On 2/23/2019 3:14 AM, Ken Moffat via blfs-support wrote: > I had a reply off-list suggesting that I try without the local cert > directory. So I renamed that, and retried. Running make-ca -g > succeeded but told me that the certs were up to date. Running make-ca > -f succeeded, the final output was: Certificate: Global Chambersign > Root - 2008 Keyhash: 0c4c9b6c Added to p11-kit anchor directory with > trust 'C,C,'. Extracting OpenSSL certificates to > /etc/ssl/certs...Done! Extracting GNUTLS server auth certificates to > /etc/pki/tls/certs/ca-bundle.crt...Done! Extracting GNUTLS S-Mime > certificates to /etc/pki/tls/certs/email-ca-bundle.crt...Done! > Extracting GNUTLS code signing certificates to > /etc/pki/tls/certs/objsign-ca-bundle.crt...Done! Extracting Java > cacerts (JKS) to /etc/pki/tls/java/cacerts...Done! And running links > to an https: site from chroot now works. I'll keep this around for a > bit in case you are replying to my earlier reply, but I need to sort > out some food, then I'll probably go shopping and then wind down and > go to bed. Bad cert in the /etc/ssl/local directory caused that to cascade like that? I can't see how, but I'll have to figure it out. If you still have it around and it's not too much trouble (and nothing private in /etc/ssl/local), could you tar up the contents and send, or is it just the example cacert.org certs? --DJ
-- http://lists.linuxfromscratch.org/listinfo/blfs-support FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page
