Breaks certs with DOS-style line endings
Bug #855454 reported by
Loïc Minier
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ubuntu One storage protocol |
Fix Released
|
High
|
Loïc Minier | ||
ca-certificates (Ubuntu) |
Fix Released
|
Undecided
|
Loïc Minier | ||
openssl (Debian) |
Fix Released
|
Unknown
|
|||
openssl (Ubuntu) |
Fix Released
|
Undecided
|
Loïc Minier | ||
ubuntuone-storage-protocol (Ubuntu) |
Fix Released
|
High
|
Natalia Bidart |
Bug Description
Update of openssl from 1.0.0d-2ubuntu2 to 1.0.0e-2ubuntu1 broke the c_rehash parsing of certificates with DOS-style line endings.
This was only uncovered by a recent ca-certificates update which triggered a rebuild of /etc/ssl/certs.
Related branches
lp:~lool/ubuntuone-storage-protocol/unix-line-endings-for-certs
- dobey (community): Approve
-
Diff: 62 lines (+29/-29)1 file modifieddata/UbuntuOne-Go_Daddy_CA.pem (+29/-29)
summary: |
- Breaks some roots + Breaks certs with DOS-style line endings |
description: | updated |
description: | updated |
Changed in openssl (Debian): | |
status: | Unknown → New |
Changed in ubuntuone-storage-protocol: | |
status: | In Progress → Fix Committed |
Changed in ubuntuone-storage-protocol: | |
milestone: | none → 2.0.0 |
importance: | Undecided → High |
Changed in ubuntuone-storage-protocol (Ubuntu): | |
status: | New → Triaged |
assignee: | nobody → Natalia Bidart (nataliabidart) |
milestone: | none → ubuntu-11.10 |
importance: | Undecided → High |
Changed in ubuntuone-storage-protocol: | |
status: | Fix Committed → Fix Released |
Changed in openssl (Ubuntu): | |
assignee: | nobody → Loïc Minier (lool) |
status: | New → Fix Committed |
Changed in ca-certificates (Ubuntu): | |
assignee: | nobody → Loïc Minier (lool) |
status: | New → In Progress |
Changed in ca-certificates (Ubuntu): | |
status: | In Progress → Fix Committed |
Changed in openssl (Debian): | |
status: | New → Fix Released |
To post a comment you must log in.
before: certificates. godaddy. com/repository, CN = Go Daddy Secure Certification Authority, serialNumber = 01234567 q.d.n/OU= Domain Control Validated/ CN=f.q. d.n US/ST=Arizona/ L=Scottsdale/ O=GoDaddy. com, Inc./OU=http:// certificates. godaddy. com/repository/ CN=Go Daddy Secure Certification Authority/ serialNumber= 07969287
depth=2 C = US, O = "The Go Daddy Group, Inc.", OU = Go Daddy Class 2 Certification Authority
verify return:1
depth=1 C = US, ST = Arizona, L = Scottsdale, O = "GoDaddy.com, Inc.", OU = http://
verify return:1
depth=0 O = f.q.d.n, OU = Domain Control Validated, CN = f.q.d.n
verify return:1
---
Certificate chain
0 s:/O=f.
i:/C=
after: 27:certificate not trusted
depth=0 O = f.q.d.n, OU = Domain Control Validated, CN = f.q.d.n
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 O = f.q.d.n, OU = Domain Control Validated, CN = f.q.d.n
verify error:num=
verify return:1
depth=0 O = f.q.d.n, OU = Domain Control Validated, CN = f.q.d.n
verify error:num=21:unable to verify the first certificate
verify return:1