clairctl and docker trusted registry ssl certs

[jgsqware]

From @pireslaert in https://github.com/wemanity-belgium/hyperclair/issues/92

Hi, Im trying to get clair/hyperclair working for my docker trusted registry with ssl enabled. I can login and pull images via hyperclair to the registry, but not push to clair:

./hyperclair-linux-amd64 pull dxxxxxxxxxxxxxxxxx/v2/xxxx/tools-xxxxx:1.0.1 Image: https://dxxxxxxxxxxxxxxxxx/v2/xxxx/tools-xxxxx:1.0.1 8 layers found ➜ sha256:7af61bd827110a81260ec127fe18a285f5c2b81ecff1193c99e75e4c4ddaeeb8 ➜ sha256:49450d74f78203be950a7d8b6c8eec62b8a5852ea745c111c11409c64160c4a0 ➜ sha256:3cecefdee658faed37324c640e5372502e0b740d1a147ebe9fe668960ba02d43 ➜ sha256:d5bd2b88ef7ed138b5649ac86802a3592243eabf203e0d0a11bc835dc4c87a44 ➜ sha256:5e9546c8f903e29b1d28d44d5dd558af02d8eadfae9a76e7c77a97fa51f11358 ➜ sha256:75c879e7f7e54022c1f95735a93f67cb9bcc83fb80fa457ba1ff79e8046dfa85 ➜ sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 ➜ sha256:0653bff3c5cf23727e0ebceae7a28f7534ab64ed13966e080e4c9b035176c401

./hyperclair-linux-amd64 push dxxxxxxxxxxxxxxxxx/v2/xxxx/tools-xxxxx:1.0.1 2016-10-07 16:01:30.729731 I | http: proxy error: x509: certificate signed by unknown authority client quit unexpectedly FATA[0000] pushing image "dxxxxxxxxxxxxxxxxx/v2/xxxx/tools-xxxxx:1.0.1": 400 - {"Error":{"Message":"could not find layer"}}

Clair logs: 2016-10-07 05:01:30.730181 W | detectors: could not download layer: got status code 500, expected 2XX 2016-10-07 05:01:30.731005 E | worker: layer sha256:7af61bd827110a81260ec127fe18a285f5c2b81ecff1193c99e75e4c4ddaeeb8: failed to extract data from http://172.17.0.1:50352/v2/xxxx/tools-xxxxx:/blo bs/sha256:7af61bd827110a81260ec127fe18a285f5c2b81ecff1193c99e75e4c4ddaeeb8: could not find layer 2016-10-07 05:01:30.732137 I | api: 172.19.0.1:60874 "POST /v1/layers" 400 (242.396269ms)

Where do I add the CA authority?

Cheers,