[pkgsrc/trunk]: pkgsrc/security/mozilla-rootcerts Revert touching of openssl ...

[gdt <gdt%pkgsrc.org@localhost>]

details:   https://anonhg.NetBSD.org/pkgsrc/rev/8a2a9bc4ca64
branches:  trunk
changeset: 363940:8a2a9bc4ca64
user:      gdt <gdt%pkgsrc.org@localhost>
date:      Mon Jun 19 00:37:48 2017 +0000

description:
Revert touching of openssl config file

Earlier, code was added to "touch $conffile" to work around openssl
issuing a warning if openssl.conf was not present.  This is
problematic because if the warning is appropriate, 1) we have no way
of knowing that an empty config file is correct and 2) we should not
silence it.  If the warning is buggy, then openssl and/or the base
system should be fixed.  Further, this code changes the modification
date of the config file on every run, even when there is a valid
config file.

(There was no discussion prior, three objections and no concurrences,
and no response, so reverting seems ok.)

diffstat:

 security/mozilla-rootcerts/Makefile                   |   4 ++--
 security/mozilla-rootcerts/files/mozilla-rootcerts.sh |  16 +---------------
 2 files changed, 3 insertions(+), 17 deletions(-)

diffs (52 lines):

diff -r c11e4db7df29 -r 8a2a9bc4ca64 security/mozilla-rootcerts/Makefile
--- a/security/mozilla-rootcerts/Makefile       Mon Jun 19 00:32:37 2017 +0000
+++ b/security/mozilla-rootcerts/Makefile       Mon Jun 19 00:37:48 2017 +0000
@@ -1,7 +1,7 @@
-# $NetBSD: Makefile,v 1.28 2017/06/19 00:32:37 gdt Exp $
+# $NetBSD: Makefile,v 1.29 2017/06/19 00:37:48 gdt Exp $
 
 DISTNAME=      mozilla-rootcerts-1.0.${CERTDATA_DATE}
-PKGREVISION=   4
+PKGREVISION=   5
 CATEGORIES=    security
 MASTER_SITES=  -https://hg.mozilla.org/mozilla-central/raw-file/052b90b5414f/security/nss/lib/ckfw/builtins/certdata.txt
 DISTFILES=     ${CERTDATA}
diff -r c11e4db7df29 -r 8a2a9bc4ca64 security/mozilla-rootcerts/files/mozilla-rootcerts.sh
--- a/security/mozilla-rootcerts/files/mozilla-rootcerts.sh     Mon Jun 19 00:32:37 2017 +0000
+++ b/security/mozilla-rootcerts/files/mozilla-rootcerts.sh     Mon Jun 19 00:37:48 2017 +0000
@@ -1,6 +1,6 @@
 #!/bin/sh
 #
-# $NetBSD: mozilla-rootcerts.sh,v 1.16 2017/06/19 00:32:37 gdt Exp $
+# $NetBSD: mozilla-rootcerts.sh,v 1.17 2017/06/19 00:37:48 gdt Exp $
 #
 # This script is meant to be used as follows:
 #
@@ -23,7 +23,6 @@
 certfile="@DATADIR@/certdata.txt"
 certdir=${SSLDIR}/certs
 destdir=
-conffile="@SSLDIR@/openssl.cnf"
 
 usage()
 {
@@ -188,19 +187,6 @@
        }'
        ;;
 install)
-       # \todo This is attempting to work around a warning from
-       # openssl being run without a config file.  Hoever, that's
-       # behavior in openssl and/or the base system, which if it
-       # needs fixing should be fixed there.  Touching the config
-       # file is problematic because it is a further violation of the
-       # notion that packages install files under PREFIX and only
-       # touch their own config files.  It is further problematic
-       # because it changes the modification date on config files
-       # which exist.
-       if [ `uname -s` = "NetBSD" ]; then
-               # quell warnings for a missing config file
-               touch $destdir$conffile
-       fi
        # Insist on e.g. /etc/openssl/certs existing.
        if [ ! -d $destdir$certdir ]; then
                ${ECHO} 1>&2 "ERROR: $destdir$certdir does not exist, aborting."