Setting fetch environment in pkg.conf (pkgng)

Baptiste Daroussin bapt at FreeBSD.org
Sat Apr 13 20:10:44 UTC 2013


On Sat, Apr 13, 2013 at 09:48:39PM +0200, Michael Gmelin wrote:
> Hi,
> 
> I recently converted a host from to pkgng and getting the following
> error:
> 
> Checking for packages with security vulnerabilities:
> pkg: http://portaudit.FreeBSD.org/auditfile.tbz: No route to host
> pkg: Cannot fetch audit file!
> 
> Portaudit was configured to use a proxy
> in /usr/local/etc/portaudit.conf:
> 
> portaudit_fetch_env="HTTP_PROXY=http://192.168.1.2:8080/"
> 
> I'm aware that pkg uses libfetch directly, but since most
> configuration in libfetch happens through setting environment
> variables, it would be great if it could be set before calls to
> libfetch's fetchGet* functions instead of setting it in the
> environment used (modify cron jobs etc.). Since there are different
> applications for fetch in pkg I would suggest the following settings
> (examples):
> 
> # environment for fetching auditfile (pkg-audit(8))
> audit_fetch_env = "HTTP_PROXY=http://192.168.1.2:8080/"
> 
> # environment for talking to the repo (pkg-update(8), pkg-upgrade(8)...)
> repo_fetch_env = "SSL_CLIENT_KEY_FILE=/etc/ssl/pkgclient01.key \
>                   SSL_CLIENT_CERT_FILE=/etc/ssl/pkgclient01.crt \
>                   SSL_CA_CERT_FILE=/etc/ssl/pkgmaster.pem"
> 
> In case there are other uses of libfetch in the code, further settings
> could be added - also for talking to multiple repositories.
> 
> Thoughts?
> 

Just add HTTP_PROXY=... in pkg.conf and pkgng will do it :)

regards,
Bapt
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 196 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20130413/9923b4d8/attachment.sig>


More information about the freebsd-ports mailing list