You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
SSL_CERT_FILE=/Library/Java/JavaVirtualMachines/jdk1.8.0_51.jdk/Contents/Home/jre/lib/security/cacerts bin/jruby -ropen-uri -e "p open('https://wikipedia.org')"
OpenSSL::SSL::SSLError: certificate verify failed
connect at org/jruby/ext/openssl/SSLSocket.java:210
block in connect at /Users/cmeier/projects/active/jruby/lib/ruby/stdlib/net/http.rb:927
timeout at org/jruby/ext/timeout/Timeout.java:128
connect at /Users/cmeier/projects/active/jruby/lib/ruby/stdlib/net/http.rb:927
do_start at /Users/cmeier/projects/active/jruby/lib/ruby/stdlib/net/http.rb:867
start at /Users/cmeier/projects/active/jruby/lib/ruby/stdlib/net/http.rb:856
open_http at /Users/cmeier/projects/active/jruby/lib/ruby/stdlib/open-uri.rb:318
buffer_open at /Users/cmeier/projects/active/jruby/lib/ruby/stdlib/open-uri.rb:736
block in open_loop at /Users/cmeier/projects/active/jruby/lib/ruby/stdlib/open-uri.rb:211
catch at org/jruby/RubyKernel.java:1098
open_loop at /Users/cmeier/projects/active/jruby/lib/ruby/stdlib/open-uri.rb:209
open_uri at /Users/cmeier/projects/active/jruby/lib/ruby/stdlib/open-uri.rb:150
open at /Users/cmeier/projects/active/jruby/lib/ruby/stdlib/open-uri.rb:716
open at /Users/cmeier/projects/active/jruby/lib/ruby/stdlib/open-uri.rb:34
<top> at -e:1
not sure if this is a bug since this is JRuby specific as java keystores are just for java.
BUT if the code which "loads" the default location and the custom location with via SSL_CERT_FILE would be the SAME. then you do indirectly test the default locations (there is no way to test the default cert files otherwise as they depend on the OS and system setup)
this would be the only way to get tests for #49 implemented
The text was updated successfully, but these errors were encountered:
keep the default x509 certs and directories in line with MRI, only if
they do not exists fallback on cacerts from the java.home/lib/security/cacerts
fixes#49, #70 and keeps the idea of b914091
Sponsored by Lookout Inc.
the same works without the SSL_CERT_FILE
not sure if this is a bug since this is JRuby specific as java keystores are just for java.
BUT if the code which "loads" the default location and the custom location with via SSL_CERT_FILE would be the SAME. then you do indirectly test the default locations (there is no way to test the default cert files otherwise as they depend on the OS and system setup)
this would be the only way to get tests for #49 implemented
The text was updated successfully, but these errors were encountered: