Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > linux.debian.devel.testing > #1113
| Path | csiph.com!news.mixmin.net!aioe.org!bofh.it!news.nic.it!robomod |
|---|---|
| From | John Eikenberry <jae@zhar.net> |
| Newsgroups | linux.debian.bugs.dist, linux.debian.devel.testing |
| Subject | Bug#927435: upgrade-reports: Buster upgrade: had to re-create unbound certs/keys |
| Date | Fri, 19 Apr 2019 20:10:01 +0200 |
| Message-ID | <xOG7v-3bA-1@gated-at.bofh.it> (permalink) |
| X-Original-To | Debian Bug Tracking System <submit@bugs.debian.org> |
| X-Mailbox-Line | From debian-bugs-dist-request@lists.debian.org Fri Apr 19 18:09:10 2019 |
| Old-Return-Path | <debbugs@buxtehude.debian.org> |
| X-Spam-Flag | NO |
| X-Spam-Score | -4.199 |
| Reply-To | John Eikenberry <jae@zhar.net>, 927435@bugs.debian.org |
| Resent-To | debian-bugs-dist@lists.debian.org |
| Resent-Cc | Debian Testing Group <debian-testing@lists.debian.org> |
| X-Debian-Pr-Message | report 927435 |
| X-Debian-Pr-Package | upgrade-reports |
| X-Spam-Bayes | score:0.0000 Tokens: new, 11; hammy, 150; neutral, 92; spammy, 0. spammytokens: hammytokens:0.000-+--H*u:1.10.1, 0.000-+--H*UA:1.10.1, 0.000-+--H*u:2018-07-13, 0.000-+--H*UA:2018-07-13, 0.000-+--systemctl |
| MIME-Version | 1.0 |
| Content-Type | text/plain; charset=us-ascii |
| Content-Disposition | inline |
| X-Reportbug-Version | 7.5.2 |
| User-Agent | Mutt/1.10.1 (2018-07-13) |
| X-Debian-Message | from BTS |
| X-Mailing-List | <debian-bugs-dist@lists.debian.org> archive/latest/1533693 |
| List-ID | <debian-bugs-dist.lists.debian.org> |
| List-URL | <https://lists.debian.org/debian-bugs-dist/> |
| Approved | robomod@news.nic.it |
| Lines | 39 |
| Organization | linux.* mail to news gateway |
| Sender | robomod@news.nic.it |
| X-Original-Date | Fri, 19 Apr 2019 11:07:49 -0700 |
| X-Original-Message-ID | <20190419180749.GA20992@ivanova.zhar.net> |
| Xref | csiph.com linux.debian.bugs.dist:955130 linux.debian.devel.testing:1113 |
Cross-posted to 2 groups.
Show key headers only | View raw
Package: upgrade-reports Severity: normal After upgrading to buster, unbound-control would fail to run with this error.. error: Error setting up SSL_CTX client cert 139765110753216:error:140AB18F:SSL routines:SSL_CTX_use_certificate:ee key too small:../ssl/ssl_rsa.c:310: To fix this I had to regenerate the certs and keys by removing the old ones and running unbound-control-setup, then restarting unbound. This fixed the issue. $ cd /etc/unbound/ $ sudo rm *.key *.pem $ sudo unbound-control-setup $ sudo systemctl restart unbound Note that with unbound-control broken, that broke `systemctl reload unbound` as it depends on unbound-control. -- System Information: Debian Release: buster/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.19.0-4-amd64 (SMP w/4 CPU cores) Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) -- John Eikenberry [ jae@zhar.net - http://zhar.net ] ________________________________________________________________________ "Perfection is attained, not when no more can be added, but when no more can be removed." -- Antoine de Saint-Exupery
Back to linux.debian.devel.testing | Previous | Next | Find similar | Unroll thread
Bug#927435: upgrade-reports: Buster upgrade: had to re-create unbound certs/keys John Eikenberry <jae@zhar.net> - 2019-04-19 20:10 +0200
csiph-web