• d-bugmail puremagic.com (27/27) Mar 30 2022 https://issues.dlang.org/show_bug.cgi?id=22962

d-bugmail puremagic.com writes:

https://issues.dlang.org/show_bug.cgi?id=22962

          Issue ID: 22962
           Summary: issues.dlang.org: SSL peer certificate or SSH remote
                    key was not OK on handle
           Product: D
           Version: D2
          Hardware: All
                OS: All
            Status: NEW
          Severity: major
          Priority: P1
         Component: dlang.org
          Assignee: nobody puremagic.com
          Reporter: ibuclaw gdcproject.org

---
import std.net.curl;
void main() { "https://issues.dlang.org".get; }
// std.net.curl.CurlException std/net/curl.d(4402): SSL peer certificate or SSH
remote key was not OK on handle 56397DB61CE0
---

Exception is thrown when running on Ubuntu 21.10, but not when on 20.04.  As
the same version of ca-certificates is installed on both set-ups, that might
mean the issue arises due to a change between openssl 1.1.1f and 1.1.1l.

The only problematic thing I can see at a glance is that this site's certs
aren't correctly installed.  SSLlabs reports:

- Chain issues: Incorrect order, Extra certs.

--