-
Notifications
You must be signed in to change notification settings - Fork 245
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Restore compatibility in specifying custom CAs
After this, our logic matches the old one. - If a user specifies a certificate, the system certs are still valid. - A certificate can be any filename, not just tls.crt (which was used in the tests, so slipped under the radar) XXX untested: this likely fixes the use of a custom CA for an importer proxy. Unfortunately, curl's behaviour with the --cacert and --capath aren't directly usable for these circumstances, so we need to do some work to get the same behaviour out of them. Create a single file containing the system CAs, proxy CAs, and user-specified CA in one, and pass it as a single file to the curl nbdkit plugin. Signed-off-by: Maya Rashish <mrashish@redhat.com>
- Loading branch information
Showing
3 changed files
with
42 additions
and
40 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters