multipass icon indicating copy to clipboard operation
multipass copied to clipboard
verified publisher icon canonical

[snap] import certificates from the host

Open Saviq opened this issue 5 years ago • 3 comments

There's currently no way to extend the system certificates for strict snaps. To cater for SSL-terminating proxies, we need to import /etc/ssl and /usr/share/ca-certificates from the host system.

Saviq avatar Mar 30 '20 09:03 Saviq

Hi @Saviq . Is there a work around for this issue? For example, is it possible to point multipass to /var/snap/multipass/current/ca-certificates for certificates?

nicolasbock avatar Nov 18 '22 22:11 nicolasbock

Hi @nicolasbock, I am afraid there is no workaround at the level of Multipass yet. This is a generic snap problem that should hopefully be fixed at the snap level. I don't know if there is any generic workaround – or proper solution, for that matter – for snaps. There is this in the thread linked above, but I imagine you saw that already.

ricab avatar Nov 21 '22 16:11 ricab

Thanks for the update @ricab . I hadn't see the discussion, but I will definitely try it.

nicolasbock avatar Nov 21 '22 16:11 nicolasbock