I'm trying to make an https request in go against a URL which has an incomplete TLS certificate chain. Here's the relevant portion from the Qualys test tool, which shows the certificate chain is missing "Symantec Class 3 Secure Server CA - G4" :
Most browsers do cope with this, presumably because they have the Symantec cert preloaded? A simple golang example, however, will fail with the error x509: certificate signed by unknown authority
package main
import (
"log"
"net/http"
)
func main() {
_, err := http.Get("https://www.example.com/")
if err != nil {
log.Fatal(err)
} else {
log.Println("Success!")
}
}
I've notified the site in question, but is there a way I can insert the missing certificate into the certificate store go is using?