I just upgraded openssl and I see the following output: >>> Installing (1 of 1) dev-libs/openssl-1.0.1c * Running 'c_rehash /etc/ssl/certs/' to rebuild hashes #333069 ... grep: QuoVadis_Root_Certification_Authority.pem: No such file or directory WARNING: QuoVadis_Root_Certification_Authority.pem does not contain a certificate or CRL: skipping grep: UTN_USERFirst_Object_Root_CA.pem: No such file or directory WARNING: UTN_USERFirst_Object_Root_CA.pem does not contain a certificate or CRL: skipping grep: class3.pem: No such file or directory WARNING: class3.pem does not contain a certificate or CRL: skipping grep: root.pem: No such file or directory WARNING: root.pem does not contain a certificate or CRL: skipping [ ok ] * Old versions of installed libraries were detected on your system. * In order to avoid breaking packages that depend on these old libs, * the libraries are not being removed. You need to run revdep-rebuild * in order to remove these old dependencies. If you do not have this * helper program, simply emerge the 'gentoolkit' package. * * # revdep-rebuild --library '/usr/lib64/libcrypto.so.0.9.8' && rm '/usr/lib64/libcrypto.so.0.9.8' * # revdep-rebuild --library '/usr/lib64/libssl.so.0.9.8' && rm '/usr/lib64/libssl.so.0.9.8' Why are the bundled certificates broken, in first place? And, what am I supposed to do with this? ;-) Shouldn't that be handled by ebuild (to not install broken certificates)? And the other messages?
this was covered extensively in a previous bug openssl doesn't install certs, the ca-certificates package does. and when that installs, it tells you how to clean things: find -L /etc/ssl/certs/ -type l -exec rm {} +