Skip to content

Commit

Permalink
Use default openssl file path and file dir from OpenSSL
Browse files Browse the repository at this point in the history 
Details see: http://mislav.uniqpath.com/2013/07/ruby-openssl/
  • Loading branch information
@owenthereal
owenthereal authored and Michael Klishin committed Aug 24, 2013
1 parent 71249fa commit 9d8d361
Showing 1 changed file with 7 additions and 4 deletions.
11 changes: 7 additions & 4 deletions lib/bunny/transport.rb
View file
Expand Up @@ -41,11 +41,14 @@ def initialize(session, host, port, opts)
@tls_certificate = opts[:tls_certificate] || opts[:ssl_cert_string]
@tls_key = opts[:tls_key] || opts[:ssl_key_string]
@tls_certificate_store = opts[:tls_certificate_store]

default_ca_file = ENV[OpenSSL::X509::DEFAULT_CERT_FILE_ENV] || OpenSSL::X509::DEFAULT_CERT_FILE
default_ca_path = ENV[OpenSSL::X509::DEFAULT_CERT_DIR_ENV] || OpenSSL::X509::DEFAULT_CERT_DIR
@tls_ca_certificates = opts.fetch(:tls_ca_certificates, [
'/etc/ssl/certs/ca-certificates.crt', # Ubuntu/Debian
'/etc/ssl/certs/ca-bundle.crt', # Amazon Linux
'/etc/ssl/ca-bundle.pem', # OpenSUSE
'/etc/pki/tls/certs/ca-bundle.crt' # Fedora/RHEL
default_ca_file,
File.join(default_ca_path, 'ca-certificates.crt'), # Ubuntu/Debian
File.join(default_ca_path, 'ca-bundle.crt'), # Amazon Linux & Fedora/RHEL
File.join(default_ca_path, 'ca-bundle.pem') # OpenSUSE
])
@verify_peer = opts[:verify_ssl] || opts[:verify_peer]

Expand Down

0 comments on commit 9d8d361

Please sign in to comment.