It is installed on two Leap systems here and I see explicit zypper invocation in /var/log/zypp/history. But to my best knowledge this package is not installed automatically either on Leap or on Tumbleweed. It gets CA from the well known locations like /usr/share/pki or /etc/pki. One alternative implementation is provided by p11-kit, specifically p11-kit-nss-trust package. It is possible to replace this library with alternative implementation or explicitly add additional compatible library as “Security Device” in Firefox settings. Default implementation that is part of Mozilla is provided by mozilla-nss-certs subpackage and simply contains static built-in list of approved CA. The CA certificates used by Mozilla come from libnssckbi.so library. But if that doesn’t work with Tumbleweed, I would consider it a bug worth reporting. That’s working fine for me with Leap 15.5.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |