pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/trunk]: pkgsrc/security/gnutls gnutls: Add a dependency to mozilla-ro...

details:   https://anonhg.NetBSD.org/pkgsrc/rev/48a09da69ec6
branches:  trunk
changeset: 316437:48a09da69ec6
user:      leot <leot%pkgsrc.org@localhost>
date:      Thu Dec 13 00:10:12 2018 +0000

description:
gnutls: Add a dependency to mozilla-rootcerts and configure to use them

Without providing `--with-default-trust-store-file=' configure
argument gnutls try to check a list of hardcoded paths for the
trust store file and use the first found.

If none of them is found gnutls_certificate_set_x509_system_trust()
returns GNUTLS_E_UNIMPLEMENTED_FEATURE and the location of trust
store file should be provided (e.g. in gnutls-cli via --x509cafile
option).

Depends on mozilla-rootcerts and pass `--with-default-trust-store-file='
similarly to security/p11-kit to always have a consistent default
trust store file and an implemented
gnutls_certificate_set_x509_system_trust().

Bump PKGREVISION

diffstat:

 security/gnutls/Makefile |  6 +++++-
 1 files changed, 5 insertions(+), 1 deletions(-)

diffs (29 lines):

diff -r cbaef28bb562 -r 48a09da69ec6 security/gnutls/Makefile
--- a/security/gnutls/Makefile  Wed Dec 12 22:29:36 2018 +0000
+++ b/security/gnutls/Makefile  Thu Dec 13 00:10:12 2018 +0000
@@ -1,6 +1,7 @@
-# $NetBSD: Makefile,v 1.192 2018/12/09 20:12:41 leot Exp $
+# $NetBSD: Makefile,v 1.193 2018/12/13 00:10:12 leot Exp $
 
 DISTNAME=      gnutls-3.6.5
+PKGREVISION=   1
 CATEGORIES=    security devel
 MASTER_SITES=  ftp://ftp.gnutls.org/gcrypt/gnutls/v3.6/
 EXTRACT_SUFX=  .tar.xz
@@ -10,6 +11,8 @@
 COMMENT=       GNU Transport Layer Security library
 LICENSE=       gnu-gpl-v3 AND gnu-lgpl-v2.1
 
+DEPENDS+=      mozilla-rootcerts-[0-9]*:../../security/mozilla-rootcerts
+
 USE_LANGUAGES=                 c c++
 USE_LIBTOOL=                   yes
 USE_PKGLOCALEDIR=              yes
@@ -22,6 +25,7 @@
 CONFIGURE_ARGS+=               --without-idn
 CONFIGURE_ARGS+=               --without-tpm
 CONFIGURE_ARGS+=               --disable-valgrind-tests
+CONFIGURE_ARGS+=               --with-default-trust-store-file=${PREFIX}/share/mozilla-rootcerts/cacert.pem
 CONFIGURE_ARGS+=               --with-libintl-prefix=${BUILDLINK_PREFIX.gettext}
 CONFIGURE_ARGS+=               --enable-local-libopts
 # Assembler support is broken for SunOS in 3.2.9.
Home | Main Index | Thread Index | Old Index