[Bug 244518] emulators/linux_base-c7: missing ca-certificates
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Sat Feb 29 17:45:41 UTC 2020
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=244518
Byron Grobe <grobe0ba at gmail.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |grobe0ba at gmail.com
--- Comment #1 from Byron Grobe <grobe0ba at gmail.com> ---
<jell48> finally got the traces out with "truss chroot /compat/linux curl
https://google.com 2>&1". almost all of the files are found, except for
"linux_open("/proc/sys/crypto/fips_enabled",0x0,0666) ERR#-2 'No such file or
directory'". not sure how relevant is that crypto for curl to function (or is
that a real cause)?
Recent versions of OpenSSL and other SSL libraries on Linux check for a
kernel/userland setup that operates in a FIPS certified mode, which whether or
not it is used, it includes a sysctl visible under
/proc/sys/crypto/fips_enabled.
When the system is not in this mode, /proc/sys/crypto/fips_enabled should have
a content of ASCII 0 (for false), which it should always be under emulation
since we don't do FIPS certified crypto under linux emulation.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-emulation
mailing list