update_engine: Only use CAPATH for certificate verification
libcurl has the sometimes unexpected behavior that CAINFO will always
be preferred over CAPATH for certificate verification when
non-null. In this case, that means root certificates in both
/etc/ssl/certs and /usr/share/chromeos-ca-certificates will be used
when only root certificates in the latter directory are expected to be
used. Setting CAINFO to null will ensure that only CAPATH is used.
BUG=chromium:949426
TEST=-All unit tests are passing.
-Pre-CQ is passing.
Change-Id: I7ae231881ab47353c8f4637ce48f69c834fc307f
Reviewed-on: https://chromium-review.googlesource.com/1553463
Commit-Ready: ChromeOS CL Exonerator Bot <chromiumos-cl-exonerator@appspot.gserviceaccount.com>
Tested-by: Alex Khouderchah <akhouderchah@chromium.org>
Reviewed-by: Ben Chan <benchan@chromium.org>
Reviewed-by: Xiaochu Liu <xiaochu@chromium.org>
1 file changed