Date: Fri, 13 Oct 2023 17:50:58 +0200 From: Guido Falsi <mad@madpilot.net> To: freebsd-current@freebsd.org Subject: Re: issue: poudriere jail update fails after recent changes around certctl Message-ID: <65208074-1dc3-4804-b319-d96fa335dcd1@madpilot.net> In-Reply-To: <86cyxi34wc.fsf@ltc.des.no> References: <7b44912e0d3ff033ab27923aeeae5caf@Leidinger.net> <86cyxi34wc.fsf@ltc.des.no>
next in thread | previous in thread | raw e-mail | index | archive | help
On 13/10/23 17:42, Dag-Erling Smørgrav wrote: > Alexander Leidinger <Alexander@Leidinger.net> writes: >> some change around certctl (world from 2023-10-09) has broken the >> poudriere jail update command. The complete install finishes, certctl >> is run, and then there is an exit code 1. This is because I have some >> certs listed as untrusted, and this seems to give a retval of 1 inside >> certctl. > > This only happens if a certificate is listed as both trusted and > untrusted, and I'm pretty sure the previous version would return 1 in > that case as well. Can you check? > ON an unrelated note, I noticed the new certctl in head requires .pem (and any other extension, if I remember correctly) files to contain a "Certificate:" line. While I have no objection to the requirement, it is not documented in the man page, or anywhere else, I did have to look at the script source to discover this. Maybe a little note about this requirement in the man page should be added. -- Guido Falsi <mad@madpilot.net>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?65208074-1dc3-4804-b319-d96fa335dcd1>