From 4e1b102af618fc3e8da11da8a0cea28e5c104f3a Mon Sep 17 00:00:00 2001 From: Luke Granger-Brown Date: Tue, 7 Sep 2021 00:59:03 +0000 Subject: [PATCH] curl: reenable ca-fallback when not using wolfsslSupport 904625852d535bbe53cadb006c9e1137ab481818 accidentally swapped the behaviour, and enabled ca-fallback when using wolfssl and disabled it without. This effectively disables curl's ability to use the built in CA stack. --- pkgs/tools/networking/curl/default.nix | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pkgs/tools/networking/curl/default.nix b/pkgs/tools/networking/curl/default.nix index 5dba94abe35bc..aee0668c7f2dc 100644 --- a/pkgs/tools/networking/curl/default.nix +++ b/pkgs/tools/networking/curl/default.nix @@ -96,7 +96,7 @@ stdenv.mkDerivation rec { "--without-ca-bundle" "--without-ca-path" # The build fails when using wolfssl with --with-ca-fallback - (lib.withFeature wolfsslSupport "ca-fallback") + (lib.withFeature (!wolfsslSupport) "ca-fallback") "--disable-manual" (lib.withFeatureAs sslSupport "ssl" openssl.dev) (lib.withFeatureAs gnutlsSupport "gnutls" gnutls.dev)