freebsd/ports
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
ports/security/ca_root_nss/pkg-plist
T
Franco Fichtner 1abc6bb686 security/ca_root_nss: handle bundle links consistently for ETCSYMLINK 
/usr/local/openssl/cert.pem is the default location for security/openssl
so it should be handled just like /etc/ssl/cert.pem base OpenSSL. To
avoid having samples and copies with differing contents point both files
to the actual /usr/local/etc/ssl/cert.pem created by the sample. If users
have set their own content that is likely intended and should be enforced
across all three files.

MFH:		2025Q1
PR:		283161
Differential Revision:	https://reviews.freebsd.org/D47908
2025-02-17 13:12:15 +01:00

8 lines
300 B
Plaintext
Raw Permalink Blame History

%%CERTDIR%%/ca-root-nss.crt
@sample etc/ssl/cert.pem.sample
%%ETCSYMLINK%%openssl/cert.pem
%%ETCSYMLINK%%/etc/ssl/cert.pem
@postexec certctl rehash
@postunexec certctl rehash
@postexec [ ! -e %%LOCALBASE%%/bin/cert-sync ] || %%LOCALBASE%%/bin/cert-sync --quiet %%PREFIX%%/share/certs/ca-root-nss.crt
Reference in New Issue View Git Blame Copy Permalink