Bug 1414561 - Adjust ca-certificates to allow p11-kit-trust to distinguish between Mozilla-Policy-CAs and others [RHEL 7.x]
Summary: Adjust ca-certificates to allow p11-kit-trust to distinguish between Mozilla-...
Alias: None
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: ca-certificates
Version: 7.3
Hardware: Unspecified
OS: Unspecified
Target Milestone: rc
: ---
Assignee: Kai Engert (:kaie) (inactive account)
QA Contact: Stefan Dordevic
Depends On: 1378947
Blocks: 1414564
TreeView+ depends on / blocked
Reported: 2017-01-18 20:29 UTC by Kai Engert (:kaie) (inactive account)
Modified: 2017-08-01 21:05 UTC (History)
3 users (show)

Fixed In Version: ca-certificates-2017.2.11-72.el7
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Last Closed: 2017-08-01 21:05:27 UTC
Target Upstream Version:

Attachments (Terms of Use)

System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2017:2073 0 normal SHIPPED_LIVE ca-certificates bug fix update 2017-08-01 18:36:39 UTC

Description Kai Engert (:kaie) (inactive account) 2017-01-18 20:29:58 UTC
Once bug 1414554 is fixed, we must update ca-certificates to make use of the new feature, by packaging the Mozilla-CAs in the correct way.

Also, we should improve the documentation of the ca-certificates package, to ensure that admins who install additional CAs, don't accidentally/unknowingly flag CAs as being from Mozilla.

Comment 11 errata-xmlrpc 2017-08-01 21:05:27 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.


Note You need to log in before you can comment on or make changes to this bug.