[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: armhf: buster: TLS / HTTPS partly broken



On Sun, May 03, 2020 at 07:20:13PM +0200, Mark Jonas wrote:
> Hi Reco,
> 
> >> curl: (60) SSL certificate problem: unable to get local issuer certificate
> >>
> >> Does that mean a TLS library does not feature all required protocols on armhf?
> >
> > TLS library that curl uses (openssl) is perfectly fine, but it cannot
> > validate any certificate unless you provide it with root CA
> > certificates.
> > So it likely means you haven't installed "ca-certificates" package.
> 
> This is what it looks like. But actually I installed ca-certificates.

Ok. Can you run tcpdump while you're running curl?
Specifically,

tcpdump -s0 -pnni any -w /tmp/curl.pcap tcp port 443

Reco


Reply to: