Hello community, here is the log from the commit of package ca-certificates for openSUSE:Factory checked in at 2013-08-24 10:14:37 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/ca-certificates (Old) and /work/SRC/openSUSE:Factory/.ca-certificates.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "ca-certificates" Changes: -------- --- /work/SRC/openSUSE:Factory/ca-certificates/ca-certificates.changes 2013-07-03 10:11:38.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.ca-certificates.new/ca-certificates.changes 2013-08-24 10:14:38.000000000 +0200 @@ -1,0 +2,6 @@ +Mon Aug 5 11:24:04 UTC 2013 - [email protected] + +- don't remove symlinks to other locations in /etc/ssl/certs +- use the trust binary instead of p11-kit to extract trust + +------------------------------------------------------------------- Old: ---- ca-certificates-1_201307011044.tar.xz New: ---- ca-certificates-1_201308051322.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ ca-certificates.spec ++++++ --- /var/tmp/diff_new_pack.gFmEYm/_old 2013-08-24 10:14:39.000000000 +0200 +++ /var/tmp/diff_new_pack.gFmEYm/_new 2013-08-24 10:14:39.000000000 +0200 @@ -29,7 +29,7 @@ %define ssletcdir %{_sysconfdir}/ssl %define cabundle /var/lib/ca-certificates/ca-bundle.pem %define sslcerts %{ssletcdir}/certs -Version: 1_201307011044 +Version: 1_201308051322 Release: 0 Summary: Utilities for system wide CA certificate installation License: GPL-2.0+ ++++++ ca-certificates-1_201307011044.tar.xz -> ca-certificates-1_201308051322.tar.xz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/ca-certificates-1_201307011044/certbundle.run new/ca-certificates-1_201308051322/certbundle.run --- old/ca-certificates-1_201307011044/certbundle.run 2013-07-01 10:44:11.000000000 +0200 +++ new/ca-certificates-1_201308051322/certbundle.run 2013-08-05 13:22:58.000000000 +0200 @@ -31,7 +31,7 @@ # - gnutls: gnutls_x509_trust_list_add_system_trust() # EOF -p11-kit extract --format=pem-bundle --purpose=server-auth --filter=ca-anchors $cafile.tmp +trust extract --format=pem-bundle --purpose=server-auth --filter=ca-anchors $cafile.tmp cat $cafile.tmp >> $cafile.new rm -f $cafile.tmp mv "$cafile.new" "$cafile" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/ca-certificates-1_201307011044/etc_ssl.run new/ca-certificates-1_201308051322/etc_ssl.run --- old/ca-certificates-1_201307011044/etc_ssl.run 2013-07-01 10:44:11.000000000 +0200 +++ new/ca-certificates-1_201308051322/etc_ssl.run 2013-08-05 13:22:58.000000000 +0200 @@ -84,7 +84,7 @@ "help|h", ) or die "$!\n"; -system("p11-kit", "extract", "--purpose=server-auth", "--filter=ca-anchors", "--format=pem-directory", "-f", $pemdir) == 0 or die; +system("trust", "extract", "--purpose=server-auth", "--filter=ca-anchors", "--format=pem-directory", "-f", $pemdir) == 0 or die; for my $f (<"$pemdir/*.pem">) { addcert($f); @@ -93,7 +93,7 @@ # clean dangling symlinks for my $f (<"$etccertsdir/*.pem">) { unless (-l $f) { - print STDERR "$f is wrong here *)\n"; + print STDERR "$f is in the wrong location *)\n"; $foundignored = 1; next; } @@ -101,11 +101,12 @@ my $d = readlink($f); unless ($d && startswith($d, $pemdir)) { # don't warn about the symlinks we had in the distro before - unless (startswith($d, "/usr/share/ca-certificates/")) { - print STDERR "wrong symlink $f removed *)\n"; + if (startswith($d, "/usr/share/ca-certificates/")) { + unlink $f; + } else { + print STDERR "$f is in the wrong location *)\n"; $foundignored = 1; } - unlink $f } } else { $removed{$f} = 1; diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/ca-certificates-1_201307011044/java.run new/ca-certificates-1_201308051322/java.run --- old/ca-certificates-1_201307011044/java.run 2013-07-01 10:44:11.000000000 +0200 +++ new/ca-certificates-1_201308051322/java.run 2013-08-05 13:22:58.000000000 +0200 @@ -19,6 +19,6 @@ done [ -z "$verbose" ] || echo "creating $cafile ..." -p11-kit extract --format=java-cacerts --purpose=server-auth --filter=ca-anchors --overwrite $cafile +trust extract --format=java-cacerts --purpose=server-auth --filter=ca-anchors --overwrite $cafile # vim: syntax=sh diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/ca-certificates-1_201307011044/openssl.run new/ca-certificates-1_201308051322/openssl.run --- old/ca-certificates-1_201307011044/openssl.run 2013-07-01 10:44:11.000000000 +0200 +++ new/ca-certificates-1_201308051322/openssl.run 2013-08-05 13:22:58.000000000 +0200 @@ -14,6 +14,6 @@ done [ -z "$verbose" ] || echo "creating $cadir ..." -p11-kit extract --format=openssl-directory --filter=ca-anchors --overwrite $cadir +trust extract --format=openssl-directory --filter=ca-anchors --overwrite $cadir # vim: syntax=sh -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
