Opened 6 years ago
Last modified 6 years ago
#56404 closed defect
Inconsistent ca-bundle options among net/curl variants — at Version 2
| Reported by: | eabalea | Owned by: | ryandesign (Ryan Carsten Schmidt) |
|---|---|---|---|
| Priority: | Normal | Milestone: | |
| Component: | ports | Version: | |
| Keywords: | Cc: | ||
| Port: | curl |
Description (last modified by mf2k (Frank Schima))
Package net/curl
The default variant (ssl) benefits from the Macports curl-ca-bundle while wolfssl and gnutls variants don't and rely on the system ca-bundle detected by the curl configure script (/etc/ssl/cert.pem).
The darwinssl variant gets the system ca-bundle enabled, and thus the root CA MUST be present in that file (instead of being verified against the Keychain settings). This default ca-bundle can't be disabled from command line.
On darwinssl variant, add
configure.args-append --without-ca-bundle
to the PortFile.
On wolfssl and gnutls variants, add
configure.args-append --with-ca-bundle=${prefix}/share/curl/curl-ca-bundle.crt
to the PortFile.
Change History (2)
comment:1 Changed 6 years ago by mf2k (Frank Schima)
| Keywords: | curl ca-bundle darwinssl removed |
|---|---|
| Owner: | set to ryandesign |
| Status: | new → assigned |
comment:2 Changed 6 years ago by mf2k (Frank Schima)
| Description: | modified (diff) |
|---|
Note: See
TracTickets for help on using
tickets.
In the future, please use WikiFormatting and Cc the port maintainer(s) (
port info --maintainers curl), if any.