From 6d534d861e5028ae1c5d2d5a6ff48613468d4b8a Mon Sep 17 00:00:00 2001
From: Dominyk Tiller
Date: Mon, 13 Apr 2015 19:42:47 +0100
Subject: gnutls: tweak postinstall

Since we’ve had to stick a temporary patch to OpenSSL’s postinstall
pending Apple’s response on the Equifax situation, GnuTLS which leans
on the OpenSSL formula to do postinstall is blowing up on every
Yosemite test-bot that calls GnuTLS as a dep.

```
==> Downloading
https://www.geotrust.com/resources/root_certificates/certificates/Equifa
x_Secure_Certificate_Authority.pem
Already downloaded:
/Library/Caches/Homebrew/openssl--Equifax_CA-Secure.pem
==> Verifying openssl--Equifax_CA-Secure.pem checksum
==> /usr/local/Cellar/openssl/1.0.2a-1/bin/c_rehash
Failed to execute: /usr/local/Cellar/openssl/1.0.2a-1/bin/c_rehash
Warning: The post-install step did not complete successfully
You can try again using `brew postinstall gnutls`
```

This works around that for now to stop the bot flagging failures
everywhere.

Closes #38619.

Signed-off-by: Mike McQuaid <mike@mikemcquaid.com>
---
 Library/Formula/gnutls.rb | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

(limited to 'Library')

diff --git a/Library/Formula/gnutls.rb b/Library/Formula/gnutls.rb
index c9064bb4a..54bf01d75 100644
--- a/Library/Formula/gnutls.rb
+++ b/Library/Formula/gnutls.rb
@@ -52,7 +52,14 @@ class Gnutls < Formula
   end
 
   def post_install
-    Formula["openssl"].post_install
+    keychains = %w[
+      /Library/Keychains/System.keychain
+      /System/Library/Keychains/SystemRootCertificates.keychain
+    ]
+
+    openssldir = etc/"openssl"
+    openssldir.mkpath
+    (openssldir/"cert.pem").atomic_write `security find-certificate -a -p #{keychains.join(" ")}`
   end
 
   test do
-- 
cgit v1.2.3