tech-pkg archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: CA bundle for cadaver/neon

On Thu, Oct 20, 2022 at 02:51:30PM +0100, Jonathan Perkin wrote:
> SSLCERTBUNDLE is certainly incorrect if using the bundle from pkgsrc, as
> that is definitely named ca-certificates.crt not ca-bundle.crt.
> At this point only www/curl uses that variable though

Then we could change SSLCERTBUNDLE in pkgsrc/security/openssl/
to ${SSLCERTS}/ca-certificates.crt and do this in pkgsrc/www/curl/Makefile

CONFIGURE_ARGS+=        --with-ca-bundle=${CURL_SSLCERTBUNDLE}
.elif !empty(SSLCERTBUNDLE)
CONFIGURE_ARGS+=        --with-ca-bundle=${SSLCERTBUNDLE}
CONFIGURE_ARGS+=        --with-ca-path=${SSLCERTS}

That way we would avoid further mistakes and avoid breaking curl.

Emmanuel Dreyfus

Home | Main Index | Thread Index | Old Index