Notices


Reply
Thread Tools
Community Council | Posts: 579 | Thanked: 905 times | Joined on Sep 2010 @ Mbabane
#11
I don't have a specific example, hence i said 'guess.'
It is just that I could use openssl s_client without needing -CApath before.

There are a couple of SSL/TLS issues I have, but I won't directly say are a result of the new OpenSSL. For example, since I update it and the corresponding qt4-x11, some https feeds aren't refreshing for me with cutenews, etc. I doubt it is related, but yeah
__________________
N900 projects I support:
Maemo Leste
CSSU Devel
Fremantle Porting Task Force projects, e.g. openssl, microb
PostmarketOS
Neo900, and of course,
the Maemo Community eingetragener Verein
 

The Following User Says Thank You to sicelo For This Useful Post:
Posts: 563 | Thanked: 1,541 times | Joined on Feb 2012 @ Germany
#12
Originally Posted by sicelo View Post
There are a couple of SSL/TLS issues I have, but I won't directly say are a result of the new OpenSSL. For example, since I update it and the corresponding qt4-x11, some https feeds aren't refreshing for me with cutenews, etc. I doubt it is related, but yeah
You could try to recompile cutenews with cssu packages. However it could be that cutenews need some patching. Or something with the certificates, or with qt something is not 100% ok.

So when recompiling did nothing then cutenews need more network connection debug output to analyse the problem. Sometimes redirection could be a pain.
 

The Following 2 Users Say Thank You to Halftux For This Useful Post:
Posts: 563 | Thanked: 1,541 times | Joined on Feb 2012 @ Germany
#13
Originally Posted by sicelo View Post
It is just that I could use openssl s_client without needing -CApath before.
After the rehash and restarting the console it should work also without -CApath.
Try to rehash without perl infront.

For my system and same openssl version it is working without the -CApath. Also self compiled wget against new openssl is working without specifying --ca-directory=directory (Without this option Wget looks for CA certificates at the system-specified locations, chosen at OpenSSL installation time.) and it works.
I could upload wget for >=cssu-testing+openssl 1.1.0h to openrepos if it is needed.
 

The Following 4 Users Say Thank You to Halftux For This Useful Post:
Reply

Thread Tools

 
Forum Jump


All times are GMT. The time now is 11:04.