konqueror/crypto manager lose trusted certificates
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
KDE Base |
Unknown
|
Unknown
|
|||
kdebase-runtime (Ubuntu) |
New
|
Undecided
|
Unassigned | ||
Bug Description
Binary package hint: kdebase-runtime
Note this is a showstopper bug for Intrepid Ibex
kdebase-runtime 4:4.1.2-0ubuntu6.
I cannot import root certificates with the Crypto manager if I choose "SSL signers" . No matter if I use Konqueror or "kcmshell4 crypto", the crypto manager displays just common name, but no details when I click on the certificate besides the MD5 sum. The Crypt Manager doesn't save the certificate.
Consequence: Konqueror cannot connect to HTTPS:/
Here's the cert in question, it works perfectly with openssl and gnutls-cli:
$ cat /etc/ssl/
-----BEGIN CERTIFICATE-----
MIIDnzCCAoegAwI
MBoGA1UEChMTRGV
IFRydXN0IENlbnR
IDIwHhcNOTkwNzA
RTEcMBoGA1UEChM
U2VjIFRydXN0IEN
IENBIDIwggEiMA0
ha88EOQ5bzVdSq7
QN/Po7qCWWqSG6w
rFDa1sPeg5TKqAy
NNs671x1Udrb8zH
QqvF1afPaA+
txa2bkp/
BgNVHRMECDAGAQH
AQEAlGRZrTlk5yn
tJh6sTtU6zkXR34
IzpXl/V6ME+
6iFhkOQxIY40sfc
xbrYNuSD7Odlt79
Cm26OWMohpLzGIT
-----END CERTIFICATE-----
And here's the text dump (shortened a bit)
$ openssl x509 -text -noout -in /etc/ssl/
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38 (0x26)
Signature Algorithm: sha1WithRSAEncr
Issuer: C=DE, O=Deutsche Telekom AG, OU=T-TeleSec Trust Center, CN=Deutsche Telekom Root CA 2
Validity
Not Before: Jul 9 12:11:00 1999 GMT
Not After : Jul 9 23:59:00 2019 GMT
Subject: C=DE, O=Deutsche Telekom AG, OU=T-TeleSec Trust Center, CN=Deutsche Telekom Root CA 2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public Key: (2048 bit)
...
X509v3 extensions:
X509v3 Subject Key Identifier:
X509v3 Basic Constraints:
X509v3 Key Usage: critical
Signature Algorithm: sha1WithRSAEncr
...
Changed in kdebase: | |
status: | Unknown → Confirmed |
Changed in kdebase: | |
status: | Confirmed → Unknown |
This may be related to https:/ /bugs.kde. org/show_ bug.cgi? id=162485 but is a showstopper for Kubuntu 8.10 nonetheless. 9 days left to fix ;-)