Bug 657652 – Peer certificate cannot be authenticated with known CA certificates

After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.

Bug 657652 - Peer certificate cannot be authenticated with known CA certificates


Summary:	Peer certificate cannot be authenticated with known CA certificates


Status:	RESOLVED FIXED

Product:	sysadmin
Classification:	Infrastructure
Component:	Certificates
Version:	unspecified
Hardware:	Other Linux

Importance:	Normal normal
Target Milestone:	---
Assigned To:	GNOME Sysadmins
QA Contact:	GNOME Sysadmins

URL:
Whiteboard:

Depends on:
Blocks:

Reported:	2011-08-29 19:50 UTC by Enrico Minack
Modified:	2011-09-08 09:49 UTC

See Also:
GNOME target:	---
GNOME version:	---

Description Enrico Minack 2011-08-29 19:50:05 UTC

I installed gnome-applets and got the above error in the middle of the script:

[eminack@master ~]$ ftpadmin install gnome-applets-3.1.90.tar.gz 
Gathering information and sorting on version: ., done
Preparing installation of gnome-applets-3.1.90.tar.gz:
 - Checking consistency: ..................., done
 - Checking previous tarball: ..................., done
 - NEWS, done (diff, 7 lines)
 - ChangeLog, done (diff, 37 lines)
 - Creating tarballs from tar.gz: tar.bz2 tar.xz ......................................, done
 - Creating sha256sum, done

      Module: gnome-applets
     Version: 3.1.90   (previous version: 3.1.5)
 Destination: /ftp/pub/GNOME/sources/gnome-applets/3.1/

Install gnome-applets? [Y/n] y
Installing gnome-applets-3.1.90.tar.gz:
 - Moving files: ....., done
 - Updating LATEST-IS, done
 - Updating known versions, done
 - Removing original tarball, done
Doing notifications:
 - Informing ftp-release-list, done
 - Triggering GNOME library update, done
 - Adding new version to GNOME Bugzillacurl: (60) Peer certificate cannot be authenticated with known CA certificates
More details here: http://curl.haxx.se/docs/sslcerts.html

curl performs SSL certificate verification by default, using a "bundle"
 of Certificate Authority (CA) public keys (CA certs). If the default
 bundle file isn't adequate, you can specify an alternate file
 using the --cacert option.
If this HTTPS server uses a certificate signed by a CA represented in
 the bundle, the certificate verification probably failed due to a
 problem with the certificate (it might be expired, or the name might
 not match the domain name in the URL).
If you'd like to turn off curl's verification of the certificate, use
 the -k (or --insecure) option.
FAILED (exit code 60)
 - Triggering ftp.gnome.org update, churchill.acc.umu.se, done

Your tarball will appear in the following location on ftp.gnome.org:

  http://download.gnome.org/sources/gnome-applets/3.1/

It is important to retain the trailing slash for compatibility with
broken http clients, and to use http as it is less taxing on the server.

7944cd6c7da2df2e853fba9ce482547b68bb051e452f0a5756176aadfcea9a60  gnome-applets-3.1.90.news
3a9ec43b338952076778f078ef8e347ad370368c410eff89a7dc10e7c6afce70  gnome-applets-3.1.90.changes
733e7b8e3353854ea8401e55fdb0defb32bde5dce4ca0cf9b82ba7788aa0ef0c  gnome-applets-3.1.90.tar.bz2
33e102f7535705113d1fef302d53863e63f08ac354e22a96ea5d92c0db3f5f9d  gnome-applets-3.1.90.tar.xz

The ftp-release-list email uses information from the modules DOAP file. Make
sure at least the following fields are filled in:
  name, shortdesc, description, download-page, bug-database
See http://live.gnome.org/MaintainersCorner#doap

Please report any problems to:
https://bugzilla.gnome.org/enter_bug.cgi?product=sysadmin