On Wed, 2019-04-03 at 11:23 +0100, Daniel P. Berrangé wrote:
On Red Hat variant distros ca-certificates gets pulled in automatically by other packages we require. This doesn't happen on Debian and so any use of https URIs fails. This prevents git from cloning submodules over https.
All the Debian and Ubuntu guests that I have created with lcitool have the package installed, but I see it's not present in (for example) the Debian 9 container, possibly as a consequence of using --no-install-recommends. Either way, we do want the package to be there and there's no harm in installing it explicitly. [...]
+ ca-certificates: + default: ca-certificates + FreeBSD:
FreeBSD uses a different name for the package (ca_root_nss), but other than that it should still be the very same contents. With the FreeBSD package added, Reviewed-by: Andrea Bolognani <abologna@redhat.com> -- Andrea Bolognani / Red Hat / Virtualization