Problems with sites using Let's Encrypt certificates
Antonio Huete Jiménez
tuxillo at quantumachine.net
Fri Oct 1 01:32:54 PDT 2021
A fix is now available in branches: master, DragonFly_RELEASE_6_0 and
DragonFly_RELEASE_5_8.
Only a 'world' upgrade is needed, please proceed with the usual procedure.
- The DragonFly BSD team
Quoting Antonio Huete Jiménez <tuxillo at quantumachine.net>:
> Dear users,
>
> As you may be already aware, a Let's Encrypt root CA certificate
> expired today. That is causing problems with our base LibreSSL but
> not with the DPorts one, we don't know why yet.
> You might see an error similar to this one when doing any pkg operation:
>
> Certificate verification failed for /O=Digital Signature Trust
> Co./CN=DST Root CA X3
> Certificate verification failed for /O=Digital Signature Trust
> Co./CN=DST Root CA X3
> Certificate verification failed for /O=Digital Signature Trust
> Co./CN=DST Root CA X3
> Certificate verification failed for /O=Digital Signature Trust
> Co./CN=DST Root CA X3
> Certificate verification failed for /O=Digital Signature Trust
> Co./CN=DST Root CA X3
> 34380633924:error:14007086:SSL routines:CONNECT_CR_CERT:certificate
> verify
> failed:/home/antonioh/s/dragonfly/lib/libressl/../../crypto/libressl/ssl/ssl_clnt.c:1138:
> fetch:
> https://mirror-eu-1.dragonflybsd.org/dports/dragonfly:6.0:x86:64/LATEST/packagesite.txz: Authentication
> error
>
> We are working on it already, will update this thread once it's fixed.
>
> - The DragonFly BSD team
More information about the Users
mailing list