What | Removed | Added |
---|---|---|
Found By | --- | Community User |
To answer my own bug report, this is related to where ssl certificates are stored on OpenSUSE. On my tumbleweed machine I see this: zyga@undvik:/etc/ssl> ls -la razem 20 drwxr-xr-x 1 root root 72 02-25 18:17 . drwxr-xr-x 1 root root 5212 03-08 23:24 .. lrwxrwxrwx 1 root root 38 2016-06-15 ca-bundle.pem -> /var/lib/ca-certificates/ca-bundle.pem lrwxrwxrwx 1 root root 28 2016-06-15 certs -> /var/lib/ca-certificates/pem -rw-r--r-- 1 root root 10835 02-07 12:39 openssl.cnf drwx------ 1 root root 0 02-07 12:39 private At runtime the /etc directory is the real one from the host system but the rest of the filesystem is the one from the core snap. What we will then see is a symlink from /etc/ssl./certs to /var/lib/ca-certificates/pem that is just broken (the symlink). I think this calls into question two design decisions: - the sharing of /etc -- we should probably share less of /etc (perhaps none and then see what's missing) - the way SSL certificates are managed in snappy (both in classic and core installations)