http://bugzilla.novell.com/show_bug.cgi?id=625384 http://bugzilla.novell.com/show_bug.cgi?id=625384#c2 Ludwig Nussel <lnussel@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO InfoProvider| |lkundrak@v3.sk --- Comment #2 from Ludwig Nussel <lnussel@novell.com> 2010-08-02 11:30:37 CEST --- (In reply to comment #0)
1.) Upon first run the certificate was untrusted:
lkundrak@linux:~> osc ls *** certificate verify failed at depth 0 Subject: /serialNumber=Z5rnYBfW36qc6oVoHaO0ceAbfvr3w6Oa/C=US/ST=Utah/L=Provo/O=Novell, Inc./CN=*.opensuse.org Issuer: /C=US/O=Equifax/OU=Equifax Secure Certificate Authority ...
This is possibly a rather serious security problem -- public certificate of the authority that signed the certificate should be trusted by default. Or, at the very least, a securie way to verify the fingerprint of the certificate should be provided (I am not aware of any).
/etc/ssl/certs/Equifax_Secure_CA.pem from package ca-certificates-mozilla is installed by default also on the live CDs. Are you sure the problem is an untrusted CA? What's the full output of osc? Did you install any packages from 3rd party repos (osc is from openSUSE:Tools I guess)?
2.) osc does not work at all, deep recursion somewhere in crypto code. I am attaching the traceback as an attachment, since given it's from infinite recursion and thus is quite long :)
No idea how that can happen. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.