Hi: Something must hard require ca-certificates for the package manager to be functional by default, It is libcrypto that ends *using* the package, but any application that calls SSL_CTX_set_default_verify_paths will need it. before just sticking a "Requires: ca-certificates" to the libopenssl package I want to know if this is intentional to force calling applications to require the package in question or is simply an oversight. reprodduce with zypper --root=/var/lib/machines/tumbleweed ar -c https://download.opensuse.org/tumbleweed/repo/oss tumbleweed zypper --root=/var/lib/machines/tumbleweed refresh zypper --root=/var/lib/machines/tumbleweed install --no-recommends systemd shadow zypper openSUSE-release vim systemd-nspawn -M tumbleweed passwd root systemd-nspawn -M tumbleweed -b zypper ref Download (curl) error for 'https://download.opensuse.org/tumbleweed/repo/oss/repodata/repomd.xml': Error code: Curl error 60 Error message: SSL certificate problem: unable to get local issuer certificate Abort, retry, ignore? [a/r/i/...? shows all options] (a) Cheers. -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org