[Buildroot] [git commit branch/2022.02.x] package/libcurl: fix missing CA bundle when wolfssl is SSL/TLS provider
Peter Korsgaard
peter at korsgaard.com
Thu Jun 9 20:48:18 UTC 2022
commit: https://git.buildroot.net/buildroot/commit/?id=c29660ff2c0b2606097fdc6ada645527052dafb1
branch: https://git.buildroot.net/buildroot/commit/?id=refs/heads/2022.02.x
Without CA bundle curl can not verify the remote peer and work with https.
This is fixed by adding a config option pointing to the default location
for CA bundle in buildroot. Alternatives like OpenSSL and MbedTLS use the
same path, however the wolfSSL build options for libcurl did not include
this path until now.
Signed-off-by: Dimitar Tomov <dimi at tpm.dev>
Signed-off-by: Yann E. MORIN <yann.morin.1998 at free.fr>
(cherry picked from commit b4d301c6413074ba88be2625305631524476f417)
Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
---
package/libcurl/libcurl.mk | 1 +
1 file changed, 1 insertion(+)
diff --git a/package/libcurl/libcurl.mk b/package/libcurl/libcurl.mk
index 15943f7512..11f1e4de59 100644
--- a/package/libcurl/libcurl.mk
+++ b/package/libcurl/libcurl.mk
@@ -77,6 +77,7 @@ endif
ifeq ($(BR2_PACKAGE_LIBCURL_WOLFSSL),y)
LIBCURL_CONF_OPTS += --with-wolfssl=$(STAGING_DIR)/usr
+LIBCURL_CONF_OPTS += --with-ca-bundle=/etc/ssl/certs/ca-certificates.crt
LIBCURL_DEPENDENCIES += wolfssl
else
LIBCURL_CONF_OPTS += --without-wolfssl
More information about the buildroot
mailing list