Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Rebuild to fix apt update errors due to expired Let's Encrypt root certificate #30

Open
zickgraf opened this issue Sep 30, 2021 · 2 comments
Open

Rebuild to fix apt update errors due to expired Let's Encrypt root certificate #30

zickgraf opened this issue Sep 30, 2021 · 2 comments
Assignees
@olexandr-konovalov

Comments

@zickgraf
Copy link
Contributor

The Let's Encrypt "DST Root CA X3" certificate, which is included in the current gap-docker-base image on Docker Hub, has expired about one hour ago. As a consequence, apt update now fails. Could you please rebuild gap-docker-base and gap-docker? This should pick up the new root certificate from a recent Ubuntu automatically. Thanks!
zickgraf added a commit to zickgraf/PackageJanitor that referenced this issue Oct 4, 2021
@zickgraf
Work around expired Let's Encrypt root certificate
1d58022 
See gap-system/gap-docker-base#30
zickgraf added a commit to zickgraf/PackageJanitor that referenced this issue Oct 4, 2021
@zickgraf
Work around expired Let's Encrypt root certificate
11c6fad 
See gap-system/gap-docker-base#30
@olexandr-konovalov
Copy link
Member

@zickgraf haven't seem this - always good to ping me by @ so that GitHub will show this in "participating" or "mentioned". Good that you seem to find a workaround. I need to catch up with DockerHub policy changes first... There are now autobuilds, for example.

@olexandr-konovalov olexandr-konovalov self-assigned this Oct 10, 2021
@zickgraf
Copy link
Contributor Author

haven't seem this - always good to ping me by @ so that GitHub will show this in "participating" or "mentioned"

I see, will do in the future!

Good that you seem to find a workaround.

Yes, I simply skip the https verification in our CI (which is not a security issue because packages are signed anyway), so no need to hurry. Still, thanks for looking into this!

@zickgraf zickgraf mentioned this issue Oct 25, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@olexandr-konovalov olexandr-konovalov

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@olexandr-konovalov @zickgraf