Hi everyone, I'm hitting a "unable to get local issuer certificate" error on a specific SSL certificate, and I was wondering how I can best debug this? It's via NXLog which uses OpenSSL so a bit disconnected from the underlying library at the moment, and I'm not too familar with OpenSSL.
I've exported the full SSL certificate chain for both logs-01.loggly.comand collectors.sumologic.com using Firefox, each into their own pem file. When establishing a connection, the first works fine, the second gives me: SSL certificate verification failed: unable to get local issuer certificate (err: 20) The only difference I can spot is the second is an EV certificate, and is for sumologic.com whereas the first is explicitly *.loggly.com. If I deliberately mis-match the certificates then I get "SSL certificate verification failed: self signed certificate in certificate chain (err: 19)" so it's definitely something specific to the SumoLogic certificate verification chain as far as I can tell? Any help would be much appreciated. J
