 Relationships |
|
| Anonymous | Login | 2026-04-07 10:57 CEST |
| Main | My View | View Issues |
| Viewing Issue Simple Details [ Jump to Notes ] | [ View Advanced ] [ Issue History ] [ Print ] | ||||||
| ID | Category | Severity | Reproducibility | Date Submitted | Last Update | ||
| 0005193 | [openssl_utils] packaging | major | always | 2014-07-30 10:17 | 2014-08-09 12:08 | ||
| Reporter | laurent | View Status | public | ||||
| Assigned To | yann | ||||||
| Priority | normal | Resolution | fixed | ||||
| Status | closed | ||||||
| Summary | 0005193: OpenSSL does not look for the certificates in the right place | ||||||
| Description |
I'm not 100% sure this is only an OpenSSL issue, but I think it's the right place to start: Symptom is that OpenCSW wget refuses to connect via https because the certificate cannot be verified: $ type wget wget is hashed (/opt/csw/bin/wget) $ wget https://github.com/oetiker/znapzend/releases/download/v0.8.3/znapzend-0.8.3.tar.gz [^] --2014-07-30 10:06:42-- https://github.com/oetiker/znapzend/releases/download/v0.8.3/znapzend-0.8.3.tar.gz [^] Resolving github.com (github.com)... 192.30.252.131 Connecting to github.com (github.com)|192.30.252.131|:443... connected. ERROR: cannot verify github.com's certificate, issued by '/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert SHA2 Extended Validation Server CA': Unable to locally verify the issuer's authority. To connect to github.com insecurely, use `--no-check-certificate'. truss shows it's failing to find it, and is looking in a non-existent directory: 27097: xstat(2, "/opt/csw/ssl/certs/244b5494.0", 0x08046AB0) Err#2 ENOENT Just adding a symlink to the right directory is enough to make it work: # ln -s /etc/opt/csw/ssl/certs /opt/csw/ssl/ So I guess either the symlink should be packaged, or OpenSSL should be built to look into /etc/opt/csw/ssl/certs by default. My preference goes to the latter. |
||||||
| Additional Information | |||||||
| Tags | No tags attached. | ||||||
| Attached Files | |||||||
|
|
|||||||
|
Relationships |
|
|
Notes |
|
|
(0010880) yann (developer) 2014-07-30 22:19 |
Ah the symlink is still provided by the obsolete libssl0.9.8 package. I will have a look how to fix this. |
|
(0010886) yann (developer) 2014-08-09 00:39 |
This should be fixed in last upload (1.0.1i). Can you test it to confirm that it is ok ? Yann |
|
(0010887) laurent (developer) 2014-08-09 11:58 |
Yep, works for me, good! Thanks! |
|
(0010888) yann (developer) 2014-08-09 12:08 |
I am confident so I am closing it right away |
| Copyright © 2000 - 2008 Mantis Group |  |
