dev-ruby/httpclient-2.8.3 bundles certificates and gets the LetsEncrypt stuff wrong. https://github.com/nahi/httpclient/issues/445 Maybe Gentoo should symlink the system certs into httpclient, or patch httpclient to use the system location directly? /usr/lib64/ruby/gems/2.6.0/gems/httpclient-2.8.3/lib/httpclient/cacert1024.pem /usr/lib64/ruby/gems/2.6.0/gems/httpclient-2.8.3/lib/httpclient/cacert.pem
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=95813829db1b5ed24e91076a36f43d9c34392c7d commit 95813829db1b5ed24e91076a36f43d9c34392c7d Author: Robin H. Johnson <robbat2@gentoo.org> AuthorDate: 2021-10-14 19:59:15 +0000 Commit: Robin H. Johnson <robbat2@gentoo.org> CommitDate: 2021-10-14 20:07:45 +0000 dev-ruby/httpclient: revbump w/ to use system certificates httpclient bundled really old CA certificates: 6-year & 11-year old, and used them by default, which broke LetsEncrypt consumers. Replace the bundles with symlink to the system copy, which is kept up to date. Closes: https://bugs.gentoo.org/818025 Signed-off-by: Robin H. Johnson <robbat2@gentoo.org> dev-ruby/httpclient/httpclient-2.8.3-r1.ebuild | 78 ++++++++++++++++++++++++++ 1 file changed, 78 insertions(+)