Problems with sites using Let's Encrypt certificates

Antonio Huete Jiménez tuxillo at quantumachine.net
Fri Oct 1 01:32:54 PDT 2021


A fix is now available in branches: master, DragonFly_RELEASE_6_0 and  
DragonFly_RELEASE_5_8.

Only a 'world' upgrade is needed, please proceed with the usual procedure.

- The DragonFly BSD team


Quoting Antonio Huete Jiménez <tuxillo at quantumachine.net>:

> Dear users,
>
> As you may be already aware, a Let's Encrypt root CA certificate  
> expired today. That is causing problems with our base LibreSSL but  
> not with the DPorts one, we don't know why yet.
> You might see an error similar to this one when doing any pkg operation:
>
> Certificate verification failed for /O=Digital Signature Trust  
> Co./CN=DST Root CA X3
> Certificate verification failed for /O=Digital Signature Trust  
> Co./CN=DST Root CA X3
> Certificate verification failed for /O=Digital Signature Trust  
> Co./CN=DST Root CA X3
> Certificate verification failed for /O=Digital Signature Trust  
> Co./CN=DST Root CA X3
> Certificate verification failed for /O=Digital Signature Trust  
> Co./CN=DST Root CA X3
> 34380633924:error:14007086:SSL routines:CONNECT_CR_CERT:certificate  
> verify  
> failed:/home/antonioh/s/dragonfly/lib/libressl/../../crypto/libressl/ssl/ssl_clnt.c:1138:
> fetch:  
> https://mirror-eu-1.dragonflybsd.org/dports/dragonfly:6.0:x86:64/LATEST/packagesite.txz: Authentication  
> error
>
> We are working on it already, will update this thread once it's fixed.
>
> - The DragonFly BSD team






More information about the Users mailing list