Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#15620 - [curl] Add SSL support
Attached to Project:
Arch Linux
Opened by Igor Galić (jMCg) - Tuesday, 21 July 2009, 12:28 GMT
Last edited by Eric Belanger (Snowman) - Tuesday, 13 October 2009, 19:03 GMT
Opened by Igor Galić (jMCg) - Tuesday, 21 July 2009, 12:28 GMT
Last edited by Eric Belanger (Snowman) - Tuesday, 13 October 2009, 19:03 GMT
|
DetailsDescription:
curl can use make use SSL connections, by default however it doesn't know where to check them against. ca-certificates is provided by ''core'', so I think it should be used everywhere. A simple /etc/curlrc would fix this issue: capath = /etc/ssl/certs |
This task depends upon
Closed by Eric Belanger (Snowman)
Tuesday, 13 October 2009, 19:03 GMT
Reason for closing: Implemented
Additional comments about closing: curl 7.19.6-2
Tuesday, 13 October 2009, 19:03 GMT
Reason for closing: Implemented
Additional comments about closing: curl 7.19.6-2
Are there cases where that doesn't work? Can you give specific websites? I could replace it with --capath=/etc/ssl/certs
According the docs, curl doesn't check /etc for the config file. It checks the users home directory (~/.curlrc). Did you tested your /etc/curlrc config file suggestion?
./configure \
--with-random=/dev/urandom \
--prefix=/usr \
--mandir=/usr/share/man \
--disable-dependency-tracking \
--enable-ipv6 \
--disable-ldaps \
--disable-ldap \
--enable-manual \
--enable-versioned-symbols \
--with-ca-path=/etc/ssl/certs \
--without-libidn || return 1
--with-ca-bundle=/etc/ssl/certs/ca-certificates.crt
by:
--with-ca-path=/etc/ssl/certs
that should fix the SSL support. About the other options, I'm not sure how useful they are. They might be the defaults. I'll need to check. Any important ones?