Page MenuHomeFreeBSD

certctl: Add an option to copy files.
ClosedPublic

Authored by des on Jul 17 2025, 2:26 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sun, Oct 12, 9:23 PM
Unknown Object (File)
Sun, Oct 12, 9:23 PM
Unknown Object (File)
Sun, Oct 12, 9:23 PM
Unknown Object (File)
Sun, Oct 12, 9:49 AM
Unknown Object (File)
Thu, Oct 9, 8:42 PM
Unknown Object (File)
Sat, Oct 4, 11:35 AM
Unknown Object (File)
Fri, Oct 3, 10:19 AM
Unknown Object (File)
Thu, Oct 2, 6:59 AM
Subscribers

Details

Summary

This is slower than linking but is the only method that works for all
cases, including running certctl from outside a jail that does not
contain the raw certificate data.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

des requested review of this revision.Jul 17 2025, 2:26 PM

Looks good. What would happen if someone copies the certs and then later links them - will the copies be removed and replaced with links?

This revision is now accepted and ready to land.Jul 17 2025, 3:50 PM
In D51373#1173281, @dfr wrote:

Looks good. What would happen if someone copies the certs and then later links them - will the copies be removed and replaced with links?

Yes, certctl always starts out by emptying the hash directory.

This revision was automatically updated to reflect the committed changes.