From owner-freebsd-ports-bugs@FreeBSD.ORG Wed Apr 22 13:30:13 2015 Return-Path: Delivered-To: freebsd-ports-bugs@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 8F8F49DE for ; Wed, 22 Apr 2015 13:30:13 +0000 (UTC) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 7A0EA112D for ; Wed, 22 Apr 2015 13:30:13 +0000 (UTC) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.14.9/8.14.9) with ESMTP id t3MDUDxs057678 for ; Wed, 22 Apr 2015 13:30:13 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 199611] lang/ruby20: DEFAULT_CERT_FILE is incorrect Date: Wed, 22 Apr 2015 13:30:13 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: new X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Ports & Packages X-Bugzilla-Component: Individual Port(s) X-Bugzilla-Version: Latest X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: renchap@cocoa-x.com X-Bugzilla-Status: New X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: ruby@FreeBSD.org X-Bugzilla-Target-Milestone: --- X-Bugzilla-Flags: maintainer-feedback? X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform op_sys bug_status bug_severity priority component assigned_to reporter flagtypes.name Message-ID: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: 7bit X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 22 Apr 2015 13:30:13 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=199611 Bug ID: 199611 Summary: lang/ruby20: DEFAULT_CERT_FILE is incorrect Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: Individual Port(s) Assignee: ruby@FreeBSD.org Reporter: renchap@cocoa-x.com Assignee: ruby@FreeBSD.org Flags: maintainer-feedback?(ruby@FreeBSD.org) When you build ruby with openssl from ports, it uses non-existent and non-standard path to get CA files : $ ruby -ropenssl -e 'puts OpenSSL::X509::DEFAULT_CERT_FILE' /usr/local/openssl/cert.pem $ ruby -ropenssl -e 'puts OpenSSL::X509::DEFAULT_CERT_DIR' /usr/local/openssl/certs Most ports uses /usr/local/etc/ssl/cert.pem, and this is the path installed by the ca-root-nss port At the moment you need to create this symlink before using SSL in ruby, and many people disable ssl certs checks because of this. Having sane defaults would be very helpful. Note: when using openssl from base, it uses /etc/ssl/cert.pem, which is created as asymlink to /usr/local/etc/ssl/cert.pem by ca-root-nss -- You are receiving this mail because: You are the assignee for the bug.