make-ca: add manpage.patch

make-ca/.md5sum

@@ -1 +1,2 @@
 1af805d92b55091b5f11fd7db77c9b0e  make-ca-1.15.tar.gz
+07a0a974e9ed50a26bc13d9f36181a00  manpage.patch

make-ca/Pkgfile

@@ -4,7 +4,8 @@
 name=make-ca
 version=1.15
 release=1
-source=https://github.com/lfs-book/$name/archive/v$version/$name-$version.tar.gz
+source="https://github.com/lfs-book/$name/archive/v$version/$name-$version.tar.gz
+	manpage.patch"
 
 build() {
 	cd $name-$version
@@ -13,4 +14,8 @@ build() {
 
 	make V=1
 	make DESTDIR=$PKG install
+
+	# The manual page is generated by help2man perl script, so apply the
+	# patch after install.
+	patch -Np1 -i $SRC/manpage.patch $PKG/usr/share/man/man8/$name.8
 }

make-ca/manpage.patch

@@ -0,0 +1,130 @@
+--- make-ca.8.orig	2025-02-10 01:26:55.716859868 +0200
++++ make-ca.8	2025-02-10 01:33:23.239338783 +0200
+@@ -1,7 +1,9 @@
+-.\" DO NOT MODIFY THIS FILE!  It was generated by help2man 1.47.4.
+-.TH MAKE-CA "8" "February 2025" "make-ca 1.15" "System Administration Utilities"
++.TH MAKE-CA "8" "" "" "System Administration Utilities"
+ .SH NAME
+-make-ca \- manual page for make-ca 1.15
++make-ca \- deliver and manage a complete PKI configuration
++.SH SYNOPSYS
++.B make-ca
++[OPTIONS]
+ .SH DESCRIPTION
+ make\-ca is a utility to deliver and manage a complete PKI configuration
+ for workstations and servers using only standard GNU utilities, OpenSSL, and
+@@ -9,91 +11,90 @@
+ using a Mozilla cacerts.txt or like formatted file. It was originally developed
+ for use with Linux From Scratch to minimize dependencies for early system
+ build, but has been written to be generic enough for any Linux distribution.
++.SH OPTIONS
+ .TP
+ \fB\-C\fR, \fB\-\-certdata\fR [certdata.txt]
+-The location of the certificates source
++The location of the certificates source.
+ .TP
+ \fB\-D\fR, \fB\-\-destdir\fR [/]
+ Change the output directory and use relative
+-paths for all other values
++paths for all other values.
+ .TP
+ \fB\-P\fR, \fB\-\-pkidir\fR [/etc/pki]
+ The output PKI root directory \- Cannot be used
+ with the \fB\-a\fR / \fB\-\-anchordir\fR or
+-\fB\-n\fR / \fB\-\-nssdb\fR switches
++\fB\-n\fR / \fB\-\-nssdb\fR switches.
+ .TP
+ \fB\-S\fR, \fB\-\-ssldir\fR [/etc/ssl]
+ The output SSL root direcotry \- Cannot be used
+-with the \fB\-d\fR / \fB\-\-cadir\fR switch
++with the \fB\-d\fR / \fB\-\-cadir\fR switch.
+ .TP
+ \fB\-a\fR, \fB\-\-anchordir\fR [$PKIDIR/anchors]
+-The output directory for .p11\-kit trust anchors
++The output directory for .p11\-kit trust anchors.
+ .TP
+ \fB\-b\fR, \fB\-\-bundledir\fR [$PKIDIR/certs]
+ The output direcotry for the PEM formated
+-bundles
++bundles.
+ .TP
+ \fB\-d\fR, \fB\-\-cadir\fR [$SSLDIR/certs]
+ The output directory for the OpenSSL trusted
+-CA certificates
++CA certificates.
+ .TP
+ \fB\-j\fR, \fB\-\-javacerts\fR [$PKIDIR/java/cacerts]
+ The output directory for the Java cacerts
+-file(s)
++file(s).
+ .TP
+ \fB\-l\fR, \fB\-\-localdir\fR [$SSLDIR/local]
+ The path to a local set of OpenSSL trusted
+ certificates, used to both override trust bits
+ from upstream source and provide system local
+-certifiates
++certifiates.
+ .TP
+ \fB\-m\fR, \fB\-\-java\-p12\fR
+ Export Java PKCS#12 store \- this will default to
+ \fI\,$PKIDIR/java/cacerts.p12\/\fP unless modified by
+-the '\-j/\-\-javacerts' switch
++the '\-j/\-\-javacerts' switch.
+ .TP
+ \fB\-n\fR, \fB\-\-nssdb\fR {$PKIDIR/nssdb}
+-The output path for the shared NSS DB
++The output path for the shared NSS DB.
+ .TP
+ \fB\-p\fR, \fB\-\-proxy\fR [URI:PORT]
+-Use proxy server for download
++Use proxy server for download.
+ .TP
+ \fB\-k\fR, \fB\-\-keytool\fR [$JAVA_HOME/bin/keytool]
+-The path of the Java keytool utility
++The path of the Java keytool utility.
+ .TP
+ \fB\-s\fR, \fB\-\-openssl\fR [/usr/bin/openssl]
+-The path of the openssl utility
++The path of the openssl utility.
+ .TP
+ \fB\-t\fR, \fB\-\-certutil\fR [/usr/bin/certutil]
+-The path of the NSS certutil utility
++The path of the NSS certutil utility.
+ .TP
+ \fB\-u\fR, \fB\-\-trust\fR [/usr/bin/trust]
+-The path of the p11\-kit trust utility
++The path of the p11\-kit trust utility.
+ .TP
+ \fB\-i\fR, \fB\-\-mscodesign\fR
+ Use Microsoft's trust values for code singing
+-You must copy \fI\,/etc/make\-ca/CS.txt\/\fP to $SSLDIR
++You must copy \fI\,/etc/make\-ca/CS.txt\/\fP to $SSLDIR.
+ .TP
+ \fB\-f\fR, \fB\-\-force\fR
+-Force run, even if source is not newer
++Force run, even if source is not newer.
+ .TP
+ \fB\-g\fR, \fB\-\-get\fR
+ Download certdata.txt directly from Mozilla's
+-Mecurial server
++Mecurial server.
+ .TP
+ \fB\-h\fR, \fB\-\-help\fR
+-Show this help message and exit
++Show help message and exit.
+ .TP
+ \fB\-r\fR, \fB\-\-rebuild\fR
+ Rebuild the entire PKI tree using the previous
+-certdata.txt file
++certdata.txt file.
+ .TP
+ \fB\-v\fR. \fB\-\-version\fR
+-Show version information and exit
++Show version information and exit.
+ .PP
+ Example: make\-ca \fB\-f\fR \fB\-C\fR \fI\,~/certdata.txt\/\fP
+-.SH SYNOPSYS
+-make-ca -g
+ .SH EXAMPLES
+ The make-ca script will process the certificates included in the certdata.txt
+ file, and place them in the system trust anchors, for use in multiple