i found the problem :)

debian package builds curl in a different directory than the one extracted
from the tarball (srcdir != top_builddir). it happens that lib/ca-bundle.h
is correctly generated during configure phase in the build tree
(top_builddir/lib) but when it is included the one in the original srcdir
is used (srcdir/lib).

it is easily reproducible this way:

~/curl-7.11.0$ configure --prefix=/BROKEN && make
...
~/curl-7.11.0$ make distclean
...
~/curl-7.11.0$ mkdir broken && cd broken
~/curl-7.11.0/broken$ ../configure && make
...
~/curl-7.11.0/broken$ ./src/curl https://www.poste.it
curl: (60) error setting certificate verify locations:
   CAfile: /BROKEN/share/curl/curl-ca-bundle.crt
   CApath: none
...
curl-7.11.0/broken$

it seems that this bug has been introduced between release 1.75 and 1.76
of lib/ca-bundle.h for the same reason i consider it a bug.

IMHO it is not so clean to assume a particular search order of the include
paths, unless you impose it (i did not look who is choosing the order here).

simply removing srcdir/lib/ca-bundle.h solved my problem. why this file is
distirbuted? it is useless and it gets updated since the first build.

cheers
dom

-----[ Domenico Andreoli, aka cavok
  --[ http://filibusta.crema.unimi.it/~cavok/gpgkey.asc
    ---[ 3A0F 2F80 F79C 678A 8936 4FEE 0677 9033 A20E BC50

-------------------------------------------------------
The SF.Net email is sponsored by EclipseCon 2004
Premiere Conference on Open Tools Development and Integration
See the breadth of Eclipse activity. February 3-5 in Anaheim, CA.
http://www.eclipsecon.org/osdn
Received on 2004-01-31