On Sun, Mar 22, 2015 at 02:16:00PM -0400, Mark H Weaver wrote: >Tomáš Čech writes: > >> On Sun, Mar 22, 2015 at 12:56:43PM -0400, Mark H Weaver wrote: >>> >>>It would be better to avoid passing the --with-ca-path= option. We are >>>attempting to move away from having any compiled-in system-wide location >>>for the CA trust store. Each user should be able to specify their >>>desired trust store using environment variables or other settings. >> >> I verified that patch is now sufficient as solution and I verified >> that it respects SSL_CERT_DIR with that so it is ideal solution. > >Sounds perfect! > >> Thanks for kicking me step further. (And yes, that patch is really >> needed :) > >Thanks very much for your role in getting that patch produced and >upstreamed. FTR, I just did some debugging and in the end bisected the right patch from upstream GIT, author of the patch is someone else. S_W