[Bug 557192] New: Installing openssl upgrade breaks locally installed crt certificates
![](https://seccdn.libravatar.org/avatar/3035b38ff33cf86f480bb169b8500b80.jpg?s=120&d=mm&r=g)
http://bugzilla.novell.com/show_bug.cgi?id=557192 http://bugzilla.novell.com/show_bug.cgi?id=557192#c0 Summary: Installing openssl upgrade breaks locally installed crt certificates Classification: openSUSE Product: openSUSE 11.1 Version: Final Platform: x86-64 OS/Version: openSUSE 11.1 Status: NEW Severity: Normal Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: R.Vickers@cs.rhul.ac.uk QAContact: qa@suse.de Found By: --- Blocker: --- Created an attachment (id=328655) --> (http://bugzilla.novell.com/attachment.cgi?id=328655) fix for /usr/bin/c_rehash User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-GB; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 If there are any certificates with suffix .crt in the directory /etc/ssl/certs then their associated links get deleted every time openssl-certs is upgraded. Thus locally installed certificates are no longer recognised, causing LDAP and probably other applications to fail. The problem is caused by /usr/bin/c_rehash which deletes all links but only recreates links for *.pem files. I will attach a fix. Reproducible: Always Steps to Reproduce: 1. Install certificate with extension .crt 2. Create link for it 3. type c_rehash Actual Results: link gets deleted Expected Results: link is retained -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
![](https://seccdn.libravatar.org/avatar/3035b38ff33cf86f480bb169b8500b80.jpg?s=120&d=mm&r=g)
http://bugzilla.novell.com/show_bug.cgi?id=557192
http://bugzilla.novell.com/show_bug.cgi?id=557192#c
Thomas Biege
![](https://seccdn.libravatar.org/avatar/3035b38ff33cf86f480bb169b8500b80.jpg?s=120&d=mm&r=g)
http://bugzilla.novell.com/show_bug.cgi?id=557192
http://bugzilla.novell.com/show_bug.cgi?id=557192#c1
Thomas Biege
participants (1)
-
bugzilla_noreply@novell.com