Re: certificate verification failures during pkg bootstrapping on a 15-PRERELEASE PKGBASE installation

In reply to: Dag-Erling_Smørgrav : "Re: certificate verification failures during pkg bootstrapping on a 15-PRERELEASE PKGBASE installation"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Chuck Tuffli <chuck_at_freebsd.org>
Date: Sat, 23 Aug 2025 16:34:15 UTC

On Fri, Aug 22, 2025 at 5:43 AM Dag-Erling Smørgrav <des@freebsd.org> wrote:
>
> Dag-Erling Smørgrav <des@FreeBSD.org> writes:
> > polyduekes@proton.me writes:
> > > i grabbed the latest iso image snapshots of both bootonly and disc1 of
> > > 15-PRELEASE [...]  ;) upon doing pkgbase installation using the
> > > "packages (experimental)" from the "select installation type" window,
> > > pkg bootstrapping and installation falls with [...]
> > Certificate verification failed because your clock was not set
>
> My apologies, I assumed you were talking about the installer itself, but
> I see what you mean now.  It looks like either certctl rehash did not
> run or, more likely, it ran but failed because the output directories
> did not exist.  I did not anticipate this as they're listed in the mtree
> files, but those are not used when installing packages.  I'll prepare a
> patch to make certctl create the directories as needed.  In the
> meantime, you can run:
>
>     mtree -deU -f /etc/mtree/BSD.root.dist -p /
>     certctl rehash

This allowed me to run pkg after a fresh install with yesterday's
snapshot ISO. Thank you!

--chuck