From owner-freebsd-ports@freebsd.org Wed Aug 5 22:18:06 2015 Return-Path: Delivered-To: freebsd-ports@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id D07FA9B3089 for ; Wed, 5 Aug 2015 22:18:06 +0000 (UTC) (envelope-from david@catwhisker.org) Received: from albert.catwhisker.org (mx.catwhisker.org [198.144.209.73]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 5022FE8A for ; Wed, 5 Aug 2015 22:18:04 +0000 (UTC) (envelope-from david@catwhisker.org) Received: from albert.catwhisker.org (localhost [127.0.0.1]) by albert.catwhisker.org (8.15.2/8.15.2) with ESMTP id t75MHruE046663; Wed, 5 Aug 2015 15:17:53 -0700 (PDT) (envelope-from david@albert.catwhisker.org) Received: (from david@localhost) by albert.catwhisker.org (8.15.2/8.15.2/Submit) id t75MHqmd046662; Wed, 5 Aug 2015 15:17:52 -0700 (PDT) (envelope-from david) Date: Wed, 5 Aug 2015 15:17:52 -0700 From: David Wolfskill To: Kevin Oberman Cc: FreeBSD Ports ML Subject: Re: Unable to relocate to new svn URL Message-ID: <20150805221752.GF1056@albert.catwhisker.org> References: MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="r5zNLCKCFspl+eMg" Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.23 (2014-03-12) X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 05 Aug 2015 22:18:06 -0000 --r5zNLCKCFspl+eMg Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Aug 05, 2015 at 03:07:04PM -0700, Kevin Oberman wrote: > ... > > Which version of ca_root_nss do you have? Mine is 3.19.1_1, and it > > definitely has the above root CA in /etc/ssl/cert.pem. > > > > -Dimitry > > >=20 > Thanks for the quick response! I'm still confused, though. >=20 > I have 3.19.2, so it is just a bit newer. But I don't have > /etc/ssl/cert.pem. The root certs are installed in > /usr/local/share/certs/ca-root-nss.crt. Is something required to get them > into /etc/ssl? I confirm that the fingerprints match. Looks as if the relevant option (on the port) is: ETCSYMLINK=3Doff: Add symlink to /etc/ssl/cert.pem Apparently I had that on at one point (perhaps it was a default), as: g1-245(10.2-P)[7] ls -lT /etc/ssl/cert.pem=20 lrwxr-xr-x 1 root wheel 38 Feb 12 13:17:49 2015 /etc/ssl/cert.pem -> /us= r/local/share/certs/ca-root-nss.crt >... Peace, david --=20 David H. Wolfskill david@catwhisker.org Those who would murder in the name of God or prophet are blasphemous coward= s. See http://www.catwhisker.org/~david/publickey.gpg for my public key. --r5zNLCKCFspl+eMg Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQJ8BAEBCgBmBQJVwouQXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ4RThEMDY4QTIxMjc1MDZFRDIzODYzRTc4 QTY3RjlDOERFRjQxOTNCAAoJEIpn+cje9Bk79mgP/1gnCfnhuty8+F/In3lfnwgy xAGWXVUvJe+EMsAA74s5uBH8QifASFuYhLV4MC3f5Fb5pU3odpyTyylp6Kvg9EX6 xyWNykXJXM2tEzzcyLTDhv6b5EeL2wB+x5yJkpLctMxfW5hFsILDm7O/IEWp9djg 6qLCv+rdseBwA5fEcelc4FU+cZ43u5VtmnpWn56z1rMX3aObF6LKT9cWKglTJc3G uwVthtkhPZ/kH+Th/BOYGHkW2QZllGjj/8OG2Fbvd8uKNWzf7pEZIVFLvpTTlSz0 WO/sRY01roMEkAW4Rt7Z7se/TeRYEp1mKJUqbzrvyQH1B9X8zC/TkFdLKb+KEq/d ehl/oyARyN1+5frfzIWT7JbpFxcj5sX/chAScIBUBewromnvxWQj9j6Uo8ZPo8rx wqMQ1begHpSMVgJTJPyUtAOETt8TWGE9OI+fNotKb0LrwV+nkeSeoiM7cZS+bxZ3 dbGfyumlKM2QBK7k9MWGBaBItANDWZl0C0IX9U8cpUoC7oSDO/59OEItZcCezkeb nPlLQNsjlQnyuHNu+m5Fr2XHp8DCuvP+H0QlWNRaOvySZVSlemKtVsOVR9zjci8C IoB4wmKOhBugM7l5J1FRgSQmlw/tBLh3SzDqNfH2S5DiSyGNfKHz2dm8G2aWndJQ HkCs5HHmaeZsfjzAFOMv =VidL -----END PGP SIGNATURE----- --r5zNLCKCFspl+eMg--