On Mon, 5 Jun 2017, Matthew D. Fuller wrote: > On Sun, Jun 04, 2017 at 09:48:02PM +0000 I heard the voice of > Marcin Cieslak, and lo! it spake thus: > > > > My temporary solution to this problem is to pin the CA certificate > > in the port itself: > > Err... > > > -FETCH_ENV= HTTP_AUTH=basic:*:I\ accept\ > > www.opensource.org/licenses/cpl:. > > +FETCH_ARGS+= --ca-cert="${FILESDIR}/dst_root_ca_x3.crt" > > bsd.port.mk already sets > > FETCH_ENV?= SSL_NO_VERIFY_PEER=1 SSL_NO_VERIFY_HOSTNAME=1 > > itself (on !makesum). If you don't need that FETCH_ENV at all, you > wouldn't need the _ARGS either (and if you do need the _ENV, you'd > probably want to pull in the default as well to match...)
That was it, thank you very much! Marcin
smime.p7s
Description: S/MIME Cryptographic Signature