invalid certificate chain during port-fetch
Rainer Müller
raimue at macports.org
Sun Dec 29 12:45:58 UTC 2019
On 29.12.19 10:50, René J.V. Bertin wrote:
> On Saturday December 28 2019 21:51:07 Ryan Schmidt wrote:
>
>> If I understood the patch correctly, it adds a fallback so that if fetching via the curl library fails, then it tries fetching via the curl command line program. To my knowledge MacPorts has never had code for using the curl command line program, only the curl library.
>
> It does, and if it didn't then I guess this snippet must have been proposed during a discussion on a mailing list, or maybe it had already been contributed.
>
> Either way, the idea makes sense even if the implementation leaves to be desired, no?
I see no reason for such a fallback. We use libcurl, why should we
duplicate the code to additionally support curl?
The real problem here is that your operating system is out of date and
cannot communicate with servers that require modern crypto. Going
forward, this will affect many more applications and not only MacPorts.
See also:
https://trac.macports.org/ticket/51516
Rainer
More information about the macports-dev
mailing list