ryan77627/guix
1
0
Fork 0
mirror of https://git.in.rschanz.org/ryan77627/guix.git synced 2025-01-12 06:06:53 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

download: Honor /etc/ssl/certs when 'SSL_CERT_DIR' is not set.

Browse source 
* guix/build/download.scm (%x509-certificate-directory): Use
"/etc/ssl/certs" as a last resort.  This ensures, for instance, that
'guix download' honors system-wide certificates when SSL_CERT_DIR is
unset.
This commit is contained in:
Ludovic Courtès 2019-10-21 15:33:32 +02:00
parent a273796ce5
commit 674e143cf8
No known key found for this signature in database
GPG key ID: 090B11993D9AEBB5
1 changed files with 2 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
guix/build/download.scm
View file

@ -172,7 +172,8 @@ (define (register-tls-record-port record-port port)
(define %x509-certificate-directory (define %x509-certificate-directory
;; The directory where X.509 authority PEM certificates are stored. ;; The directory where X.509 authority PEM certificates are stored.
(make-parameter (or (getenv "GUIX_TLS_CERTIFICATE_DIRECTORY") (make-parameter (or (getenv "GUIX_TLS_CERTIFICATE_DIRECTORY")
(getenv "SSL_CERT_DIR")))) ;like OpenSSL (getenv "SSL_CERT_DIR") ;like OpenSSL
"/etc/ssl/certs")))
(define (set-certificate-credentials-x509-trust-file!* cred file format) (define (set-certificate-credentials-x509-trust-file!* cred file format)
"Like 'set-certificate-credentials-x509-trust-file!', but without the file "Like 'set-certificate-credentials-x509-trust-file!', but without the file