installworld: run certctl rehash after we've installed
ClosedPublic
Actions

Authored by kevans on Apr 30 2020, 8:17 PM.

Tags

None

Referenced Files

	F132538818: D24641.id.diff
	Fri, Oct 17, 7:25 PM

	F132533362: D24641.id71208.diff
	Fri, Oct 17, 6:17 PM

	F132520784: D24641.id71578.diff
	Fri, Oct 17, 3:18 PM

	F132520084: D24641.id71578.diff
	Fri, Oct 17, 3:07 PM

	F132517135: D24641.id71208.diff
	Fri, Oct 17, 2:27 PM

	F132515712: D24641.diff
	Fri, Oct 17, 2:07 PM

	Unknown Object (File)
	Fri, Oct 17, 8:49 AM

	Unknown Object (File)
	Fri, Oct 17, 8:49 AM

View All 62 Files

Subscribers

emaste

imp

Details

Reviewers

allanjude
bdrewery

Commits

rS360833: installworld: attempt a certctl rehash at the tail end

Summary

This can be run as root or normal user with no problem; if they hadn't twisted the WITHOUT_CAROOT knob, we'll attempt to use the host certctl to rehash the DESTDIR. This would allow one to build systems WITHOUT_OPENSSL + WITH_CAROOT with a populated /etc/ssl that they can then use with an appropriate *ssl from somewhere else.

Currently, I am not asking to make certctl+openssl+libs a bootstrap-tool, as I don't think this will be a common issue; we'll just let those folks that don't have a host certctl know that we're not rehashing so that they can take later action if they so desire.