[Bug 199611] lang/ruby20: DEFAULT_CERT_FILE is incorrect

[bugzilla-noreply at freebsd.org]

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=199611

            Bug ID: 199611
           Summary: lang/ruby20: DEFAULT_CERT_FILE is incorrect
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: Individual Port(s)
          Assignee: ruby at FreeBSD.org
          Reporter: renchap at cocoa-x.com
          Assignee: ruby at FreeBSD.org
             Flags: maintainer-feedback?(ruby at FreeBSD.org)

When you build ruby with openssl from ports, it uses non-existent and
non-standard path to get CA files :
$ ruby -ropenssl -e 'puts OpenSSL::X509::DEFAULT_CERT_FILE'
/usr/local/openssl/cert.pem
$ ruby -ropenssl -e 'puts OpenSSL::X509::DEFAULT_CERT_DIR'
/usr/local/openssl/certs

Most ports uses /usr/local/etc/ssl/cert.pem, and this is the path installed by
the ca-root-nss port

At the moment you need to create this symlink before using SSL in ruby, and
many people disable ssl certs checks because of this. Having sane defaults
would be very helpful.

Note: when using openssl from base, it uses /etc/ssl/cert.pem, which is created
as asymlink to /usr/local/etc/ssl/cert.pem by ca-root-nss

-- 
You are receiving this mail because:
You are the assignee for the bug.