I have a Turris Omnia still running 3.11.23 due to a complex VLAN switch setup that I’ve not wanted to break and have downtime on while figuring out the new way of doing such things.
I’ve just noticed a lot of notifications about the updater failing due to not recognising the server certificates:
# pkgupdate
line not found
line not found
line not found
ERROR:
unreachable: https://repo.turris.cz/omnia/lists/base.lua: SSL certificate problem: self signed certificate
This is confirmed by:
# curl https://repo.turris.cz/omnia/lists/base.lua
curl: (60) SSL certificate problem: self signed certificate
More details here: https://curl.se/docs/sslcerts.html
curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
I’ve not missed any updates. Is there a new CA bundle that is required?
# opkg list-installed | grep ca-
ca-bundle - 20190110-1
ca-certificates - 20190110-1
# opkg list-installed | grep updater
updater-ng - 61.1.5.4-3.6-1
updater-ng-localrepo - 61.1.5.4-3.6-1
updater-ng-opkg - 61.1.5.4-3.6-1
updater-ng-supervisor - 61.1.5.4-3.6-1