Anonymous | Login | 2024-05-08 07:59 CEST |
Main | My View | View Issues |
Viewing Issue Simple Details [ Jump to Notes ] | [ View Advanced ] [ Issue History ] [ Print ] | ||||||
ID | Category | Severity | Reproducibility | Date Submitted | Last Update | ||
0004942 | [wget] regular use | minor | have not tried | 2012-05-12 12:17 | 2012-07-05 09:15 | ||
Reporter | yann | View Status | public | ||||
Assigned To | dam | ||||||
Priority | normal | Resolution | fixed | ||||
Status | closed | ||||||
Summary | 0004942: By default, wget should use /etc/opt/csw/ssl/certs as the CA directory | ||||||
Description |
Currently, wget will use /etc/ssl/certs as the CA directory is no option is given on the command line or in wgetrc. However CA certificates shipped with OpenCSW in the ca_certificates package are located in /etc/opt/csw/ssl/certs, so it would be better if wget could use that location by default. |
||||||
Additional Information | |||||||
Tags | No tags attached. | ||||||
Attached Files | 0001-The-default-CA-directory-should-be-OpenCSW-compliant.patch [^] (806 bytes) 2012-05-12 12:18 | ||||||
|
Notes | |
(0009856) yann (developer) 2012-05-12 12:18 |
Exemple of problem: # wget "https://security.appspot.com/downloads/vsftpd-3.0.0.tar.gz" [^] --2012-05-12 13:16:49-- https://security.appspot.com/downloads/vsftpd-3.0.0.tar.gz [^] Resolving security.appspot.com (security.appspot.com)... 173.194.78.141, 2a00:1450:8005::8d Connecting to security.appspot.com (security.appspot.com)|173.194.78.141|:443... connected. ERROR: The certificate of `security.appspot.com' is not trusted. ERROR: The certificate of `security.appspot.com' hasn't got a known issuer. # wget --ca-directory /etc/opt/csw/ssl/certs/ "https://security.appspot.com/downloads/vsftpd-3.0.0.tar.gz" [^] --2012-05-12 13:17:37-- https://security.appspot.com/downloads/vsftpd-3.0.0.tar.gz [^] Resolving security.appspot.com (security.appspot.com)... 173.194.78.141, 2a00:1450:8005::8d Connecting to security.appspot.com (security.appspot.com)|173.194.78.141|:443... connected. HTTP request sent, awaiting response... 200 OK Length: 193166 (189K) [application/x-tar] Saving to: `vsftpd-3.0.0.tar.gz' 100%[==============================================================================================================================>] 193,166 317K/s in 0.6s 2012-05-12 13:17:39 (317 KB/s) - `vsftpd-3.0.0.tar.gz' saved [193166/193166] |
(0009857) yann (developer) 2012-05-12 12:19 |
I attached a simple patch to fix the issue https://www.opencsw.org/mantis/file_download.php?file_id=46&type=bug [^] |
(0009858) dam (administrator) 2012-05-13 19:33 |
Hi Yann, I made new packages at http://buildfarm.opencsw.org/experimental.html#wget [^] with your patch applied. However, I used reinplacements in the recipe as it is more flexible and the patch is not that complicated. Also I would like to switch back from GnuTLS to OpenSSL for wget, but I am on limited connectivity right now, so probably next week. |
(0009859) yann (developer) 2012-05-14 00:40 |
Hi Dam, I tested the new package and it works perfectly. I didn't about REINPLACEMENTS, I may find useful in my packages too. In this case, it might be even better to make the capath a configure option and to propose the patch upstream. Concerning the switch back to openssl, you might want to wait for openssl 1.0. Yann |
(0009860) dam (administrator) 2012-05-14 20:58 |
Updated packages have been pushed to unstable/. You can find out more about reinplacements in the GAR wiki: http://sourceforge.net/apps/trac/gar/wiki/Reinplace [^] Best regards -- Dago |
(0010002) dam (administrator) 2012-07-05 09:15 |
This is fixed in 1.13.4,REV=2012.05.12 and pushed to unstable/. |
Copyright © 2000 - 2008 Mantis Group |