278675 – app-misc/ca-certificates-20090709: fresh install installs broken symlinks to SSL certificates

Bug 278675 - app-misc/ca-certificates-20090709: fresh install installs broken symlinks to SSL certificates

Summary: app-misc/ca-certificates-20090709: fresh install installs broken symlinks to ...

Status:	RESOLVED INVALID

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	New packages (show other bugs)
Hardware:	All Linux

Importance:	High normal
Assignee:	Gentoo's Team for Core System packages

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2009-07-22 12:39 UTC by Martin Mokrejš
Modified:	2009-07-25 23:53 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Martin Mokrejš 2009-07-22 12:39:09 UTC

I have just installed a new machine as ~amd64. I wonder why I get this after running update:



 * Messages for package app-misc/ca-certificates-20090709:

 * Broken symlink for a certificate at /etc/ssl/certs/class3.pem
 * Broken symlink for a certificate at /etc/ssl/certs/root.pem
 * Broken symlink for a certificate at /etc/ssl/certs/UTN_USERFirst_Object_Root_CA.pem
 * Broken symlink for a certificate at /etc/ssl/certs/QuoVadis_Root_Certification_Authority.pem
 * You MUST remove the above broken symlinks
 * Otherwise any SSL validation that use the directory may fail!
 * To batch-remove them, run:
 * find -L /etc/ssl/certs/ -type l -exec rm {} +

# equery belongs class3.pem
 * Searching for class3.pem ... 
#

Comment 1 Robin Johnson archtester

2009-07-25 23:53:02 UTC

You're on crack.

ca-certificates is NOT installing broken symlinks, it's detecting any that are broken and already present on your system from some time in the past. They were never owned by any package.