2018-08-03 03:22:52 UTC
I could use some advice on where to look for a solution. I recently
installed a SSL certificate from GoDaddy on my server, and having been
working my way through various issues that have occurred as a result.
At first I had an intermediate chain problem, but seem to have resolved it,
at least according to the tests at:
Which now reports an "A" grade and no certificate chain errors.
However I do have a service that is using curl to fetch from another
service (both on the same server), and this service has been reporting
errors from curl, e.g.:
The progress on the errors went like this:
- First it was reporting the chain problem, Once the chain problem was
- Next complained that a certificate was self-signed (it is true that
GoDaddy Root certificate is self signed).
- Now I've removed the root certificate anchor from the chain, and the curl
error is "unable to get local issuer certificate" (even though the chain is
reported as ok in the tests above).
So I'm at a bit of a loss where to look next. Any suggestions? Is there a
way for curl to recognize the GoDaddy root certificate as legitimate?
(this is Apache 2.4.33, curl 7.59.0)