View Issue Details
|ID||Project||Category||View Status||Date Submitted||Last Update|
|0017424||CentOS-8||openssl||public||2020-06-01 15:05||2020-06-01 15:05|
|Target Version||Fixed in Version|
|Summary||0017424: Incomplete handling of `/etc/ssl` causes statically linked binaries using OpenSSL which were built on other systems to fail.|
|Description||As in the summary.|
When a statically linked binary including OpenSSL which was built on a system that uses the 'normal' `/etc/ssl` directory instead of `/etc/pki/tls` is run on CentOS 8, any TLS related functionality doesn't work because the binary can't find `/etc/ssl/openssl.cnf`.
Just creating a symlink in `/etc/ssl` pointing to `/etc/pki/tls/openssl.cnf` does not seem to completely fix this though, with an actual fix requiring changing the `/etc/ssl` directory to be a symlink to `/etc/pki/tls`.
See https://github.com/netdata/netdata/issues/8966 for an example of the actual issue, along with a functional reproducer.
|Tags||No tags attached.|