Re: CVS commit: pkgsrc/security/mozilla-rootcerts

To: pkgsrc-changes%NetBSD.org@localhost
Subject: Re: CVS commit: pkgsrc/security/mozilla-rootcerts
From: Leonardo Taccari <leot%NetBSD.org@localhost>
Date: Fri, 27 Mar 2020 15:18:05 +0100

Greg Troxel writes:
> [...]
> I think we should delete MESSAGE then (not right now).  The bit about
> gnupg belongs as documentation, not MESSAGE, because it is mere
> configuration information and not execptional.  More importantly, the
> code should be hoisted into a mozilla-rootcerts-gnupg2 packge, just like
> the -openssl one.   We should probabl also have a -gnutls version.
> [...]

At the moment gnutls hardcodes the default trust store and explicitly
depends on mozilla-rootcerts (yes, probably that's a bug but not
passing `--with-default-trust-store-file=' configure argument leads to
a gnutls package that honors possible trust store in
not-completely-predictable way depending on the configure logic
auto-guessing).

What a mozilla-rootcerts-gnutls should do/provide?

On the other hand, if there are other CAs collection and someone is
interested a generic "rootcerts" meta-package could be interesting to
permit the user to select their favourite rootcerts (maybe similar to
what is done for ghostscript).

Follow-Ups:
- Re: CVS commit: pkgsrc/security/mozilla-rootcerts
  - From: Greg Troxel

References:
- CVS commit: pkgsrc/security/mozilla-rootcerts
  - From: Greg Troxel
- Re: CVS commit: pkgsrc/security/mozilla-rootcerts
  - From: Jonathan Perkin
- Re: CVS commit: pkgsrc/security/mozilla-rootcerts
  - From: Greg Troxel

Prev by Date: Re: CVS commit: pkgsrc/security/mozilla-rootcerts
Next by Date: Re: CVS commit: pkgsrc/security/mozilla-rootcerts
Previous by Thread: Re: CVS commit: pkgsrc/security/mozilla-rootcerts
Next by Thread: Re: CVS commit: pkgsrc/security/mozilla-rootcerts
Indexes:

Home | Main Index | Thread Index | Old Index