View Issue Details

IDProjectCategoryView StatusLast Update
0017424CentOS-8opensslpublic2020-06-01 15:05
Reporterahferroin7 
PrioritynormalSeverityminorReproducibilityalways
Status newResolutionopen 
Product Version8.1.1911 
Target VersionFixed in Version 
Summary0017424: Incomplete handling of `/etc/ssl` causes statically linked binaries using OpenSSL which were built on other systems to fail.
DescriptionAs in the summary.

When a statically linked binary including OpenSSL which was built on a system that uses the 'normal' `/etc/ssl` directory instead of `/etc/pki/tls` is run on CentOS 8, any TLS related functionality doesn't work because the binary can't find `/etc/ssl/openssl.cnf`.

Just creating a symlink in `/etc/ssl` pointing to `/etc/pki/tls/openssl.cnf` does not seem to completely fix this though, with an actual fix requiring changing the `/etc/ssl` directory to be a symlink to `/etc/pki/tls`.

See https://github.com/netdata/netdata/issues/8966 for an example of the actual issue, along with a functional reproducer.
TagsNo tags attached.

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2020-06-01 15:05 ahferroin7 New Issue