When working on bug 8176, an issue emerged where there is a circular dependency between the packages for ca-certificates and OpenSSL in cenbuild:
1. ca-certificates has a build requirement on OpenSSL.
2. OpenSSL has an installation requirement on ca-certificates.
This means that building ca-certificates, requires us to install OpenSSL, which in turn requires ca-certificates to be installed.
We have currently worked around this by moving the installation requirement for ca-certificates from our OpenSSL package to the two packages, serverdeps and clientdeps, which essentially means that ca-certs will be present in almost all cases where OpenSSL is installed.
Ideally, our build environment should be in a state where all packages can directly depend on their requirements, which means that we should try to resolve this issue and remove the workaround.