Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

provide a default ssl_ca_path #19

Open
fschlich opened this issue Sep 5, 2018 · 1 comment
Open

provide a default ssl_ca_path #19

fschlich opened this issue Sep 5, 2018 · 1 comment

Comments

@fschlich
Copy link

fschlich commented Sep 5, 2018

XML::Stream defaults to verifying certificates (which is good), but it fails to provide a default ssl_ca_path, which means that verification will fail with

Invalid or unreadable path specified for ssl_ca_path. at /usr/share/perl5/XML/Stream.pm line 641

unless each and every library or script using it explicitly sets such a path.

Of course it is difficult to know what path to try by default, but I'd like to suggest '/etc/ssl/certs', which should work on all Debian/Ubuntu based systems. (And if this is the wrong path on $otheros, their users will not be worse off than they are at the moment).
fschlich added a commit to fschlich/XML-Stream that referenced this issue Oct 31, 2018
@fschlich
provide a default ssl_ca_path (fixes dap#19)
06cba5c 
this is necessary as we already default to "verify peer"
@KES777
Copy link

KES777 commented Nov 20, 2018
edited
Loading

Probably the path can be filled with Mozilla::CA::SSL_ca_file() if Mozilla::CA is available.
I am not sure, but LWP do that

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@KES777 @fschlich