Bug#577084: marked as done (broken symlinks left behind after removing a local certificate)

Wed, 23 Oct 2013 13:13:15 -0700 

Your message dated Wed, 23 Oct 2013 15:08:34 -0500
with message-id <52682cc2.4030...@nsuok.edu>
and subject line Re: broken symlinks left behind after removing a local 
certificate
has caused the Debian Bug report #577084,
regarding broken symlinks left behind after removing a local certificate
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
577084: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=577084
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message --- 
Package: ca-certificates
Version: 20090814
Severity: normal

Adding certificates to the local certificate directory
/usr/local/share/ca-certificates and running update-ca-certificates
works correctly, i.e. adds symlinks to /etc/ssl/certs and adds the
certs to the bundle file /etc/ssl/certs/ca-certificates.crt.

But after removing files from /usr/local/share/ca-certificates and
running update-ca-certificates again, the broken symlinks are left in
/etc/ssl/certs. The bundle is updated correctly.

Invoking update-ca-certificates --fresh works, but does too much,
especially if there are time-consuming scripts in
/etc/ca-certificates/update.d/. For example, the script installed by
ca-certificates-java runs a very long time when processing all the 141
certificates included in the ca-certificates package.

--- End Message ---
--- Begin Message --- 
Control: fixed -1 20130906

Hi Petri,

I'm closing this bug report, since 'update-ca-certificates --fresh'
really is the method to remove any errant symlinks and rebuild them all
from the installed certs.  The README.Debian file was updated in the
last upload to include a note about this, and I had intended to close
this bug via that changelog.  In addition, when a local certificate is
removed, even if there is a broken symlink, the ssl connection should
fail due to the cert being missing.

-- 
Kind regards,
Michael

--- End Message ---

Reply via email to