[Bug 256003] lang/go: seems to ignore system trusted TLS certificates

Wed May 19 15:28:04 UTC 2021

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=256003

            Bug ID: 256003
           Summary: lang/go: seems to ignore system trusted TLS
                    certificates
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: dmgk at freebsd.org
          Reporter: lapo at lapo.it
             Flags: maintainer-feedback?(dmgk at freebsd.org)
          Assignee: dmgk at freebsd.org

In both net-mgmt/prometheus2, net-mgmt/victoria-metrics and
net-mgmt/blackbox_exporter I got a lot of:

  x509: certificate signed by unknown authority

until I installed ca_root_nss.

Is it necessary to use in order to have working X.509 validation in Go?

Or could the Go port made aware of the new system-based TLS certificate trust?

(or, then again, would it be necessary for each single Go-based port to support
that?)

Sorry if the question might be silly, but I know very little about Go myself.

-- 
You are receiving this mail because:
You are the assignee for the bug.