Alpine Java cacerts gets corrupted on upgrading apk-tools
Bug description:
On running
apk update && apk upgrade
in alpine image of docker.
/etc/ssl/certs/java/cacerts
gets corrupted.
resulting in the Trust store error
java.lang.RuntimeException: Unexpected error:
java.security.InvalidAlgorithmParameterException: the trustAnchors
parameter must be non-empty)
Actual command:
RUN echo http://dl-cdn.alpinelinux.org/alpine/edge/testing >> /etc/apk/repositories \
&& echo http://nl.alpinelinux.org/alpine/edge/community >> /etc/apk/repositories \
&& echo http://nl.alpinelinux.org/alpine/edge/main >> /etc/apk/repositories \
&& apk update && apk upgrade
Further debugging led to this package update being the source of cacerts being corrupted.
/app # apk add --upgrade apk-tools
(1/3) Upgrading apk-tools (2.10.0-r0 -> 2.10.4-r3)
(2/3) Purging libressl2.7-libssl (2.7.4-r0)
(3/3) Purging libressl2.7-libcrypto (2.7.4-r0)
Executing busybox-1.31.1-r9.trigger
Executing ca-certificates-20191127-r0.trigger
Impact: No ssl calls can be made from java environment