[gnome-builder] flatpak: add SSL check for flatpak
- From: Christian Hergert <chergert src gnome org>
- To: commits-list gnome org
- Cc:
- Subject: [gnome-builder] flatpak: add SSL check for flatpak
- Date: Tue, 29 Nov 2016 02:00:45 +0000 (UTC)
commit 169e6996fc191ac9622a81c697edbf236bee6be8
Author: Christian Hergert <chergert redhat com>
Date: Mon Nov 28 18:00:21 2016 -0800
flatpak: add SSL check for flatpak
This allows us to get a working SSL system by discovering the hosts SSL
cert.pem location.
src/main.c | 36 ++++++++++++++++++++++++++++++++++++
1 files changed, 36 insertions(+), 0 deletions(-)
---
diff --git a/src/main.c b/src/main.c
index 170c58b..71fd1f4 100644
--- a/src/main.c
+++ b/src/main.c
@@ -48,6 +48,40 @@ early_verbose_check (gint *argc,
g_option_context_free (context);
}
+static void
+early_ssl_check (void)
+{
+ /*
+ * This tries to locate the SSL cert.pem and overrides the environment
+ * variable. Otherwise, chances are we won't be able to validate SSL
+ * certificates while inside of flatpak.
+ *
+ * Ideally, we will be able to delete this once Flatpak has a solution
+ * for SSL certificate management inside of applications.
+ */
+ if (ide_is_flatpak ())
+ {
+ if (NULL == g_getenv ("SSL_CERT_FILE"))
+ {
+ static const gchar *ssl_cert_paths[] = {
+ "/etc/pki/tls/cert.pem",
+ "/etc/ssl/cert.pem",
+ NULL
+ };
+
+ for (guint i = 0; ssl_cert_paths[i]; i++)
+ {
+ if (g_file_test (ssl_cert_paths[i], G_FILE_TEST_EXISTS))
+ {
+ g_setenv ("SSL_CERT_FILE", ssl_cert_paths[i], TRUE);
+ g_message ("Using ā%sā for SSL_CERT_FILE.", ssl_cert_paths[i]);
+ break;
+ }
+ }
+ }
+ }
+}
+
int
main (int argc,
char *argv[])
@@ -64,6 +98,8 @@ main (int argc,
gtk_get_minor_version (),
gtk_get_micro_version ());
+ early_ssl_check ();
+
app = ide_application_new ();
ret = g_application_run (G_APPLICATION (app), argc, argv);
g_clear_object (&app);
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
