JimMarshall35

JimMarshall35

Fallen at the first hurdle: [notice] TLS :client: In state :certify at ssl_handshake.erl:2082 generated CLIENT ALERT: Fatal - Unknown CA

Hello guys and gals.
I’m a developer who’s interested in giving elixir a try, primarily to learn a bit of functional programming and because I like some of the unique things I’ve heard about this language and the BEAM virtual machine.

I decided yesterday after work I would download it, get phoenix (which seems to be a popular and easy to pick up web framework) and make a hello world app that served me some basic page on the local host.

Unfortunately though I seem to have “Fallen at the first hurdle”. I did this:

  • I used Mix to create a new project

  • added this to list returned by the deps function the mix.exs file:
    {:phx_new, “~> 1.6”}

  • ran “mix compile” from the command line which prompted me to run “mix deps.get” - so I did

-This didn’t work! I got this error:
[notice] TLS :client: In state :certify at ssl_handshake.erl:2082 generated CLIENT ALERT: Fatal - Unknown CA

Am I doing something wrong? Am I going about trying to add the package in the right way? I just don’t know. I’ve obviously googled it and other people have reported that error under different circumstances.

Assuming I’ve done the right thing to try and add the package, Is there anything I can do to fix my problem?

Thanks everyone,
Jim

Marked As Solved

voltone

voltone

You could just set HEX_UNSAFE_HTTPS=1 when running Mix commands, which disables server certificate verification for Hex server endpoints. When fetching public data from Hex (as opposed to publishing packages or accessing other authenticated endpoints) this should be safe, as package checksums are verified against the signed Hex registry metadata. But I still wouldn’t do this without first understanding why normal HTTPS does not work…

Also Liked

voltone

voltone

Could it be your PC accesses the internet through some corporate outbound firewall that intercepts HTTPS traffic, by injecting itself in the TLS handshake and presenting a certificate signed by a corporate CA that exists in your OS CA trust store but not in the CA trust store used by Hex?

Assuming you have the openssl CLI tool available, what does openssl s_client -connect repo.hex.pm:443 -servername repo.hex.pm show you under “Certificate chain”? Alternatively, if you open https://repo.hex.pm in a browser and you inspect the server’s certificate, what issuer(s) do you see?

kokolegorille

kokolegorille

That might not play well with …

kokolegorille

kokolegorille

You might be interested by asdf-vm, as it is a popular way to install both Erlang and Elixir (and many more).

Where Next?

Popular in Questions Top

skosch
To my knowledge, put_in, Map.update etc. all have the one limitation of not automatically creating intermediate keys when needed (for exa...
New
chrisalley
ExUnit now has describe blocks which is a welcome addition coming from RSpec. In the docs, it states that nested hierarchies of describe ...
New
lessless
I believe there are people here who are dealing with CSV files import on the daily basis, and since Excel is a really popular tool there ...
New
gshaw
What is the idiomatic way of matching for not nil in Elixir? E.g., First way: defp halt_if_not_signed_in(conn, signed_in_account) when...
New
JeremM34
Hello, how can I check the Phoenix version ? Thanks !
New
itssasanka
Hi all, Trying to get some more clarity over utc_datetime and naive_datetime for Ecto: The documentation above suggests that while ...
New
vonH
When I run the Plug and I recompile I wind up having to use Ctrl C to quit iex and start again. Witht the help of rlwrap I can use the cu...
New
RisingFromAshes
I’ve read in another post that it may be possible with a router helper - but I couldn’t find an appropriate one, and tbh, I’m still just ...
New
bsollish-terakeet
Credo is smart enough to check for (something like) this: assert length(the_list) == 0 with this response: Checking if an enum is empt...
New
komlanvi
Hi everyone, I was playing with phoenix liveView but I run into an issue. I have a form and want to validate each input text when the te...
New

Other popular topics Top

chrismccord
As promised, the first release candidate of Phoenix 1.3.0 is out! This release focuses on code generators with improved project structure...
New
electic
Hi, I am new to Elixir. I am trying to use the DateTime component to insert a date into MySQL however the there seems to be no way to fo...
New
Patoshizzle
After calling mix ecto.create I get this error: 17:00:32.162 [error] GenServer #PID<0.412.0> terminating ** (Postgrex.Error) FATAL...
New
Fl4m3Ph03n1x
About me? ( if you have nothing better to do than reading about some random guy in the internet :stuck_out_tongue: ) Hello all, this is ...
New
stefanluptak
Hello everybody, usually, I use a 29" ultra-wide monitor for VSCode which can easily accomodate explorer (files panel) + file with code ...
New
ashish173
I am using Ecto timestamps with postgres, I can see the timestamps() use the :naive_dateime but for my use case I wanted to store the ti...
New
saif
Hello everyone, Long time lurker first time poster here. I’ve recently begun working on Elixir full-time again! :raised_hands: It’s been...
New
rms.mrcs
Hi, I need to transform a list of numbers into a map where the keys are the indexes and the values are the original values of the list. ...
New
nsuchy
Hi. I’ve noticed that Windows Powershell has it’s own IEX command and you cannot access Elixir’s IEX due to the conflict. This isn’t a cr...
New
vegabook
I’m brand new to Phoenix and I have stripped one of the demo applications to the bone. I just want to get an svg up on the screen. Here i...
New

We're in Beta

About us Mission Statement