[Bug 199611] lang/ruby20: DEFAULT_CERT_FILE is incorrect
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Wed Apr 22 13:30:13 UTC 2015
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=199611
Bug ID: 199611
Summary: lang/ruby20: DEFAULT_CERT_FILE is incorrect
Product: Ports & Packages
Version: Latest
Hardware: Any
OS: Any
Status: New
Severity: Affects Only Me
Priority: ---
Component: Individual Port(s)
Assignee: ruby at FreeBSD.org
Reporter: renchap at cocoa-x.com
Assignee: ruby at FreeBSD.org
Flags: maintainer-feedback?(ruby at FreeBSD.org)
When you build ruby with openssl from ports, it uses non-existent and
non-standard path to get CA files :
$ ruby -ropenssl -e 'puts OpenSSL::X509::DEFAULT_CERT_FILE'
/usr/local/openssl/cert.pem
$ ruby -ropenssl -e 'puts OpenSSL::X509::DEFAULT_CERT_DIR'
/usr/local/openssl/certs
Most ports uses /usr/local/etc/ssl/cert.pem, and this is the path installed by
the ca-root-nss port
At the moment you need to create this symlink before using SSL in ruby, and
many people disable ssl certs checks because of this. Having sane defaults
would be very helpful.
Note: when using openssl from base, it uses /etc/ssl/cert.pem, which is created
as asymlink to /usr/local/etc/ssl/cert.pem by ca-root-nss
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list