diff options
| author | gdt <gdt@pkgsrc.org> | 2017-06-19 00:37:48 +0000 |
|---|---|---|
| committer | gdt <gdt@pkgsrc.org> | 2017-06-19 00:37:48 +0000 |
| commit | dc2f952120d30779a4d2fe8b58ae3de971c2d748 (patch) | |
| tree | 36028311f0c0cee23eef86f169b6aec1edcdd68a | |
| parent | 370fd79d22eeb467ac0bd23c2f2c4c699d089b9a (diff) | |
| download | pkgsrc-dc2f952120d30779a4d2fe8b58ae3de971c2d748.tar.gz | |
Revert touching of openssl config file
Earlier, code was added to "touch $conffile" to work around openssl
issuing a warning if openssl.conf was not present. This is
problematic because if the warning is appropriate, 1) we have no way
of knowing that an empty config file is correct and 2) we should not
silence it. If the warning is buggy, then openssl and/or the base
system should be fixed. Further, this code changes the modification
date of the config file on every run, even when there is a valid
config file.
(There was no discussion prior, three objections and no concurrences,
and no response, so reverting seems ok.)
| -rw-r--r-- | security/mozilla-rootcerts/Makefile | 4 | ||||
| -rw-r--r-- | security/mozilla-rootcerts/files/mozilla-rootcerts.sh | 16 |
2 files changed, 3 insertions, 17 deletions
diff --git a/security/mozilla-rootcerts/Makefile b/security/mozilla-rootcerts/Makefile index 9f6122ec8cc..047781eb918 100644 --- a/security/mozilla-rootcerts/Makefile +++ b/security/mozilla-rootcerts/Makefile @@ -1,7 +1,7 @@ -# $NetBSD: Makefile,v 1.28 2017/06/19 00:32:37 gdt Exp $ +# $NetBSD: Makefile,v 1.29 2017/06/19 00:37:48 gdt Exp $ DISTNAME= mozilla-rootcerts-1.0.${CERTDATA_DATE} -PKGREVISION= 4 +PKGREVISION= 5 CATEGORIES= security MASTER_SITES= -https://hg.mozilla.org/mozilla-central/raw-file/052b90b5414f/security/nss/lib/ckfw/builtins/certdata.txt DISTFILES= ${CERTDATA} diff --git a/security/mozilla-rootcerts/files/mozilla-rootcerts.sh b/security/mozilla-rootcerts/files/mozilla-rootcerts.sh index f306e3a292b..4364b8b0a31 100644 --- a/security/mozilla-rootcerts/files/mozilla-rootcerts.sh +++ b/security/mozilla-rootcerts/files/mozilla-rootcerts.sh @@ -1,6 +1,6 @@ #!/bin/sh # -# $NetBSD: mozilla-rootcerts.sh,v 1.16 2017/06/19 00:32:37 gdt Exp $ +# $NetBSD: mozilla-rootcerts.sh,v 1.17 2017/06/19 00:37:48 gdt Exp $ # # This script is meant to be used as follows: # @@ -23,7 +23,6 @@ self="@LOCALBASE@/sbin/mozilla-rootcerts" certfile="@DATADIR@/certdata.txt" certdir=${SSLDIR}/certs destdir= -conffile="@SSLDIR@/openssl.cnf" usage() { @@ -188,19 +187,6 @@ extract) }' ;; install) - # \todo This is attempting to work around a warning from - # openssl being run without a config file. Hoever, that's - # behavior in openssl and/or the base system, which if it - # needs fixing should be fixed there. Touching the config - # file is problematic because it is a further violation of the - # notion that packages install files under PREFIX and only - # touch their own config files. It is further problematic - # because it changes the modification date on config files - # which exist. - if [ `uname -s` = "NetBSD" ]; then - # quell warnings for a missing config file - touch $destdir$conffile - fi # Insist on e.g. /etc/openssl/certs existing. if [ ! -d $destdir$certdir ]; then ${ECHO} 1>&2 "ERROR: $destdir$certdir does not exist, aborting." |