Page MenuHomeFreeBSD

installworld: run certctl rehash after we've installed
ClosedPublic

Authored by kevans on Apr 30 2020, 8:17 PM.
Tags
None
Referenced Files
F132520784: D24641.id71578.diff
Fri, Oct 17, 3:18 PM
F132520084: D24641.id71578.diff
Fri, Oct 17, 3:07 PM
F132517135: D24641.id71208.diff
Fri, Oct 17, 2:27 PM
F132515712: D24641.diff
Fri, Oct 17, 2:07 PM
F132490189: D24641.id.diff
Fri, Oct 17, 8:49 AM
F132490184: D24641.id71208.diff
Fri, Oct 17, 8:49 AM
F132490180: D24641.id71578.diff
Fri, Oct 17, 8:48 AM
F132438452: D24641.diff
Thu, Oct 16, 11:04 PM
Subscribers

Details

Summary

This can be run as root or normal user with no problem; if they hadn't twisted the WITHOUT_CAROOT knob, we'll attempt to use the host certctl to rehash the DESTDIR. This would allow one to build systems WITHOUT_OPENSSL + WITH_CAROOT with a populated /etc/ssl that they can then use with an appropriate *ssl from somewhere else.

Currently, I am not asking to make certctl+openssl+libs a bootstrap-tool, as I don't think this will be a common issue; we'll just let those folks that don't have a host certctl know that we're not rehashing so that they can take later action if they so desire.

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

This revision was not accepted when it landed; it landed in state Needs Review.May 9 2020, 2:01 AM
This revision was automatically updated to reflect the committed changes.