[Info-vax] cURL

[John E. Malmberg]

On 8/22/2018 8:05 PM, osuvman50 at gmail.com wrote:
> On Wednesday, August 22, 2018 at 3:35:47 PM UTC-4, Phillip Helbig (undress to reply) wrote:
>> How good/robust/useful is cURL for VMS?  I'm thinking of installing it.
>> Apparently one gets a PCSI file, which indicates that it is probably
>> well adapted to VMS.  Should I expect it to work out of the box?
>>
> 
> I built Curl 7.41 (released Feb 2015) from sources with no source code changes
> by jiggering a way to compile /names=as_is and still link it against the OpenVMS
> SSL images.  I rebuilt it this spring using the OpenSSL 1.0.2o libraries from
> OpenSSL.org.  It meets my needs, but I only use it in a couple scripts that need
> to download files from https-only web servers.
> 
> Using Curl for TLS opens up the whole can of worms of where you get root CA
> certificates you can trust.  I cheated and exported the list from the Chrome
> browsers's cert. manager as a PKCS12 file, using a script to import them into
> the SSL$CERTS directory.

I unpacked the source to one of the Linux distro cert kits to see what 
they are doing.

They are simply downloading the trusted CAs from the Mozilla project and 
packaging them up.

Then they have a program/script that can be run to look at the kit 
provided CAs, and user provided CAs, and build bundles for user programs 
like cURL and for Java.

I think it works something like a directory that some application that 
needs CA in a special format can put a script to be called by the 
program/script provided by a package.

Should not be too hard to put in a PCSI package, once you worked out 
what directories to put everything in.

Regards,
-John