http://bugzilla.opensuse.org/show_bug.cgi?id=1028568
http://bugzilla.opensuse.org/show_bug.cgi?id=1028568#c1
Zygmunt Krynicki changed:
What |Removed |Added
----------------------------------------------------------------------------
Found By|--- |Community User
--- Comment #1 from Zygmunt Krynicki ---
To answer my own bug report, this is related to where ssl certificates are
stored on OpenSUSE. On my tumbleweed machine I see this:
zyga@undvik:/etc/ssl> ls -la
razem 20
drwxr-xr-x 1 root root 72 02-25 18:17 .
drwxr-xr-x 1 root root 5212 03-08 23:24 ..
lrwxrwxrwx 1 root root 38 2016-06-15 ca-bundle.pem ->
/var/lib/ca-certificates/ca-bundle.pem
lrwxrwxrwx 1 root root 28 2016-06-15 certs -> /var/lib/ca-certificates/pem
-rw-r--r-- 1 root root 10835 02-07 12:39 openssl.cnf
drwx------ 1 root root 0 02-07 12:39 private
At runtime the /etc directory is the real one from the host system but the rest
of the filesystem is the one from the core snap. What we will then see is a
symlink from /etc/ssl./certs to /var/lib/ca-certificates/pem that is just
broken (the symlink).
I think this calls into question two design decisions:
- the sharing of /etc -- we should probably share less of /etc (perhaps none
and then see what's missing)
- the way SSL certificates are managed in snappy (both in classic and core
installations)
--
You are receiving this mail because:
You are on the CC list for the bug.