[SOLVED] vbatts/slackware docker image can't connect to https
SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
But I seem to have issues connecting to https urls.
example:
Code:
sh-5.0# wget https://github.com/sbopkg/sbopkg/releases/download/0.38.1/sbopkg-0.38.1-noarch-1_wsr.tgz
--2021-03-07 04:35:00-- https://github.com/sbopkg/sbopkg/releases/download/0.38.1/sbopkg-0.38.1-noarch-1_wsr.tgz
Resolving github.com (github.com)... 140.82.113.3
Connecting to github.com (github.com)|140.82.113.3|:443... connected.
ERROR: cannot verify github.com's certificate, issued by 'CN=DigiCert SHA2 High Assurance Server CA,OU=www.digicert.com,O=DigiCert Inc,C=US':
Unable to locally verify the issuer's authority.
To connect to github.com insecurely, use `--no-check-certificate'.
'.
if you want ssl support in wget you will need openssl, not openssl-solibs, because it includes the perl utility (you will need perl too) c_rehash, that is needed by the ca-certificates utility update-ca-certificates.
Thanks for suggestions!!! Still working at it. (I must be missing something else fundamental)
Code:
sh-5.0# slackpkg search ssl
Looking for ssl in package list. Please wait... DONE
The list below shows all packages with name matching "ssl".
[ installed ] - openssl-solibs-1.1.1j-x86_64-1
[ installed ] - openssl-1.1.1j-x86_64-1
You can search specific files using "slackpkg file-search file".
sh-5.0# slackpkg search perl
Looking for perl in package list. Please wait... DONE
The list below shows all packages with name matching "perl".
[ installed ] - perl-5.32.1-x86_64-2
You can search specific files using "slackpkg file-search file".
sh-5.0# slackpkg search ca-cer
Looking for ca-cer in package list. Please wait... DONE
The list below shows all packages with name matching "ca-cer".
[ installed ] - ca-certificates-20201219-noarch-3
You can search specific files using "slackpkg file-search file".
sh-5.0# /usr/sbin/update-ca-certificates
Updating certificates in /etc/ssl/certs...
0 added, 0 removed; done.
Running hooks in /etc/ca-certificates/update.d...
done.
sh-5.0# wget https://github.com/sbopkg/sbopkg/releases/download/0.38.1/sbopkg-0.38.1-noarch-1_wsr.tgz
--2021-03-08 02:48:06-- https://github.com/sbopkg/sbopkg/releases/download/0.38.1/sbopkg-0.38.1-noarch-1_wsr.tgz
Resolving github.com (github.com)... 140.82.114.4
Connecting to github.com (github.com)|140.82.114.4|:443... connected.
ERROR: cannot verify github.com's certificate, issued by 'CN=DigiCert SHA2 High Assurance Server CA,OU=www.digicert.com,O=DigiCert Inc,C=US':
Unable to locally verify the issuer's authority.
To connect to github.com insecurely, use `--no-check-certificate'.
I'm going to stay at it though good learning experience
you can try adding also p11-kit, nettle and libtasn1.
to force an update you can also launch update-ca-certificates with the -f ("fresh") command-line option.
EDIT: ok, I'll leave here the test I have done:
Code:
docker run -it vbatts/slackware:current /usr/bin/bash
ln -s /usr/bin/elvis /usr/bin/vi # because!
slackpkg update
slackpkg install aaa_glibc-solibs aaa_libraries
removepkg glibc-solibs aaa_elflibs
slackpkg update
slackpkg upgrade slackpkg
slackpkg new-config
sed -i '/^http/s/https:\/\/mirrors\.slackware\.com\/slackware\/slackware64-14\.2/http:\/\/mirrors\.us\.kernel\.org\/slackware\/slackware64-current/' /etc/slackpkg/mirrors
slackpkg upgrade pkgtools
slackpkg upgrade-all
slackpkg install e2fsprogs libtasn1 nettle perl p11-kit ca-certificates # openssl is already installed in the default image, perl depends on e2fsprogs!
update-ca-certificates -f
then wget of an ssl link worked without errors.
Thank you ponce! Very good and concise.
Worked like a champ!!!
--I definately was not adding ( e2fsprogs libtasn1 nettle p11-kit)
I added this just to modify /etc/slackpkg/mirrors (after the update)
Code:
sed -i '/^http/s/https:\/\/mirrors\.slackware\.com\/slackware\/slackware64-14\.2/http:\/\/mirrors\.us\.kernel\.org\/slackware\/slackware64-current/' /etc/slackpkg/mirrors
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.