With the certctl patch on the table, I think it will be possible for
anybody who wants to
install mozilla-rootcerts
change certctl.conf to point to it
and get what abs@ wants for updates (which is different that everybody
getting it by default).
I am now in the "this is not really different
Taylor R Campbell writes:
> This is exactly what you get if you populate a directory
> /usr/local/mycerts with the .pem certificates you want and then add
> the line
>
> path /usr/local/mycerts
>
> to /etc/openssl/certs.conf, alongside the line
>
> path /usr/share/certs/mozilla/server
>
> which
On Mon, Aug 21, 2023 at 05:57:31AM -0400, Greg Troxel wrote:
> But interesting point about not having a proper destdir, and the
> presence of stub libraries.
That part is pretty simple: just download the comp.tgz set for the target and
extract only a few paths from it, like:
./lib/
Chris Hanson writes:
> On Aug 5, 2023, at 12:11 PM, Greg Troxel wrote:
>>
>> As for 'external SDK', that would be "install some other OS and cross
>> build", but when you cross build for android or ios, you do that from a
>> system which is a full install.
>
> This isn’t the case for the Apple
> Date: Sun, 20 Aug 2023 22:32:38 +0100
> From: David Brownlee
>
> There was a previous thread that mooted the idea of using the project
> built mozilla-rootcerts packages (which are just tarfiles) as the
> source for some mechanism to populate on-system certificates, such as
> your proposed