curl-users
Re: default CA cert bundle/path - not working
Date: Fri, 30 Mar 2012 11:02:12 +0200
On Fri, Mar 30, 2012 at 10:37:38AM +0200, curl.bullrunner_at_spamgourmet.com wrote:
> I have finally managed to get cURL 7.24.0 built and working on AIX
> 5.2, but there is still one small problem. It appears that the default
> CA cert bundle/path isn't working.
>
> I didn't specify any --with-ca options during the configure step and
> after installing cURL it complained as follows:-
>
> / >curl -l -u user:pass --ftp-ssl ftp://server/directory/
> curl: (60) SSL certificate problem, verify that the CA cert is OK. Details:
> error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate
> verify failed
> blah, blah
There are a few common locations for CA bundles hard-coded in the configure
script, and it could be that AIX doesn't use any of them. Where is the AIX
cert bundle located?
> I then created and populated the default path with a working CA cert
> bundle, but it still failed.
This statement implies that AIX doesn't even have a working CA cert bundle,
in which case how do you expect configure to respond? It should just
use a default location and if it's still empty at run-time, then curl simply
can't validate certs.
>>> Dan
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-users
FAQ: http://curl.haxx.se/docs/faq.html
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2012-03-30