Hi Rimvydas, I have security/ca_root_nss installed via dports and the /etc/ssl/cert.pem symlink goes to /usr/local/share/certs/ca-root-nss.crt. But I can't install any package due to the error: Certificate verification failed for /C=SE/O=AddTrust AB/OU=AddTrust External TTP Network/CN=AddTrust External CA Root 34371375740:error:14007086:SSL routines:CONNECT_CR_CERT:certificate verify failed:/usr/src/lib/libressl/../../crypto/libressl/ssl/ssl_clnt.c:1121: pkg: https://mirror-master.dragonflybsd.org/dports/dragonfly:5.6:x86:64/LATEST/meta.txz : Authentication error... pkg: https://mirror-master.dragonflybsd.org/dports/dragonfly:5.6:x86:64/LATEST/packagesite.txz : Authentication error
>Понедельник, 11 ноября 2019, 12:02 +03:00 от Rimvydas Jasinskas ><[email protected]>: > >On Fri, Nov 8, 2019 at 1:59 PM Ilia Gorstkine < [email protected] > wrote: >> I have tried other repositories, but with the same results. >> I tried installing ca_root_nss, but pkg install ca_root_nss returned the >> same error. >> pkg fetch, pkg search, pkg update - same error. >If /usr/local/share/certs/ca-root-nss.crt is not available then you >have a dangling symlink for /etc/ssl/cert.pem. >DragonFly BSD base now comes with /usr/share/examples/etc/ssl/cert.pem >(as provided by LibreSSL 2.9.1) and it could be copied as >/etc/ssl/cert.pem for cases when /usr/local is not mounted or >security/ca_root_nss package is not installed without need to set >SSL_NO_VERIFY_PEER environment variable for libfetch users or use >"fetch --no-verify-peer". The /etc/ssl/cert.pem will be replaced by >symlink once security/ca_root_nss port gets installed. > >> pkg: sqlite error while executing ALTER TABLE packages ADD licenselogic >> INTEGER NOT NULL DEFAULT(1); in file pkgdb.c:2477: no such table: packages >Your pkg database got corrupted, it is located in >/var/db/pkg/local.sqlite (by default). The pkg(8) will create a new >one if it is deleted. > >Best regards, >Rimvydas -- Ilia Gorstkine
