Re: Enabling SSL in pkg_install

To: Jason Bacon <bacon4000%gmail.com@localhost>
Subject: Re: Enabling SSL in pkg_install
From: Jonathan Perkin <jperkin%joyent.com@localhost>
Date: Thu, 25 Jan 2018 22:47:52 +0000

* On 2018-01-25 at 21:58 GMT, Jason Bacon wrote:

> I'd like to use https with pkgin but...
> 
> [root@unixdev2 bacon]# pkgin avail
> reading local summary...
> processing local summary...
> SSL support disabled
> SSL support disabled
> SSL support disabled
> pkgin: Could not fetch
> https://mirror1.hpc.uwm.edu/pkgsrc/packages/usr/pkg/RHEL7/All/pkg_summary.gz
> 
> The problem appears to be in pkg_install.  What's the canonical way to
> enable SSL during bootstrap?
> 
> Just add openssl to PKG_DEFAULT_OPTIONS or PKG_OPTIONS.libfetch?

You can't do it during bootstrap if you use openssl from pkgsrc as
bootstrap doesn't support building security/openssl, but you can
rebuild pkg_install afterwards with the ssl option enabled and then
use that package in your bootstrap kit, which is what we do.

I also use

  https://github.com/joyent/pkgsrc/commit/98f279b475e9f1850cea14df4fe80af92cee2ec0

which, yes, is a hack, but there are too many corner cases where
linking pkg_install against pkgsrc openssl will screw you (think
through what happens when you upgrade openssl...)

-- 
Jonathan Perkin  -  Joyent, Inc.  -  www.joyent.com

Follow-Ups:
- Re: Enabling SSL in pkg_install
  - From: Jason Bacon
- Re: Enabling SSL in pkg_install
  - From: Jason Bacon

References:
- Enabling SSL in pkg_install
  - From: Jason Bacon

Prev by Date: Re: Enabling SSL in pkg_install
Next by Date: daily pkgsrc CVS update output
Previous by Thread: Re: Enabling SSL in pkg_install
Next by Thread: Re: Enabling SSL in pkg_install
Indexes:

Home | Main Index | Thread Index | Old Index