Am Montag, dem 27.01.2025 um 10:30 +0000 schrieb andy pugh: > On Mon, 27 Jan 2025 at 09:52, Rod Webster <[email protected]> > wrote: > > > I had an idea. You could try copying your script into this file > > before the > > apt update > > > > https://github.com/LinuxCNC/linuxcnc-live-build/blob/bookworm/config/hooks/normal/510-linuxcnc.hook.chroot > > At one stage I was dealing with keys in this file so it should work > > > I am starting to think that it is related to the reason that you > can't get > to the LinuxCNC Wiki with https:// any more. >
I also thought that at first because ip address of wiki.linuxcnc.org and www.linuxcnc.org is the same, but certificate served for www.linuxcnc.org is correct and valid. wiki.linuxcnc.org still negotiates with the generic sni.dreamhost.com certificate. so the cause is probably that the CA used by letsencrypt is not recognized by the build system, or there is a problem with the certificate chain (intermediate certificate not available?). error msg from build host: Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown. Could not handshake: Error in the certificate verification. [IP: 69.163.143.134 443] wget https://wiki.linuxcnc.org: ERROR: cannot verify wiki.linuxcnc.org's certificate, issued by '[email protected],CN=sni.dreamhost.com,OU=System Engineering,O=New Dream Network LLC dba Dreamhost,L=Brea,ST=California,C=US': Self-signed certificate encountered. ERROR: certificate common name 'sni.dreamhost.com' doesn't match requested host name 'wiki.linuxcnc.org'. To connect to wiki.linuxcnc.org insecurely, use `--no-check- certificate'. ("issuer unknown" vs. "common name doesn't match") -- Robert Schöftner <[email protected]> _______________________________________________ Emc-developers mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/emc-developers
