From Bugzilla Helper: User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.5) Gecko/20041107 Firefox/1.0 Description of problem: Wells Fargo would like to have the Wells Fargo Root Certificate Authority certificate added to the ca-bundle.crt file included with the openssl RPM on RedHat and Fedora distributions. The actual certificate will be communicated via a digitally signed email upon request. Version-Release number of selected component (if applicable): How reproducible: Always Steps to Reproduce: 1. Install the openssl RPM 2. Notice that the Wells Fargo Root Certificate Authority cert is not in the ca-bundle.crt. Additional info:
Internal RFE bug #144935 entered; will be considered for future releases.
The policy for managing the OpenSSL "ca-bundle.crt" is to keep it in synch with the Mozilla root CA list. Once the certificate has been approved for inclusion in the Mozilla list, it will automatically be pulled into the openssl package for a future release. Requests for inclusion in the Mozilla CA root list can be filed here: https://bugzilla.mozilla.org/enter_bug.cgi?product=mozilla.org&component=CA%20Certificates
See comment #2. This problem will be resolved in a future major release of Red Hat Enterprise Linux. Red Hat does not currently plan to provide a resolution for this in a Red Hat Enterprise Linux update for currently deployed systems. With the goal of minimizing risk of change for deployed systems, and in response to customer and partner requirements, Red Hat takes a conservative approach when evaluating changes for inclusion in maintenance updates for currently deployed products. The primary objectives of update releases are to enable new hardware platform support and to resolve critical defects.