ca-certificates

To: packages@qa.debian.org
Subject: ca-certificates
From: Emilio Lazo Zaia <emiliolazozaia@gmail.com>
Date: Wed, 26 Oct 2011 10:45:13 -0430
Message-id: <[🔎] 4EA82401.5050801@gmail.com>

Hello

I did post a message into bug report number 537382 which was opened onJuly 2009. I'm writing directly Debian QA Group because a new version ofca-certificates was issued and the script which needs to be modifiedremains the same as previous version, i.e. the bug persists.

Those report consists on the script which generates /etc/ssl/certssymbolic links structure (update-ca-certificates).

As you know, /etc/ssl/certs/ca-certificates.crt is a bundle of allcertificates in one single file; this file must be skipped searching forhashes of all certificates when "*.0" symlinks are created. Using thescript in its current state, first certificate appended intoca-certificates.crt will match as the hash of ca-certificates.crt andsymbolic link will be created from the hash of that file(brasil.gov.br.pem because is alphabetically the first) toca-certificates.crt leaving brasil.gov.br.pem without a symlink with itshash.


I did supply a patch that may be used after some test by Debian.

Thanks!
Best regards!

Reply to:

Prev by Date: Processed: Re: Bug#646555: [Pkg-geany-team] Bug#646555: geany-plugin-spellcheck: Spellcheck missing dependency
Next by Date: Bug#537382: marked as done (WARNING: Skipping duplicate certificate)
Previous by thread: Bug#646555: enchant: Spellcheck missing dependency
Next by thread: Bug#537382: marked as done (WARNING: Skipping duplicate certificate)
Index(es):
- Date
- Thread