This commit is contained in:
OBS User unknown
Git OBS Bridge
parent
a2036ab67a
commit
2e09c28e68
37
curl-use-openssl-cacerts.patch
Normal file
37
curl-use-openssl-cacerts.patch
Normal file
@ -0,0 +1,37 @@
|
||||
Use /etc/ssl/certs instead of /usr/share/curl/curl-ca-bundle.crt.
|
||||
TODO: do it in a cleaner (configurable) way and submit upstream.
|
||||
---
|
||||
lib/easy.c | 5 +----
|
||||
lib/url.c | 7 ++-----
|
||||
2 files changed, 3 insertions(+), 9 deletions(-)
|
||||
|
||||
--- lib/easy.c.orig
|
||||
+++ lib/easy.c
|
||||
@@ -743,10 +743,7 @@ void curl_easy_reset(CURL *curl)
|
||||
*/
|
||||
data->set.ssl.verifypeer = TRUE;
|
||||
data->set.ssl.verifyhost = 2;
|
||||
-#ifdef CURL_CA_BUNDLE
|
||||
- /* This is our prefered CA cert bundle since install time */
|
||||
- (void) curl_easy_setopt(curl, CURLOPT_CAINFO, (char *) CURL_CA_BUNDLE);
|
||||
-#endif
|
||||
+ (void) curl_easy_setopt(curl, CURLOPT_CAPATH, "/etc/ssl/certs");
|
||||
|
||||
data->set.ssh_auth_types = CURLSSH_AUTH_DEFAULT; /* defaults to any auth
|
||||
type */
|
||||
--- lib/url.c.orig
|
||||
+++ lib/url.c
|
||||
@@ -749,11 +749,8 @@ CURLcode Curl_open(struct SessionHandle
|
||||
data->set.ssl.verifypeer = TRUE;
|
||||
data->set.ssl.verifyhost = 2;
|
||||
data->set.ssl.sessionid = TRUE; /* session ID caching enabled by default */
|
||||
-#ifdef CURL_CA_BUNDLE
|
||||
- /* This is our preferred CA cert bundle since install time */
|
||||
- res = setstropt(&data->set.str[STRING_SSL_CAFILE],
|
||||
- (char *) CURL_CA_BUNDLE);
|
||||
-#endif
|
||||
+ res = setstropt(&data->set.str[STRING_SSL_CAPATH],
|
||||
+ "/etc/ssl/certs");
|
||||
}
|
||||
|
||||
if(res) {
|
||||
@ -1,3 +1,10 @@
|
||||
-------------------------------------------------------------------
|
||||
Fri Feb 8 10:21:10 CET 2008 - mmarek@suse.cz
|
||||
|
||||
- use /etc/ssl/certs instead of own curl-ca-bundle.crt
|
||||
* more up-to-date ca cert collection (bnc#334690)
|
||||
* allows for easier updates of ca certs
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Jan 29 10:01:27 CET 2008 - mmarek@suse.cz
|
||||
|
||||
|
||||
10
curl.spec
10
curl.spec
@ -15,7 +15,7 @@ BuildRequires: libidn-devel openldap2-devel openssl-devel zlib-devel
|
||||
# used by the testsuite
|
||||
BuildRequires: stunnel
|
||||
Version: 7.18.0
|
||||
Release: 1
|
||||
Release: 5
|
||||
AutoReqProv: on
|
||||
License: BSD 3-Clause; X11/MIT
|
||||
Group: Productivity/Networking/Web/Utilities
|
||||
@ -23,6 +23,7 @@ Summary: A Tool for Transferring Data from URLs
|
||||
Url: http://curl.haxx.se/
|
||||
Source: curl-%{version}.tar.bz2
|
||||
Patch1: curl-test553.patch
|
||||
Patch2: curl-use-openssl-cacerts.patch
|
||||
BuildRoot: %{_tmppath}/%{name}-%{version}-build
|
||||
|
||||
%description
|
||||
@ -53,7 +54,7 @@ Authors:
|
||||
%package -n libcurl4
|
||||
Summary: cURL shared library version 4
|
||||
Group: Productivity/Networking/Web/Utilities
|
||||
Requires: curl-ca-bundle
|
||||
Requires: openssl-certs
|
||||
|
||||
%description -n libcurl4
|
||||
cURL shared library version 4.
|
||||
@ -87,6 +88,7 @@ Authors:
|
||||
%prep
|
||||
%setup -q
|
||||
%patch1
|
||||
%patch2
|
||||
|
||||
%build
|
||||
autoreconf -fi
|
||||
@ -158,6 +160,10 @@ rm -rf $RPM_BUILD_ROOT
|
||||
%doc %{_mandir}/man3/*
|
||||
|
||||
%changelog
|
||||
* Fri Feb 08 2008 mmarek@suse.cz
|
||||
- use /etc/ssl/certs instead of own curl-ca-bundle.crt
|
||||
* more up-to-date ca cert collection (bnc#334690)
|
||||
* allows for easier updates of ca certs
|
||||
* Tue Jan 29 2008 mmarek@suse.cz
|
||||
- updated to 7.18.0
|
||||
* --data-urlencode
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user