Please run the following:
for i in /etc/ca-certificates/update.d/*; do dpkg -S $i; echo $i;
cat $i; done
This looks like a bug in another package adding certificates from
ca-certificates into its own (Java-ish) truststore...
debian:/home/plugwash# for i in /etc/ca-certificates/update.d/*; do dpkg
-S $i;
echo $i;
> cat $i; done
ca-certificates-java: /etc/ca-certificates/update.d/jks-keystore
/etc/ca-certificates/update.d/jks-keystore
#! /bin/sh
set -e
JAVA_HOME=/usr/lib/jvm/java-6-openjdk
KEYTOOL=$JAVA_HOME/bin/keytool
KEYSTORE=/etc/ssl/certs/java/cacerts
# read lines of the form: [+-]/etc/ssl/certs/*.pem
while read line; do
pem=${line#[+-]*}
alias=$(basename $pem .crt | tr A-Z a-z | tr -cs a-z0-9 _)
alias=${alias%*_}
case "$line" in
+*)
$KEYTOOL -importcert -trustcacerts --keystore $KEYSTORE \
-storepass 'changeit' \
-alias "$alias" -file "$pem"
;;
-*)
$KEYTOOL -delete --keystore $KEYSTORE \
-storepass 'changeit' \
-alias "$alias"
;;
*)her
echo >&2 "$0: Unknown line $line"
esac
done
debian:/home/plugwash#
I wonder if this is related to the fact that I have
openjdk/ca-certificates-java but due to some other testing I was doing
my java alternatives currently point at java-gcj-compat
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
