Lightrun
question-mark
Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Unable to verify the first certificate error in cml-send-comment

See original GitHub issue

Thanks for creating this tool!

We currently have our shared gitlab runners configured to use docker on our own linux servers. I am trying to run the cml-base-case example. I keep encountering an error with cml-send-comment line in the cml-base-case code in gitlab. Is there a way to pass in the path of the the ssl certificate like /etc/ssl/certs/?

Here is a screen shot of when it fails. image

I tried creating my own runner manually and edited the /etc/gitlab-runners/config.toml file to point to the paths but not having luck. For example I tried setting:

volumes = ["/cache",
               "/etc/gitlab-runner/certs:/etc/gitlab-runner/certs",
	       "/etc/ssl/certs:/etc/ssl/certs"
    ]

Nothing I tried work so far. Any guidance on what I can try?

Thanks

Issue Analytics

  • State:closed
  • Created 3 years ago
  • Comments:7 (5 by maintainers)

github_iconTop GitHub Comments

1reaction
JLC7commented, Aug 19, 2020

I resolved the issue. Setting the gitlab variable type to File rather than Variable helped. All I needed then was - export NODE_EXTRA_CA_CERTS=$SSL_CERT Thanks for the help.

0reactions
DavidGOrtegacommented, Aug 19, 2020

Let me know if there would’ve been a simpler way

Another option would be make accesible the file with the container.volumes option

jobs:
  cml_run:
    container:
      image: dvcorg/cml:latest
      volumes: ['path_to_my_cert:/my_cert.crt']
   env:
      NODE_EXTRA_CA_CERTS: '/my_cert.crt'
Read more comments on GitHub >

github_iconTop Results From Across the Web

Error: unable to verify the first certificate in nodejs
unable to verify the first certificate. The certificate chain is incomplete. It means that the webserver you are connecting to is misconfigured and...
Read more >
Postman responds to API calls with "Error: Unable to verify the ...
Disable SSL Verification within Postman. Open Postman, then select File -> Settings; Select the General tab. Move the slider for SSL certificate ...
Read more >
Unable to verify the first certificate #6354 - GitHub
On Postman Console: Error: unable to verify the first certificate. On Safari: Works, displays expected JSON.
Read more >
upstream SSL certificate verify error: (21:unable ... - Micro Focus
The POA is using a commercial certificate where the ssl certificate contains only the server certificate and is missing the intermediate CA ...
Read more >
Unable to Verify the First Certificate with OpenSSL - Pavol Kutaj
This error means that the certificate chain is broken for OpenSSL — but does not have to be for browsers! Why? Because browsers...
Read more >

github_iconTop Related Medium Post

No results found

github_iconTop Related StackOverflow Question

No results found

github_iconTroubleshoot Live Code

Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free

github_iconTop Related Reddit Thread

No results found

github_iconTop Related Hackernoon Post

No results found

github_iconTop Related Tweet

No results found

github_iconTop Related Dev.to Post

No results found

github_iconTop Related Hashnode Post

No results found
Previous page

cml cloud runner doesn't receive runner token

Next page

CML docker version tagging