<div dir="ltr"><div>A known problem. I'll bring in the gitorious guys. <br><br></div>-JM<br><br></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Tue, Mar 25, 2014 at 7:55 AM, Justin Clift <span dir="ltr"><<a href="mailto:justin@gluster.org" target="_blank">justin@gluster.org</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Cloning from the Gluster Forge using http(s) is failing with an invalid<br>
certificate warning:<br>
<br>
$ export GIT_CURL_VERBOSE=1<br>
$ git clone <a href="https://git.forge.gluster.org/gluster-patch-acceptance-tests/gluster-patch-acceptance-tests.git" target="_blank">https://git.forge.gluster.org/gluster-patch-acceptance-tests/gluster-patch-acceptance-tests.git</a><br>
Cloning into 'gluster-patch-acceptance-tests'...<br>
* Couldn't find host <a href="http://git.forge.gluster.org" target="_blank">git.forge.gluster.org</a> in the .netrc file; using defaults<br>
* Adding handle: conn: 0x8fba40<br>
* Adding handle: send: 0<br>
* Adding handle: recv: 0<br>
* Curl_addHandleToPipeline: length: 1<br>
* - Conn 0 (0x8fba40) send_pipe: 1, recv_pipe: 0<br>
* About to connect() to <a href="http://git.forge.gluster.org" target="_blank">git.forge.gluster.org</a> port 443 (#0)<br>
* Trying 5.9.136.106...<br>
* Connected to <a href="http://git.forge.gluster.org" target="_blank">git.forge.gluster.org</a> (5.9.136.106) port 443 (#0)<br>
* Initializing NSS with certpath: sql:/etc/pki/nssdb<br>
* CAfile: /etc/pki/tls/certs/ca-bundle.crt<br>
CApath: none<br>
* Server certificate:<br>
* subject: CN=<a href="http://forge.gluster.org" target="_blank">forge.gluster.org</a>,O=Red Hat Inc,L=Raleigh,ST=North Carolina,C=US,serialNumber=snX4wDYgxbHedFh4atiozb/7j8EnjoRd<br>
* start date: Apr 09 01:49:42 2013 GMT<br>
* expire date: Apr 12 09:47:35 2015 GMT<br>
* common name: <a href="http://forge.gluster.org" target="_blank">forge.gluster.org</a><br>
* issuer: CN=GeoTrust SSL CA,O="GeoTrust, Inc.",C=US<br>
* NSS error -12276 (SSL_ERROR_BAD_CERT_DOMAIN)<br>
* Unable to communicate securely with peer: requested domain name does not match the server's certificate.<br>
* Closing connection 0<br>
fatal: unable to access '<a href="https://git.forge.gluster.org/gluster-patch-acceptance-tests/gluster-patch-acceptance-tests.git/" target="_blank">https://git.forge.gluster.org/gluster-patch-acceptance-tests/gluster-patch-acceptance-tests.git/</a>': Unable to communicate securely with peer: requested domain name does not match the server's certificate.<br>
<br>
This is on Fedora 20 vm, using the OS provided git:<br>
<br>
$ git --version<br>
git version 1.8.5.3<br>
<br>
Tried <a href="http://forge.gluster.org" target="_blank">forge.gluster.org</a> for the repo URL too just in case :), but<br>
no go there.<br>
<br>
Guessing we'll need to get a server cert specifically for<br>
<a href="http://git.forge.gluster.org" target="_blank">git.forge.gluster.org</a> or something.<br>
<br>
Is there an easier way for people?<br>
<br>
+ Justin<br>
<br>
--<br>
Open Source and Standards @ Red Hat<br>
<br>
<a href="http://twitter.com/realjustinclift" target="_blank">twitter.com/realjustinclift</a><br>
<br>
_______________________________________________<br>
Gluster-infra mailing list<br>
<a href="mailto:Gluster-infra@gluster.org">Gluster-infra@gluster.org</a><br>
<a href="http://www.gluster.org/mailman/listinfo/gluster-infra" target="_blank">http://www.gluster.org/mailman/listinfo/gluster-infra</a><br>
</blockquote></div><br></div>