summaryrefslogtreecommitdiff
path: root/scripts/update_payload/format_utils.py
diff options
context:
space:
mode:
authorAlex Khouderchah <akhouderchah@chromium.org>2019-04-04 09:25:39 -0700
committerchrome-bot <chrome-bot@chromium.org>2019-04-23 02:43:53 -0700
commit84634dc7ae13a4e887937bded8f9486a2869e73c (patch)
tree1d1fa072aa650a48160f726d5c9f83d21aea12e6 /scripts/update_payload/format_utils.py
parent41ac04b6e8bc9e30d8436171f3eb54e3958e8cd6 (diff)
update_engine: Only use CAPATH for certificate verification
libcurl has the sometimes unexpected behavior that CAINFO will always be preferred over CAPATH for certificate verification when non-null. In this case, that means root certificates in both /etc/ssl/certs and /usr/share/chromeos-ca-certificates will be used when only root certificates in the latter directory are expected to be used. Setting CAINFO to null will ensure that only CAPATH is used. BUG=chromium:949426 TEST=-All unit tests are passing. -Pre-CQ is passing. Change-Id: I7ae231881ab47353c8f4637ce48f69c834fc307f Reviewed-on: https://chromium-review.googlesource.com/1553463 Commit-Ready: ChromeOS CL Exonerator Bot <chromiumos-cl-exonerator@appspot.gserviceaccount.com> Tested-by: Alex Khouderchah <akhouderchah@chromium.org> Reviewed-by: Ben Chan <benchan@chromium.org> Reviewed-by: Xiaochu Liu <xiaochu@chromium.org>
Diffstat (limited to 'scripts/update_payload/format_utils.py')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-27 09:42:10 +0000