2016-09-27 19:01:08 +00:00
|
|
|
/* Distributed under the OSI-approved BSD 3-Clause License. See accompanying
|
|
|
|
file Copyright.txt or https://cmake.org/licensing for details. */
|
2015-01-22 15:15:31 +00:00
|
|
|
#include "cmCurl.h"
|
2016-04-29 13:40:20 +00:00
|
|
|
|
2016-09-01 18:59:28 +00:00
|
|
|
#if !defined(CMAKE_USE_SYSTEM_CURL) && !defined(_WIN32) && \
|
|
|
|
!defined(__APPLE__) && !defined(CURL_CA_BUNDLE) && !defined(CURL_CA_PATH)
|
2018-06-01 13:53:41 +00:00
|
|
|
# define CMAKE_FIND_CAFILE
|
|
|
|
# include "cmSystemTools.h"
|
2016-09-01 18:59:28 +00:00
|
|
|
#endif
|
2019-08-22 14:34:40 +00:00
|
|
|
#include "cmStringAlgorithms.h"
|
2015-01-22 15:15:31 +00:00
|
|
|
|
2016-02-09 18:20:39 +00:00
|
|
|
// curl versions before 7.21.5 did not provide this error code
|
|
|
|
#if defined(LIBCURL_VERSION_NUM) && LIBCURL_VERSION_NUM < 0x071505
|
2018-06-01 13:53:41 +00:00
|
|
|
# define CURLE_NOT_BUILT_IN 4
|
2016-02-09 18:20:39 +00:00
|
|
|
#endif
|
|
|
|
|
2016-05-16 14:34:04 +00:00
|
|
|
#define check_curl_result(result, errstr) \
|
2019-01-11 21:58:56 +00:00
|
|
|
do { \
|
|
|
|
if ((result) != CURLE_OK && (result) != CURLE_NOT_BUILT_IN) { \
|
|
|
|
e += e.empty() ? "" : "\n"; \
|
|
|
|
e += (errstr); \
|
|
|
|
e += ::curl_easy_strerror(result); \
|
|
|
|
} \
|
|
|
|
} while (false)
|
2015-01-22 15:15:31 +00:00
|
|
|
|
2016-05-16 14:34:04 +00:00
|
|
|
std::string cmCurlSetCAInfo(::CURL* curl, const char* cafile)
|
2015-01-22 15:15:31 +00:00
|
|
|
{
|
|
|
|
std::string e;
|
2016-05-16 14:34:04 +00:00
|
|
|
if (cafile && *cafile) {
|
2015-01-22 15:15:31 +00:00
|
|
|
::CURLcode res = ::curl_easy_setopt(curl, CURLOPT_CAINFO, cafile);
|
|
|
|
check_curl_result(res, "Unable to set TLS/SSL Verify CAINFO: ");
|
2016-05-16 14:34:04 +00:00
|
|
|
}
|
2016-09-01 18:59:28 +00:00
|
|
|
#ifdef CMAKE_FIND_CAFILE
|
2018-06-01 13:53:41 +00:00
|
|
|
# define CMAKE_CAFILE_FEDORA "/etc/pki/tls/certs/ca-bundle.crt"
|
2016-05-16 14:34:04 +00:00
|
|
|
else if (cmSystemTools::FileExists(CMAKE_CAFILE_FEDORA, true)) {
|
2015-01-22 15:15:31 +00:00
|
|
|
::CURLcode res =
|
|
|
|
::curl_easy_setopt(curl, CURLOPT_CAINFO, CMAKE_CAFILE_FEDORA);
|
|
|
|
check_curl_result(res, "Unable to set TLS/SSL Verify CAINFO: ");
|
2016-05-16 14:34:04 +00:00
|
|
|
}
|
2018-06-01 13:53:41 +00:00
|
|
|
# undef CMAKE_CAFILE_FEDORA
|
2016-05-16 14:34:04 +00:00
|
|
|
else {
|
2018-06-01 13:53:41 +00:00
|
|
|
# define CMAKE_CAFILE_COMMON "/etc/ssl/certs/ca-certificates.crt"
|
2016-05-16 14:34:04 +00:00
|
|
|
if (cmSystemTools::FileExists(CMAKE_CAFILE_COMMON, true)) {
|
2015-01-22 15:15:31 +00:00
|
|
|
::CURLcode res =
|
|
|
|
::curl_easy_setopt(curl, CURLOPT_CAINFO, CMAKE_CAFILE_COMMON);
|
|
|
|
check_curl_result(res, "Unable to set TLS/SSL Verify CAINFO: ");
|
2016-05-16 14:34:04 +00:00
|
|
|
}
|
2018-06-01 13:53:41 +00:00
|
|
|
# undef CMAKE_CAFILE_COMMON
|
|
|
|
# define CMAKE_CAPATH_COMMON "/etc/ssl/certs"
|
2016-05-16 14:34:04 +00:00
|
|
|
if (cmSystemTools::FileIsDirectory(CMAKE_CAPATH_COMMON)) {
|
2015-01-22 15:15:31 +00:00
|
|
|
::CURLcode res =
|
|
|
|
::curl_easy_setopt(curl, CURLOPT_CAPATH, CMAKE_CAPATH_COMMON);
|
|
|
|
check_curl_result(res, "Unable to set TLS/SSL Verify CAPATH: ");
|
|
|
|
}
|
2018-06-01 13:53:41 +00:00
|
|
|
# undef CMAKE_CAPATH_COMMON
|
2016-05-16 14:34:04 +00:00
|
|
|
}
|
2015-01-22 15:15:31 +00:00
|
|
|
#endif
|
|
|
|
return e;
|
|
|
|
}
|
2017-10-18 14:26:55 +00:00
|
|
|
|
|
|
|
std::string cmCurlSetNETRCOption(::CURL* curl, const std::string& netrc_level,
|
|
|
|
const std::string& netrc_file)
|
|
|
|
{
|
|
|
|
std::string e;
|
|
|
|
CURL_NETRC_OPTION curl_netrc_level = CURL_NETRC_LAST;
|
|
|
|
::CURLcode res;
|
|
|
|
|
|
|
|
if (!netrc_level.empty()) {
|
|
|
|
if (netrc_level == "OPTIONAL") {
|
|
|
|
curl_netrc_level = CURL_NETRC_OPTIONAL;
|
|
|
|
} else if (netrc_level == "REQUIRED") {
|
|
|
|
curl_netrc_level = CURL_NETRC_REQUIRED;
|
|
|
|
} else if (netrc_level == "IGNORED") {
|
|
|
|
curl_netrc_level = CURL_NETRC_IGNORED;
|
|
|
|
} else {
|
2019-08-22 14:34:40 +00:00
|
|
|
e = cmStrCat("NETRC accepts OPTIONAL, IGNORED or REQUIRED but got: ",
|
|
|
|
netrc_level);
|
2017-10-18 14:26:55 +00:00
|
|
|
return e;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (curl_netrc_level != CURL_NETRC_LAST &&
|
|
|
|
curl_netrc_level != CURL_NETRC_IGNORED) {
|
|
|
|
res = ::curl_easy_setopt(curl, CURLOPT_NETRC, curl_netrc_level);
|
|
|
|
check_curl_result(res, "Unable to set netrc level: ");
|
|
|
|
if (!e.empty()) {
|
|
|
|
return e;
|
|
|
|
}
|
|
|
|
|
|
|
|
// check to see if a .netrc file has been specified
|
|
|
|
if (!netrc_file.empty()) {
|
|
|
|
res = ::curl_easy_setopt(curl, CURLOPT_NETRC_FILE, netrc_file.c_str());
|
|
|
|
check_curl_result(res, "Unable to set .netrc file path : ");
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return e;
|
|
|
|
}
|