Arch Linux

Please read this before reporting a bug:

Do NOT report bugs when a package is just outdated, or it is in Unsupported. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!

FS#39600 - [ca-certificates] certificates are rejected

Attached to Project: Arch Linux
Opened by Mika Attila (SneakySnake) - Sunday, 23 March 2014, 16:26 GMT
Last edited by Pierre Schmitz (Pierre) - Sunday, 23 March 2014, 20:02 GMT
Task Type Bug Report
Category Packages: Testing
Status Closed
Assigned To Pierre Schmitz (Pierre)
Architecture All
Severity Medium
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No


With ca-certificates 20140223-1, certificates get rejected.
With ca-certificates 20130906-1, they are accepted.

One problem this presents is the inability to pull the archives of several packages whose sources are hosted on

Here is the output of curl -lvv

The problem was originally discovered here:

This task depends upon

Closed by  Pierre Schmitz (Pierre)
Sunday, 23 March 2014, 20:02 GMT
Reason for closing:  Duplicate
Additional comments about closing:   FS#39453 
Comment by Pierre Schmitz (Pierre) - Sunday, 23 March 2014, 20:02 GMT
Canonical is using an invalid/weak certificate. Nothing we can or should do here. Please report the issue to Canonical. The next Firefox version will reject this cert as well. See