Date: Thu, 8 Feb 2018 19:35:55 -0500 From: Jung-uk Kim <jkim@FreeBSD.org> To: Ian Lepore <ian@freebsd.org>, bsd-lists@BSDforge.com, FreeBSD-current <freebsd-current@freebsd.org> Subject: Re: openssl in base should install c_rehash Message-ID: <250d888c-2c9b-553d-7d19-9dc03cd94713@FreeBSD.org> In-Reply-To: <1518133887.32585.110.camel@freebsd.org> References: <2647c9a31e203a8891637aaa89462afe@udns.ultimatedns.net> <9306ff93-e606-c958-655b-1e12ddf9c579@FreeBSD.org> <1518133887.32585.110.camel@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --m3RUgdgybGv8OHDLqLYQ9lmjv8AszSMF5 Content-Type: multipart/mixed; boundary="2R7oQMRPn3SajJ4i3hBtxsSseEGAscT2w"; protected-headers="v1" From: Jung-uk Kim <jkim@FreeBSD.org> To: Ian Lepore <ian@freebsd.org>, bsd-lists@BSDforge.com, FreeBSD-current <freebsd-current@freebsd.org> Message-ID: <250d888c-2c9b-553d-7d19-9dc03cd94713@FreeBSD.org> Subject: Re: openssl in base should install c_rehash References: <2647c9a31e203a8891637aaa89462afe@udns.ultimatedns.net> <9306ff93-e606-c958-655b-1e12ddf9c579@FreeBSD.org> <1518133887.32585.110.camel@freebsd.org> In-Reply-To: <1518133887.32585.110.camel@freebsd.org> --2R7oQMRPn3SajJ4i3hBtxsSseEGAscT2w Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: quoted-printable On 02/08/2018 18:51, Ian Lepore wrote: > On Thu, 2018-02-08 at 17:47 -0500, Jung-uk Kim wrote: >> On 02/08/2018 17:31, Chris H wrote: >>> >>> [...] >>> Couldn't this be in $base? I'd like to vote yes. :-) >> From OpenSSL 1.1.0, openssl(1) added "rehash" command. >> >> https://www.openssl.org/docs/man1.1.0/apps/rehash.html >> >> I don't think we need yet another implementation in the base. >=20 > But on a machine I just set up last weekend using -current I get: >=20 > ian@th > openssl rehash > openssl:Error: 'rehash' is an invalid command. > ian@th > openssl version > OpenSSL 1.0.2n-freebsd=C2=A0=C2=A07 Dec 2017 >=20 > Are we going to update to 1.1.0 soon? When I find some free time. I don't know how "soon", however. > If not, how does it help that a version we don't use has rehash > built in? We will have the feature when we import OpenSSL 1.1.0. Knowing that it is obsoleted by the upstream, I don't want to add an equivalent script in the base. If it is really necessary, you can always install the c_rehash script (security/openssl), openssl with rehash command (security/openssl-devel), openssl with certhash command (security/libressl), etc. from the ports tree. BTW, we never had it in the base and it was removed from head src tree more than 5 years ago. Why is it so important now? :-( Jung-uk Kim --2R7oQMRPn3SajJ4i3hBtxsSseEGAscT2w-- --m3RUgdgybGv8OHDLqLYQ9lmjv8AszSMF5 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEEl1bqgKaRyqfWXu/CfJ+WJvzb8UYFAlp87OsACgkQfJ+WJvzb 8Uan/Af/Rd7ZFyyW2A1xfnwHPsYI5Yp0szG9evLWdwYAlukYbccdpci91H7z5xmp 7gH9IESX7h03uMDF5OJ+je1Wh7gXH5xijtQv5W94JMWqDo9iKN4KUGMHC10/WpUh VOEAC5CWESmnpr390VFJ63NjzDvIzpy8jtXzSV0QyX7OM04D2CYOgwFyR5Og7C/A QEBk2fIlsNRntp+aS47gObV+nD0zWo2NzylnecjdsLIUMYXMwT07hRaSlYJU8Oiq DLMJevHvK1KZo4wBy3LGTo77T5DaRRTka4GezYRyD1KztFh+PkPu+Re6+EGEF4LN XfnMzYLo1/OVUlvq5/5j9g8/QVqNkw== =kNHF -----END PGP SIGNATURE----- --m3RUgdgybGv8OHDLqLYQ9lmjv8AszSMF5--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?250d888c-2c9b-553d-7d19-9dc03cd94713>