[GH-ISSUE #29] 与苹果推送服务器传输数据失败【非dock方式自建】 #23

New issue

Closed

opened 2026-03-03 11:55:25 +03:00 by kerem · 30 comments

kerem commented 2026-03-03 11:55:25 +03:00

Owner

Copy link

Originally created by @Whichbfj28 on GitHub (Feb 2, 2021).
Original GitHub issue: https://github.com/Finb/bark-server/issues/29

Originally assigned to: @mritd on GitHub.

{"code":400,"data":null,"message":"与苹果推送服务器传输数据失败: Post "https://api.push.apple.com/3/device/de48279c61d2dd9bca3b8aaf5d416cf68293cf39b*******e7edded992386015": x509: certificate signed by unknown authority"}

Originally created by @Whichbfj28 on GitHub (Feb 2, 2021). Original GitHub issue: https://github.com/Finb/bark-server/issues/29 Originally assigned to: @mritd on GitHub. {"code":400,"data":null,"message":"与苹果推送服务器传输数据失败: Post \"https://api.push.apple.com/3/device/de48279c61d2dd9bca3b8aaf5d416cf68293cf39b*******e7edded992386015\": x509: certificate signed by unknown authority"}

kerem 2026-03-03 11:55:25 +03:00

• closed this issue
• added the
  enhancement
  label

kerem commented 2026-03-03 11:55:27 +03:00

Author

Owner

Copy link

@Whichbfj28 commented on GitHub (Feb 2, 2021):

访问https://*.org/ping网址是这样的
{"code":200,"data":{"arch":"linux/amd64","build":"2020-12-02 11:24:17","commit":"891b952e458412bc9999a090bafcbefa5aa5e5c8","version":"v1.0.2"},"message":"pong"}

<!-- gh-comment-id:771493427 --> @Whichbfj28 commented on GitHub (Feb 2, 2021): 访问https://*.org/ping网址是这样的 {"code":200,"data":{"arch":"linux/amd64","build":"2020-12-02 11:24:17","commit":"891b952e458412bc9999a090bafcbefa5aa5e5c8","version":"v1.0.2"},"message":"pong"}

kerem commented 2026-03-03 11:55:27 +03:00

Author

Owner

Copy link

@Finb commented on GitHub (Feb 2, 2021):

apt-get update && apt-get install -y ca-certificates

安装下CA证书 试试看

<!-- gh-comment-id:771494697 --> @Finb commented on GitHub (Feb 2, 2021): ```sh apt-get update && apt-get install -y ca-certificates ``` 安装下CA证书 试试看

kerem commented 2026-03-03 11:55:27 +03:00

Author

Owner

Copy link

@mritd commented on GitHub (Feb 2, 2021):

证书过期了，用最新版本试一下

<!-- gh-comment-id:771495361 --> @mritd commented on GitHub (Feb 2, 2021): 证书过期了，用最新版本试一下

kerem commented 2026-03-03 11:55:27 +03:00

Author

Owner

Copy link

@mritd commented on GitHub (Feb 2, 2021):

apt-get update && apt-get install -y ca-certificates

安装下CA证书 试试看

我有时间重构 V2 吧

<!-- gh-comment-id:771498165 --> @mritd commented on GitHub (Feb 2, 2021): > ```sh > > apt-get update && apt-get install -y ca-certificates > > ``` > > > > 安装下CA证书 试试看 我有时间重构 V2 吧

kerem commented 2026-03-03 11:55:27 +03:00

Author

Owner

Copy link

@Whichbfj28 commented on GitHub (Feb 2, 2021):

apt-get更新&& apt-get安装-y ca-certificates

安装下CA证书试试看

好像是最新的证书
Fetched 1,470 kB in 2s (504 kB/s)
Reading package lists... Done
Reading package lists... Done
Building dependency tree
Reading state information... Done
ca-certificates is already the newest version (20200601~deb9u1).
0 upgraded, 0 newly installed, 0 to remove and 21 not upgraded.

<!-- gh-comment-id:771498872 --> @Whichbfj28 commented on GitHub (Feb 2, 2021): > ```shell > apt-get更新&& apt-get安装-y ca-certificates > ``` > > 安装下CA证书试试看 好像是最新的证书 Fetched 1,470 kB in 2s (504 kB/s) Reading package lists... Done Reading package lists... Done Building dependency tree Reading state information... Done ca-certificates is already the newest version (20200601~deb9u1). 0 upgraded, 0 newly installed, 0 to remove and 21 not upgraded.

kerem commented 2026-03-03 11:55:27 +03:00

Author

Owner

Copy link

@Whichbfj28 commented on GitHub (Feb 2, 2021):

证书过期了，用最新版本试一下

我要怎么操作。是更新我自己bark域名的证书。还是源代码里面自带的证书过期了。

<!-- gh-comment-id:771499589 --> @Whichbfj28 commented on GitHub (Feb 2, 2021): > 证书过期了，用最新版本试一下 我要怎么操作。是更新我自己bark域名的证书。还是源代码里面自带的证书过期了。

kerem commented 2026-03-03 11:55:27 +03:00

Author

Owner

Copy link

@mritd commented on GitHub (Feb 2, 2021):

看着像根 CA 不受信，你试试 apt update 一下然后 install ca-....

<!-- gh-comment-id:771500727 --> @mritd commented on GitHub (Feb 2, 2021): 看着像根 CA 不受信，你试试 apt update 一下然后 install ca-....

kerem commented 2026-03-03 11:55:27 +03:00

Author

Owner

Copy link

@Whichbfj28 commented on GitHub (Feb 2, 2021):

看着像根 CA 不受信，你试试 apt update 一下然后 install ca-....

运行：apt-get update && apt-get install -y ca-certificates后,显示:

Building dependency tree
Reading state information... Done
ca-certificates is already the newest version (20200601~deb9u1).
0 upgraded, 0 newly installed, 0 to remove and 21 not upgraded.

<!-- gh-comment-id:771501667 --> @Whichbfj28 commented on GitHub (Feb 2, 2021): > 看着像根 CA 不受信，你试试 apt update 一下然后 install ca-.... 运行：apt-get update && apt-get install -y ca-certificates后,显示: Building dependency tree Reading state information... Done ca-certificates is already the newest version (20200601~deb9u1). 0 upgraded, 0 newly installed, 0 to remove and 21 not upgraded.

kerem commented 2026-03-03 11:55:27 +03:00

Author

Owner

Copy link

@Finb commented on GitHub (Feb 2, 2021):

安装一下 GeoTrust Global CA 根证书。

从这里下载
https://www.geotrust.com/resources/root-certificates/
或
https://www.geotrust.com/resources/root_certificates/certificates/GeoTrust_Global_CA.pem

wget --no-check-certificate -c https://www.geotrust.com/resources/root_certificates/certificates/GeoTrust_Global_CA.pem   \
    && mkdir /usr/local/share/ca-certificates/extra                                                                       \
    && mv GeoTrust_Global_CA.pem /usr/local/share/ca-certificates/extra/GeoTrust_Global_CA.crt                            \
    && update-ca-certificates

<!-- gh-comment-id:771503993 --> @Finb commented on GitHub (Feb 2, 2021): 安装一下 GeoTrust Global CA 根证书。 从这里下载 https://www.geotrust.com/resources/root-certificates/ 或 https://www.geotrust.com/resources/root_certificates/certificates/GeoTrust_Global_CA.pem ``` wget --no-check-certificate -c https://www.geotrust.com/resources/root_certificates/certificates/GeoTrust_Global_CA.pem \ && mkdir /usr/local/share/ca-certificates/extra \ && mv GeoTrust_Global_CA.pem /usr/local/share/ca-certificates/extra/GeoTrust_Global_CA.crt \ && update-ca-certificates ```

kerem commented 2026-03-03 11:55:27 +03:00

Author

Owner

Copy link

@mritd commented on GitHub (Feb 2, 2021):

curl -iv https://api.push.apple.com 看下

<!-- gh-comment-id:771504210 --> @mritd commented on GitHub (Feb 2, 2021): curl -iv https://api.push.apple.com 看下

kerem commented 2026-03-03 11:55:27 +03:00

Author

Owner

Copy link

@Whichbfj28 commented on GitHub (Feb 2, 2021):

yun
Updating certificates in /etc/ssl/certs...
1 added, 0 removed; done.
Running hooks in /etc/ca-certificates/update.d...
done.

安装一下 GeoTrust Global CA 根证书。

从这里下载
https://www.geotrust.com/resources/root-certificates/
或
https://www.geotrust.com/resources/root_certificates/certificates/GeoTrust_Global_CA.pem

wget --no-check-certificate -c https://www.geotrust.com/resources/root_certificates/certificates/GeoTrust_Global_CA.pem   \
    && mkdir /usr/local/share/ca-certificates/extra                                                                       \
    && mv GeoTrust_Global_CA.pem /usr/local/share/ca-certificates/extra/GeoTrust_Global_CA.crt                            \
    && update-ca-certificates

运行代码后。提示：
Updating certificates in /etc/ssl/certs...
1 added, 0 removed; done.
Running hooks in /etc/ca-certificates/update.d...
done.

仍旧不生效
我是的域名的ssl证书在正常状态。

<!-- gh-comment-id:771508663 --> @Whichbfj28 commented on GitHub (Feb 2, 2021): yun Updating certificates in /etc/ssl/certs... 1 added, 0 removed; done. Running hooks in /etc/ca-certificates/update.d... done. > 安装一下 GeoTrust Global CA 根证书。 > > 从这里下载 > https://www.geotrust.com/resources/root-certificates/ > 或 > https://www.geotrust.com/resources/root_certificates/certificates/GeoTrust_Global_CA.pem > > ``` > wget --no-check-certificate -c https://www.geotrust.com/resources/root_certificates/certificates/GeoTrust_Global_CA.pem \ > && mkdir /usr/local/share/ca-certificates/extra \ > && mv GeoTrust_Global_CA.pem /usr/local/share/ca-certificates/extra/GeoTrust_Global_CA.crt \ > && update-ca-certificates > ``` 运行代码后。提示： Updating certificates in /etc/ssl/certs... 1 added, 0 removed; done. Running hooks in /etc/ca-certificates/update.d... done. 仍旧不生效 我是的域名的ssl证书在正常状态。

kerem commented 2026-03-03 11:55:27 +03:00

Author

Owner

Copy link

@Whichbfj28 commented on GitHub (Feb 2, 2021):

curl -iv https://api.push.apple.com

安装GeoTrust Global CA 根证书后运行代码提示：
root@VM:~# curl -iv https://api.push.apple.com

• Rebuilt URL to: https://api.push.apple.com/
• Trying 17.188.128.29...
• TCP_NODELAY set
• Connected to api.push.apple.com (17.188.128.29) port 443 (#0)
• ALPN, offering h2
• ALPN, offering http/1.1
• Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
• successfully set certificate verify locations:
• CAfile: /etc/ssl/certs/ca-certificates.crt
  CApath: /etc/ssl/certs
• TLSv1.2 (OUT), TLS header, Certificate Status (22):
• TLSv1.2 (OUT), TLS handshake, Client hello (1):
• TLSv1.2 (IN), TLS handshake, Server hello (2):
• TLSv1.2 (IN), TLS handshake, Certificate (11):
• TLSv1.2 (IN), TLS handshake, Server key exchange (12):
• TLSv1.2 (IN), TLS handshake, Request CERT (13):
• TLSv1.2 (IN), TLS handshake, Server finished (14):
• TLSv1.2 (OUT), TLS handshake, Certificate (11):
• TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
• TLSv1.2 (OUT), TLS change cipher, Client hello (1):
• TLSv1.2 (OUT), TLS handshake, Finished (20):
• TLSv1.2 (IN), TLS change cipher, Client hello (1):
• TLSv1.2 (IN), TLS handshake, Finished (20):
• SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384
• ALPN, server accepted to use h2
• Server certificate:
• subject: CN=api.push.apple.com; OU=management:idms.group.533599; O=Apple Inc.; ST=California; C=US
• start date: Mar 14 17:50:10 2019 GMT
• expire date: Apr 12 17:50:10 2021 GMT
• subjectAltName: host "api.push.apple.com" matched cert's "api.push.apple.com"
• issuer: CN=Apple IST CA 2 - G1; OU=Certification Authority; O=Apple Inc.; C=US
• SSL certificate verify ok.
• Using HTTP2, server supports multi-use
• Connection state changed (HTTP/2 confirmed)
• Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
• Using Stream ID: 1 (easy handle 0x560aef31fdc0)

GET / HTTP/1.1
Host: api.push.apple.com
User-Agent: curl/7.52.1
Accept: /

• Connection state changed (MAX_CONCURRENT_STREAMS updated)!
  < HTTP/2 405
  HTTP/2 405
  < apns-id: 380F5CE9-867A-5A98-8097-B3C8B9043FAF
  apns-id: 380F5CE9-867A-5A98-8097-B3C8B9043FAF

<

• Curl_http_done: called premature == 0
• Connection #0 to host api.push.apple.com left intact

<!-- gh-comment-id:771511419 --> @Whichbfj28 commented on GitHub (Feb 2, 2021): > curl -iv https://api.push.apple.com 安装GeoTrust Global CA 根证书后运行代码提示： root@VM:~# curl -iv https://api.push.apple.com * Rebuilt URL to: https://api.push.apple.com/ * Trying 17.188.128.29... * TCP_NODELAY set * Connected to api.push.apple.com (17.188.128.29) port 443 (#0) * ALPN, offering h2 * ALPN, offering http/1.1 * Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH * successfully set certificate verify locations: * CAfile: /etc/ssl/certs/ca-certificates.crt CApath: /etc/ssl/certs * TLSv1.2 (OUT), TLS header, Certificate Status (22): * TLSv1.2 (OUT), TLS handshake, Client hello (1): * TLSv1.2 (IN), TLS handshake, Server hello (2): * TLSv1.2 (IN), TLS handshake, Certificate (11): * TLSv1.2 (IN), TLS handshake, Server key exchange (12): * TLSv1.2 (IN), TLS handshake, Request CERT (13): * TLSv1.2 (IN), TLS handshake, Server finished (14): * TLSv1.2 (OUT), TLS handshake, Certificate (11): * TLSv1.2 (OUT), TLS handshake, Client key exchange (16): * TLSv1.2 (OUT), TLS change cipher, Client hello (1): * TLSv1.2 (OUT), TLS handshake, Finished (20): * TLSv1.2 (IN), TLS change cipher, Client hello (1): * TLSv1.2 (IN), TLS handshake, Finished (20): * SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 * ALPN, server accepted to use h2 * Server certificate: * subject: CN=api.push.apple.com; OU=management:idms.group.533599; O=Apple Inc.; ST=California; C=US * start date: Mar 14 17:50:10 2019 GMT * expire date: Apr 12 17:50:10 2021 GMT * subjectAltName: host "api.push.apple.com" matched cert's "api.push.apple.com" * issuer: CN=Apple IST CA 2 - G1; OU=Certification Authority; O=Apple Inc.; C=US * SSL certificate verify ok. * Using HTTP2, server supports multi-use * Connection state changed (HTTP/2 confirmed) * Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0 * Using Stream ID: 1 (easy handle 0x560aef31fdc0) > GET / HTTP/1.1 > Host: api.push.apple.com > User-Agent: curl/7.52.1 > Accept: */* > * Connection state changed (MAX_CONCURRENT_STREAMS updated)! < HTTP/2 405 HTTP/2 405 < apns-id: 380F5CE9-867A-5A98-8097-B3C8B9043FAF apns-id: 380F5CE9-867A-5A98-8097-B3C8B9043FAF < * Curl_http_done: called premature == 0 * Connection #0 to host api.push.apple.com left intact

kerem commented 2026-03-03 11:55:28 +03:00

Author

Owner

Copy link

@mritd commented on GitHub (Feb 2, 2021):

重启一下 bark server 再试试

<!-- gh-comment-id:771514501 --> @mritd commented on GitHub (Feb 2, 2021): 重启一下 bark server 再试试

kerem commented 2026-03-03 11:55:28 +03:00

Author

Owner

Copy link

@Whichbfj28 commented on GitHub (Feb 2, 2021):

安装一下 GeoTrust Global CA 根证书。

从这里下载
https://www.geotrust.com/resources/root-certificates/
或
https://www.geotrust.com/resources/root_certificates/certificates/GeoTrust_Global_CA.pem

wget --no-check-certificate -c https://www.geotrust.com/resources/root_certificates/certificates/GeoTrust_Global_CA.pem   \
    && mkdir /usr/local/share/ca-certificates/extra                                                                       \
    && mv GeoTrust_Global_CA.pem /usr/local/share/ca-certificates/extra/GeoTrust_Global_CA.crt                            \
    && update-ca-certificates

已经解决了。谢谢两位大佬。运行这个代码后。重启bark、nginx后解决。

<!-- gh-comment-id:771514993 --> @Whichbfj28 commented on GitHub (Feb 2, 2021): > 安装一下 GeoTrust Global CA 根证书。 > > 从这里下载 > https://www.geotrust.com/resources/root-certificates/ > 或 > https://www.geotrust.com/resources/root_certificates/certificates/GeoTrust_Global_CA.pem > > ``` > wget --no-check-certificate -c https://www.geotrust.com/resources/root_certificates/certificates/GeoTrust_Global_CA.pem \ > && mkdir /usr/local/share/ca-certificates/extra \ > && mv GeoTrust_Global_CA.pem /usr/local/share/ca-certificates/extra/GeoTrust_Global_CA.crt \ > && update-ca-certificates > ``` 已经解决了。谢谢两位大佬。运行这个代码后。重启bark、nginx后解决。

kerem commented 2026-03-03 11:55:28 +03:00

Author

Owner

Copy link

@Whichbfj28 commented on GitHub (Feb 2, 2021):

重启一下 bark server 再试试

已经解决了。谢谢两位大佬。安装ca证书后。重启bark、nginx后解决。

<!-- gh-comment-id:771515154 --> @Whichbfj28 commented on GitHub (Feb 2, 2021): > 重启一下 bark server 再试试 已经解决了。谢谢两位大佬。安装ca证书后。重启bark、nginx后解决。

kerem commented 2026-03-03 11:55:28 +03:00

Author

Owner

Copy link

@mritd commented on GitHub (Feb 2, 2021):

@Finb apple 的推送地址证书这么骚么？中间有什么故事还是咋回事，为啥不受信呢

<!-- gh-comment-id:771517421 --> @mritd commented on GitHub (Feb 2, 2021): @Finb apple 的推送地址证书这么骚么？中间有什么故事还是咋回事，为啥不受信呢

kerem commented 2026-03-03 11:55:28 +03:00

Author

Owner

Copy link

@Finb commented on GitHub (Feb 2, 2021):

@mritd 母鸡啊~ 估计就是单纯的系统没内置吧，没啥故事

<!-- gh-comment-id:771522671 --> @Finb commented on GitHub (Feb 2, 2021): @mritd 母鸡啊~ 估计就是单纯的系统没内置吧，没啥故事

kerem commented 2026-03-03 11:55:28 +03:00

Author

Owner

Copy link

@Whichbfj28 commented on GitHub (Feb 2, 2021):

这个工具配合哪吒面板用来监控vps在合适不过了。哈哈。https://github.com/naiba/nezha

<!-- gh-comment-id:771527540 --> @Whichbfj28 commented on GitHub (Feb 2, 2021): 这个工具配合哪吒面板用来监控vps在合适不过了。哈哈。https://github.com/naiba/nezha

kerem commented 2026-03-03 11:55:28 +03:00

Author

Owner

Copy link

@Whichbfj28 commented on GitHub (Feb 2, 2021):

@mritd 母鸡啊~ 估计就是单纯的系统没内置吧，没啥故事

谢谢大佬提供的工具。有没有交流群。给个门

<!-- gh-comment-id:771527899 --> @Whichbfj28 commented on GitHub (Feb 2, 2021): > @mritd 母鸡啊~ 估计就是单纯的系统没内置吧，没啥故事 谢谢大佬提供的工具。有没有交流群。给个门

kerem commented 2026-03-03 11:55:28 +03:00

Author

Owner

Copy link

@Finb commented on GitHub (Feb 2, 2021):

没有交流群喔，这只是个简单的小工具😀

<!-- gh-comment-id:771552656 --> @Finb commented on GitHub (Feb 2, 2021): 没有交流群喔，这只是个简单的小工具😀

kerem commented 2026-03-03 11:55:28 +03:00

Author

Owner

Copy link

@mritd commented on GitHub (Feb 2, 2021):

先别关，过两天我尝试直接内置 CA

<!-- gh-comment-id:771553819 --> @mritd commented on GitHub (Feb 2, 2021): 先别关，过两天我尝试直接内置 CA

kerem commented 2026-03-03 11:55:28 +03:00

Author

Owner

Copy link

@Whichbfj28 commented on GitHub (Feb 2, 2021):

先别关，过两天我尝试直接内置 CA

好的。

<!-- gh-comment-id:771555762 --> @Whichbfj28 commented on GitHub (Feb 2, 2021): > 先别关，过两天我尝试直接内置 CA 好的。

kerem commented 2026-03-03 11:55:28 +03:00

Author

Owner

Copy link

@Whichbfj28 commented on GitHub (Feb 2, 2021):

没有交流群喔，这只是个简单的小工具😀

我觉得这个可以有 😄哈哈

<!-- gh-comment-id:771556369 --> @Whichbfj28 commented on GitHub (Feb 2, 2021): > 没有交流群喔，这只是个简单的小工具😀 我觉得这个可以有 😄哈哈

kerem commented 2026-03-03 11:55:28 +03:00

Author

Owner

Copy link

@Alion548 commented on GitHub (Feb 10, 2021):

Fedora 33 遇到相同问题，已经安装 ca-certificates-2020.2.41-4.fc33.noarch

curl -iv https://api.push.apple.com
*   Trying 17.188.162.14:443...
* Connected to api.push.apple.com (17.188.162.14) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: /etc/pki/tls/certs/ca-bundle.crt
  CApath: none
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
* TLSv1.3 (IN), TLS handshake, Request CERT (13):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.3 (IN), TLS handshake, CERT verify (15):
* TLSv1.3 (IN), TLS handshake, Finished (20):
* TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.3 (OUT), TLS handshake, Certificate (11):
* TLSv1.3 (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use h2
* Server certificate:
*  subject: CN=api.push.apple.com; OU=management:idms.group.533599; O=Apple Inc.; ST=California; C=US
*  start date: Mar 14 17:50:10 2019 GMT
*  expire date: Apr 12 17:50:10 2021 GMT
*  subjectAltName: host "api.push.apple.com" matched cert's "api.push.apple.com"
*  issuer: CN=Apple IST CA 2 - G1; OU=Certification Authority; O=Apple Inc.; C=US
*  SSL certificate verify ok.
* Using HTTP2, server supports multi-use
* Connection state changed (HTTP/2 confirmed)
* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
* Using Stream ID: 1 (easy handle 0x55b6549dae60)
> GET / HTTP/2
> Host: api.push.apple.com
> user-agent: curl/7.71.1
> accept: */*
>
* Connection state changed (MAX_CONCURRENT_STREAMS == 1)!
< HTTP/2 405
HTTP/2 405
< apns-id: 27BC6989-A8DB-2EB6-6204-BCF5D7BEC26C
apns-id: 27BC6989-A8DB-2EB6-6204-BCF5D7BEC26C

<
* Connection #0 to host api.push.apple.com left intact
{"reason":"MethodNotAllowed"}#

<!-- gh-comment-id:776444101 --> @Alion548 commented on GitHub (Feb 10, 2021): Fedora 33 遇到相同问题，已经安装 ca-certificates-2020.2.41-4.fc33.noarch ``` shell curl -iv https://api.push.apple.com * Trying 17.188.162.14:443... * Connected to api.push.apple.com (17.188.162.14) port 443 (#0) * ALPN, offering h2 * ALPN, offering http/1.1 * successfully set certificate verify locations: * CAfile: /etc/pki/tls/certs/ca-bundle.crt CApath: none * TLSv1.3 (OUT), TLS handshake, Client hello (1): * TLSv1.3 (IN), TLS handshake, Server hello (2): * TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8): * TLSv1.3 (IN), TLS handshake, Request CERT (13): * TLSv1.3 (IN), TLS handshake, Certificate (11): * TLSv1.3 (IN), TLS handshake, CERT verify (15): * TLSv1.3 (IN), TLS handshake, Finished (20): * TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1): * TLSv1.3 (OUT), TLS handshake, Certificate (11): * TLSv1.3 (OUT), TLS handshake, Finished (20): * SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384 * ALPN, server accepted to use h2 * Server certificate: * subject: CN=api.push.apple.com; OU=management:idms.group.533599; O=Apple Inc.; ST=California; C=US * start date: Mar 14 17:50:10 2019 GMT * expire date: Apr 12 17:50:10 2021 GMT * subjectAltName: host "api.push.apple.com" matched cert's "api.push.apple.com" * issuer: CN=Apple IST CA 2 - G1; OU=Certification Authority; O=Apple Inc.; C=US * SSL certificate verify ok. * Using HTTP2, server supports multi-use * Connection state changed (HTTP/2 confirmed) * Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0 * Using Stream ID: 1 (easy handle 0x55b6549dae60) > GET / HTTP/2 > Host: api.push.apple.com > user-agent: curl/7.71.1 > accept: */* > * Connection state changed (MAX_CONCURRENT_STREAMS == 1)! < HTTP/2 405 HTTP/2 405 < apns-id: 27BC6989-A8DB-2EB6-6204-BCF5D7BEC26C apns-id: 27BC6989-A8DB-2EB6-6204-BCF5D7BEC26C < * Connection #0 to host api.push.apple.com left intact {"reason":"MethodNotAllowed"}# ```

kerem commented 2026-03-03 11:55:28 +03:00

Author

Owner

Copy link

@Finb commented on GitHub (Feb 10, 2021):

Fedora 33 遇到相同问题，已经安装 ca-certificates-2020.2.41-4.fc33.noarch

curl -iv https://api.push.apple.com
*   Trying 17.188.162.14:443...
* Connected to api.push.apple.com (17.188.162.14) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: /etc/pki/tls/certs/ca-bundle.crt
  CApath: none
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
* TLSv1.3 (IN), TLS handshake, Request CERT (13):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.3 (IN), TLS handshake, CERT verify (15):
* TLSv1.3 (IN), TLS handshake, Finished (20):
* TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.3 (OUT), TLS handshake, Certificate (11):
* TLSv1.3 (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
* ALPN, server accepted to use h2
* Server certificate:
*  subject: CN=api.push.apple.com; OU=management:idms.group.533599; O=Apple Inc.; ST=California; C=US
*  start date: Mar 14 17:50:10 2019 GMT
*  expire date: Apr 12 17:50:10 2021 GMT
*  subjectAltName: host "api.push.apple.com" matched cert's "api.push.apple.com"
*  issuer: CN=Apple IST CA 2 - G1; OU=Certification Authority; O=Apple Inc.; C=US
*  SSL certificate verify ok.
* Using HTTP2, server supports multi-use
* Connection state changed (HTTP/2 confirmed)
* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
* Using Stream ID: 1 (easy handle 0x55b6549dae60)
> GET / HTTP/2
> Host: api.push.apple.com
> user-agent: curl/7.71.1
> accept: */*
>
* Connection state changed (MAX_CONCURRENT_STREAMS == 1)!
< HTTP/2 405
HTTP/2 405
< apns-id: 27BC6989-A8DB-2EB6-6204-BCF5D7BEC26C
apns-id: 27BC6989-A8DB-2EB6-6204-BCF5D7BEC26C

<
* Connection #0 to host api.push.apple.com left intact
{"reason":"MethodNotAllowed"}#

你这个是正常的呀

<!-- gh-comment-id:776532053 --> @Finb commented on GitHub (Feb 10, 2021): > Fedora 33 遇到相同问题，已经安装 ca-certificates-2020.2.41-4.fc33.noarch > > ```shell > curl -iv https://api.push.apple.com > * Trying 17.188.162.14:443... > * Connected to api.push.apple.com (17.188.162.14) port 443 (#0) > * ALPN, offering h2 > * ALPN, offering http/1.1 > * successfully set certificate verify locations: > * CAfile: /etc/pki/tls/certs/ca-bundle.crt > CApath: none > * TLSv1.3 (OUT), TLS handshake, Client hello (1): > * TLSv1.3 (IN), TLS handshake, Server hello (2): > * TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8): > * TLSv1.3 (IN), TLS handshake, Request CERT (13): > * TLSv1.3 (IN), TLS handshake, Certificate (11): > * TLSv1.3 (IN), TLS handshake, CERT verify (15): > * TLSv1.3 (IN), TLS handshake, Finished (20): > * TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1): > * TLSv1.3 (OUT), TLS handshake, Certificate (11): > * TLSv1.3 (OUT), TLS handshake, Finished (20): > * SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384 > * ALPN, server accepted to use h2 > * Server certificate: > * subject: CN=api.push.apple.com; OU=management:idms.group.533599; O=Apple Inc.; ST=California; C=US > * start date: Mar 14 17:50:10 2019 GMT > * expire date: Apr 12 17:50:10 2021 GMT > * subjectAltName: host "api.push.apple.com" matched cert's "api.push.apple.com" > * issuer: CN=Apple IST CA 2 - G1; OU=Certification Authority; O=Apple Inc.; C=US > * SSL certificate verify ok. > * Using HTTP2, server supports multi-use > * Connection state changed (HTTP/2 confirmed) > * Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0 > * Using Stream ID: 1 (easy handle 0x55b6549dae60) > > GET / HTTP/2 > > Host: api.push.apple.com > > user-agent: curl/7.71.1 > > accept: */* > > > * Connection state changed (MAX_CONCURRENT_STREAMS == 1)! > < HTTP/2 405 > HTTP/2 405 > < apns-id: 27BC6989-A8DB-2EB6-6204-BCF5D7BEC26C > apns-id: 27BC6989-A8DB-2EB6-6204-BCF5D7BEC26C > > < > * Connection #0 to host api.push.apple.com left intact > {"reason":"MethodNotAllowed"}# > ``` 你这个是正常的呀

kerem commented 2026-03-03 11:55:29 +03:00

Author

Owner

Copy link

@Alion548 commented on GitHub (Feb 10, 2021):

bark就不正常了：
{"code":400,"data":null,"message":"与苹果推送服务器传输数据失败: Post "https://api.push.apple.com/3/device/db931ef431da0218b9604f8c97286678b6064908d34cad26eef5f4c7cb656698": remote error: tls: expired certificate"}

<!-- gh-comment-id:776533158 --> @Alion548 commented on GitHub (Feb 10, 2021): bark就不正常了： {"code":400,"data":null,"message":"与苹果推送服务器传输数据失败: Post \"https://api.push.apple.com/3/device/db931ef431da0218b9604f8c97286678b6064908d34cad26eef5f4c7cb656698\": remote error: tls: expired certificate"}

kerem commented 2026-03-03 11:55:29 +03:00

Author

Owner

Copy link

@Finb commented on GitHub (Feb 10, 2021):

bark就不正常了：
{"code":400,"data":null,"message":"与苹果推送服务器传输数据失败: Post "[https://api.push.apple.com/3/device/db931ef431da0218b9604f8c97286678b6064908d34cad26eef5f4c7cb656698](https://api.push.apple.com/3/device/db931ef431da0218b9604f8c97286678b6064908d34cad26eef5f4c7cb656698%5C)": remote error: tls: expired certificate"}

你这个是很早之前下载的 bark 服务端吧？内嵌的证书过期了，需要更新一下
curl http://服务地址/ping 看下

<!-- gh-comment-id:776534349 --> @Finb commented on GitHub (Feb 10, 2021): > bark就不正常了： > {"code":400,"data":null,"message":"与苹果推送服务器传输数据失败: Post "[https://api.push.apple.com/3/device/db931ef431da0218b9604f8c97286678b6064908d34cad26eef5f4c7cb656698\](https://api.push.apple.com/3/device/db931ef431da0218b9604f8c97286678b6064908d34cad26eef5f4c7cb656698%5C)": remote error: tls: expired certificate"} 你这个是很早之前下载的 bark 服务端吧？内嵌的证书过期了，需要更新一下 curl http://服务地址/ping 看下

kerem commented 2026-03-03 11:55:29 +03:00

Author

Owner

Copy link

@Alion548 commented on GitHub (Feb 10, 2021):

bark就不正常了：
{"code":400,"data":null,"message":"与苹果推送服务器传输数据失败: Post "https://api.push.apple.com/3/device/db931ef431da0218b9604f8c97286678b6064908d34cad26eef5f4c7cb656698": remote error: tls: expired certificate"}

你这个是很早之前下载的 bark 服务端吧？内嵌的证书过期了，需要更新一下
curl http://服务地址/ping 看下

{"code":200,"data":{"arch":"linux/amd64","build":"2020-09-28 11:05:21","commit":"8b5ee32c7221569467fa72bcfa2773d74f3f6342","version":"v1.0.2"},"message":"pong"}

<!-- gh-comment-id:776555078 --> @Alion548 commented on GitHub (Feb 10, 2021): > > bark就不正常了： > > {"code":400,"data":null,"message":"与苹果推送服务器传输数据失败: Post "[https://api.push.apple.com/3/device/db931ef431da0218b9604f8c97286678b6064908d34cad26eef5f4c7cb656698](https://api.push.apple.com/3/device/db931ef431da0218b9604f8c97286678b6064908d34cad26eef5f4c7cb656698%5C)": remote error: tls: expired certificate"} > > 你这个是很早之前下载的 bark 服务端吧？内嵌的证书过期了，需要更新一下 > curl [http://服务地址/ping](http://%E6%9C%8D%E5%8A%A1%E5%9C%B0%E5%9D%80/ping) 看下 ``` json {"code":200,"data":{"arch":"linux/amd64","build":"2020-09-28 11:05:21","commit":"8b5ee32c7221569467fa72bcfa2773d74f3f6342","version":"v1.0.2"},"message":"pong"} ```

kerem commented 2026-03-03 11:55:29 +03:00

Author

Owner

Copy link

@Alion548 commented on GitHub (Feb 10, 2021):

我用git最新代码编译一份就正常了，要更新下release的版本了。

<!-- gh-comment-id:776562549 --> @Alion548 commented on GitHub (Feb 10, 2021): 我用git最新代码编译一份就正常了，要更新下release的版本了。

kerem commented 2026-03-03 11:55:29 +03:00

Author

Owner

Copy link

@Finb commented on GitHub (Feb 10, 2021):

release 版本12月份已经更新了，现在内嵌的证书不会过期

<!-- gh-comment-id:776589529 --> @Finb commented on GitHub (Feb 10, 2021): release 版本12月份已经更新了，现在内嵌的证书不会过期

kerem referenced this issue 2026-03-03 11:56:21 +03:00

[PR #23] [CLOSED] chore(README): add guide on building docker image #130

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

dependabot/go_modules/github.com/buger/jsonparser-1.1.2

dependabot/go_modules/github.com/gofiber/fiber/v2-2.52.12

dependabot/go_modules/filippo.io/edwards25519-1.1.1

v2.3.4

v2.3.3

v2.3.2

v2.3.1

v2.3.0

v2.2.9

v2.2.8

v2.2.7

v2.2.6

v2.2.5

v2.2.4

v2.2.3

v2.2.2

v2.2.1

v2.2.0

v2.1.9

v2.1.8

v2.1.7

v2.1.6

v2.1.5

v2.1.4

v2.1.2-4-gbebf1cc

v2.1.3

v2.1.2

v2.1.1

v2.1.0

v2.0.3

v2.0.2

v2.0.1

v2.0.0

v1.0.2

v1.0.1

1.0.0-build2

1.0.0

Labels

Clear labels   

enhancement

  

in progress

  

need test

  

pull-request

Mirrored from GitHub Pull Request

  

v2

  

v2

No labels

enhancement

in progress

need test

pull-request

v2

v2

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/bark-server#23

No description provided.