The insecure_certs USE flag in the ca-certificates package was used to control whether to install the startcom/wosign certificates in the phase of browser distrust. If it's unset the ebuild tries to delete the startcom/wosign-certs. However this is now obsolete. The upstream package doesn't contain those certs any more, so the flag doesn't have any effect. We can cleanup and remove it. Also I noted the use flag description for "cacert" still mentions the SPI certificate, which got removed already a while ago. Given the almost complete irrelevance of CAcert.org these days one may also consider just removing the cacert-flag altogether.
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d918cce6210806d599ca19d622cf020cec633afc commit d918cce6210806d599ca19d622cf020cec633afc Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2018-04-18 08:26:10 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2018-04-18 08:27:14 +0000 app-misc/ca-certificates: Dropped "insecure_certs" USE flag. This also removes the now empty elog message about "removed certs". Closes: https://bugs.gentoo.org/653456 Closes: https://bugs.gentoo.org/653458 Package-Manager: Portage-2.3.30, Repoman-2.3.9 .../ca-certificates-20180409.3.36.1-r1.ebuild | 16 ++-------------- 1 file changed, 2 insertions(+), 14 deletions(-)
