-
Notifications
You must be signed in to change notification settings - Fork 883
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
SSL CA bundle is in a non-standard place for Linux distros #4941
Comments
why is /etc/pki/tls/cacert.pem "standard" but /etc/ssl/cert.pem not? is the "standard" defined somewhere? |
A symlink to the old location would save the Go devs from supporting yet another variation and save users of Go related addons headache after upgrading. |
sraue
added a commit
that referenced
this issue
May 4, 2016
Signed-off-by: Stephan Raue <stephan@openelec.tv>
@sraue thanks for fixing this - looks good. |
sraue
added a commit
that referenced
this issue
May 5, 2016
Signed-off-by: Stephan Raue <stephan@openelec.tv>
Closed
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This is causing a problem for rclone/rclone#466 as the go runtime can't find the SSL certificates in openelec 7 beta.
Go doesn't use openssl it has its own SSL implementation, but it relies on finding the root certificates in a standard place.
The Go runtime looks for SSL certificates in these places (note the openelec < 7 work-around).
and from these directories
I can propose a change to the go project to look in
/etc/ssl/cert.pem
but it seems to me that storing the CA bundle in one of the standard places (or back in/etc/pki/tls/cacert.pem
) would be a better idea for openelec and avoid the go source becoming cluttered up with openelec exceptions!This change was introduced in c2e0fdc as far as I can see
The text was updated successfully, but these errors were encountered: