Notes |
|
(0009856)
|
yann
|
2012-05-12 12:18
|
|
Exemple of problem:
# wget "https://security.appspot.com/downloads/vsftpd-3.0.0.tar.gz" [^]
--2012-05-12 13:16:49-- https://security.appspot.com/downloads/vsftpd-3.0.0.tar.gz [^]
Resolving security.appspot.com (security.appspot.com)... 173.194.78.141, 2a00:1450:8005::8d
Connecting to security.appspot.com (security.appspot.com)|173.194.78.141|:443... connected.
ERROR: The certificate of `security.appspot.com' is not trusted.
ERROR: The certificate of `security.appspot.com' hasn't got a known issuer.
# wget --ca-directory /etc/opt/csw/ssl/certs/ "https://security.appspot.com/downloads/vsftpd-3.0.0.tar.gz" [^]
--2012-05-12 13:17:37-- https://security.appspot.com/downloads/vsftpd-3.0.0.tar.gz [^]
Resolving security.appspot.com (security.appspot.com)... 173.194.78.141, 2a00:1450:8005::8d
Connecting to security.appspot.com (security.appspot.com)|173.194.78.141|:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: 193166 (189K) [application/x-tar]
Saving to: `vsftpd-3.0.0.tar.gz'
100%[==============================================================================================================================>] 193,166 317K/s in 0.6s
2012-05-12 13:17:39 (317 KB/s) - `vsftpd-3.0.0.tar.gz' saved [193166/193166] |
|
|
(0009857)
|
yann
|
2012-05-12 12:19
|
|
|
|
(0009858)
|
dam
|
2012-05-13 19:33
|
|
Hi Yann, I made new packages at
http://buildfarm.opencsw.org/experimental.html#wget [^]
with your patch applied. However, I used reinplacements in the recipe as it is more flexible and the patch is not that complicated. Also I would like to switch back from GnuTLS to OpenSSL for wget, but I am on limited connectivity right now, so probably next week. |
|
|
(0009859)
|
yann
|
2012-05-14 00:40
|
|
Hi Dam,
I tested the new package and it works perfectly.
I didn't about REINPLACEMENTS, I may find useful in my packages too.
In this case, it might be even better to make the capath a configure option and to propose the patch upstream.
Concerning the switch back to openssl, you might want to wait for openssl 1.0.
Yann |
|
|
(0009860)
|
dam
|
2012-05-14 20:58
|
|
|
|
(0010002)
|
dam
|
2012-07-05 09:15
|
|
This is fixed in 1.13.4,REV=2012.05.12 and pushed to unstable/. |
|