ubuntu focal on arm/v7 has broken ca-certificates
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
cloud-images |
New
|
Undecided
|
Unassigned |
Bug Description
I am trying to use the most recent ubuntu:20.04 build for armhf from Dockerhub:
which I believe corresponds to
Now, using this minimal Dockerfile:
```
FROM ubuntu:20.04
RUN apt-get update && apt-get -y install ca-certificates wget
RUN wget -O - https:/
```
and building this using
```
docker buildx build --platform linux/arm/v7 -f Dockerfile -t test-tls .
```
I always end up with a TLS certificate failure like so:
```
#0 building with "xenodochial_nobel" instance using docker-container driver
#1 [internal] load build definition from Dockerfile
#1 transferring dockerfile: 243B done
#1 DONE 0.0s
#2 [internal] load metadata for docker.
#2 ...
#3 [auth] library/ubuntu:pull token for registry-
#3 DONE 0.0s
#2 [internal] load metadata for docker.
#2 DONE 1.0s
#4 [internal] load .dockerignore
#4 transferring context: 172B done
#4 DONE 0.0s
#5 [1/4] FROM docker.
#5 resolve docker.
#5 DONE 0.0s
#6 [2/4] RUN apt-get update && apt-get -y install ca-certificates wget
#6 CACHED
#7 [3/4] RUN wget -O - https:/
#7 0.208 --2024-06-18 10:43:13-- https:/
#7 0.253 Resolving helloworld.
#7 0.323 Connecting to helloworld.
#7 0.937 ERROR: cannot verify helloworld.
#7 0.937 Unable to locally verify the issuer's authority.
#7 0.939 To connect to helloworld.
#7 ERROR: process "/dev/.
```
This also affects many other certificates issued via Let's Encrypt, including things like apt.kitware.org, and so far I did not find a workaround (like forcing update-
Note that this does _not_ happen on any of the other supported target architectures / platforms, or Ubuntu versions.
thank you for reporting. definitely odd as ca-certificates unpacks to the same directory for all platforms, and should have the same content on all platforms (it's _just_ certificates, nothing platform specific there). we'll have to do a little investigation and let you know what we find.