Opened 6 years ago
Last modified 6 years ago
#56404 closed defect
Inconsistent ca-bundle options among net/curl variants — at Initial Version
Reported by: | eabalea | Owned by: | |
---|---|---|---|
Priority: | Normal | Milestone: | |
Component: | ports | Version: | |
Keywords: | Cc: | ||
Port: | curl |
Description
Package net/curl
The default variant (ssl) benefits from the Macports curl-ca-bundle while wolfssl and gnutls variants don't and rely on the system ca-bundle detected by the curl configure script (/etc/ssl/cert.pem).
The darwinssl variant gets the system ca-bundle enabled, and thus the root CA MUST be present in that file (instead of being verified against the Keychain settings). This default ca-bundle can't be disabled from command line.
On darwinssl variant, add configure.args-append --without-ca-bundle to the PortFile.
On wolfssl and gnutls variants, add configure.args-append --with-ca-bundle=${prefix}/share/curl/curl-ca-bundle.crt to the PortFile.
Note: See
TracTickets for help on using
tickets.