caroot: blacklisted: automatically pick up *.pem in the tree

This kind of automagica got picked up in trusted/ prior to the initial commit, but never got applied over in blacklisted. Ideally no one will be using blacklisted/ to store arbitrary certs that they don't intend to blacklist, so we should just install anything that's in here rather than force consumer to first copy cert into place and then modify the file listing in the Makefile. Wise man once say: "it is better to restrict too much, than not enough. sometimes."
svn path=/head/; revision=357193
2024-10-07 00:50:50 +00:00 · 2020-01-28 03:02:18 +00:00 · 2020-01-28 03:02:18 +00:00 · bb302e707a · 2020-12-20 02:59:44 +00:00
parent c59b9a4f8d
commit bb302e707a
1 changed files with 3 additions and 1 deletions
--- a/secure/caroot/blacklisted/Makefile
+++ b/secure/caroot/blacklisted/Makefile
@ -2,6 +2,8 @@

 BINDIR=		/usr/share/certs/blacklisted

-FILES=
+BLACKLISTED_CERTS!=	ls ${.CURDIR}/*.pem 2> /dev/null || true
+
+FILES+=	 ${BLACKLISTED_CERTS}

 .include <bsd.prog.mk>