxxx>
Subject: [IBMiOSS] curl SSL error (60)
Trying to use curl to download a file from a website (really just a trial
since every other method using browsers seems to just restart when right at
the end of the download).
Here's the error:
curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here:
https://curl.se/docs/sslcerts.html
Now, the CAs are Godaddy and nothing else reports any errors. The link
provided is little help. Other searches talk about updating the server
(which of course I can't do).
If importing the CAs is the answer where would I put them?
Bradley V. Stone
midrange.com
