Date: Wed, 31 Jul 2013 08:18:51 -0400 From: Nikolai Lifanov <lifanov@mail.lifanov.com> To: freebsd-ports@freebsd.org Subject: r253680 in CURRENT breaks GH ports and maybe others Message-ID: <831982af5f96759f17d21aba62b02eb6@mail.lifanov.com>
next in thread | raw e-mail | index | archive | help
r253680 enables SSL certificate verification for "fetch" command. Ports use "fetch" to download distfiles. At least all USE_GITHUB fetches are broken on CURRENT, and others might be too. What is the correct/intended way to handle master sites that use bad SSL certificates? Is there an intention to depend on a root certificate bundle after this? => Attempting to fetch https://codeload.github.com/vermaden/beadm/legacy.tar.gz/d7d7cd3?dummy=/beadm-0.8.99.20130730.tar.gz Certificate verification failed for /C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert High Assurance CA-3 34380834376:error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed:/usr/src/secure/lib/libssl/../../../crypto/openssl/ssl/s3_clnt.c:1168: - Nikolai Lifanov
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?831982af5f96759f17d21aba62b02eb6>