On 6 Jun 2026 at 10:59, Todd Zullinger wrote: Date sent: Sat, 6 Jun 2026 10:59:09 -0400 From: Todd Zullinger <[email protected]> To: [email protected] Subject: Re: Minor issues with update problem from 43 to 44 (sslcacert) Send reply to: Community support for Fedora users <[email protected]>
> Michael D. Setzer II via users wrote: > > Had done an upgrade on a machine a little while ago, and had to > > make some manual changes to two of my repo files involving > > sslcacert lines. Just updated another system, and had to again > > manually do changes. First line is the new line in fc44 and old line > > in fc43. > > > > < sslcacert=/etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem > >> sslcacert=/etc/pki/tls/certs/ca-bundle.crt > > > > The differences also have changing from 43 to 44 on some, but also > > have to update that will winehq repo, > > > > So, is this something that just needs to be done manually, or should > > the update from 43 to 44 do this. > > > > Recall originally finding this info, but don't recall exactly where. > > The speedtest isn't a big deal, but the TurboVNC causes the VNC > > not to work correctly, and requires an ssh login to fix it. > > > > What would be best to report it? > > This is the result of this Fedora 44 change: > > https://fedoraproject.org/wiki/Changes/droppingOfCertPemFile Thanks for info. Think I had found that when I did the original update test and found these two repos no longer worked until I manually changed the paths. ookla_speedtest-cli.repo TurboVNC.repo I did just comment the lines, and did a dnf clean all; dnf update and it seemed to run with no error. Assume both repos had the line from something that had told them. Why do the have the sslcacert= option if it isn't needed? Thanks. > > While you could update those paths, the better move is to > drop sslcacert from the repo files. Only third-party repos > add them but they should not be doing so. It is a pointless > waste of everyone's time. The default value for sslcacert > in dnf is to use the system default. > > If you've modified these repo files for other reasons, then > you should fix them to drop the entirely unneeded and > unwanted sslcacert too. If you don't need to modify them > for other reasons, you should simply install the packaged > default from the repo, whatever it is and then let it be > managed by the third-party repo. > > If there are third-party repo files which specify the old > path, you should notify them that they should remove the > sslcacert entry entirely and use the perfectly good default. > > -- > Todd > +------------------------------------------------------------+ Michael D. Setzer II - Computer Science Instructor (Retired) mailto:[email protected] mailto:[email protected] mailto:[email protected] Guam - Where America's Day Begins G4L Disk Imaging Project maintainer http://sourceforge.net/projects/g4l/ +------------------------------------------------------------+ -- _______________________________________________ users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new
