pkgsrc.se | The NetBSD package collection

./security/ca-certificates, Root CA certificates from the Mozilla Project

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 20230311, Package name: ca-certificates-20230311, Maintainer: pkgsrc-users

This package contains the update-ca-certificates(8) tool maintained by
the Debian Project (in the ca-certificates package they distribute) to
manage the set of configured trust anchors for openssl.

The ca-certificates framework enables the sysadmin to configure the
certificates to install, using multiple sources of CA certificates, for
example to include local CAs. See update-ca-certificates(8) for details.

This package also contains the certificate authorities shipped with
Mozilla's browser to allow SSL-based applications to check for the
authenticity of SSL connections.

Please note that Debian, NetBSD, and pkgsrc can neither confirm nor deny
whether the certificate authorities whose certificates are included in
this package have in any way been audited for trustworthiness or RFC
3647 compliance. Full responsibility to assess them belongs to the
local system administrator.

See also the mozilla-rootcerts and mozilla-rootcerts-openssl packages
for alternative approaches to installing CA certificates.

Required to run:
[security/openssl]

Required to build:
[pkgtools/cwrappers] [lang/python37]

Master sites:

http://deb.debian.org/debian/pool/main/c/ca-certificates/ (Download)

Filesize: 251.73 KB

Version history: (Expand)

(2023-05-21) Updated to version: ca-certificates-20230311
(2022-07-17) Updated to version: ca-certificates-20211016nb4
(2022-06-12) Updated to version: ca-certificates-20211016nb3
(2022-02-28) Updated to version: ca-certificates-20211016nb1
(2020-10-13) Updated to version: ca-certificates-20200601nb1
(2020-06-08) Updated to version: ca-certificates-20200601

CVS history: (Expand)

2023-05-21 18:33:50 by Kimmo Suominen | Files touched by this commit (5)

Log message:
ca-certificates: Update to 20230311

ca-certificates (20230311) unstable; urgency=medium

  [ Đoàn Trần Công Danh ]
  * ca-certificates: compat with non-GNU mktemp (closes: #1000847)

  [ Ilya Lipnitskiy ]
  * certdata2pem.py: use UTC time when checking cert validity

  [ Julien Cristau ]
  * Update Mozilla certificate authority bundle to version 2.60
    The following certificate authorities were added (+):
    + "Autoridad de Certificacion Firmaprofesional CIF A62634068"
    + "Certainly Root E1"
    + "Certainly Root R1"
    + "D-TRUST BR Root CA 1 2020"
    + "D-TRUST EV Root CA 1 2020"
    + "DigiCert TLS ECC P384 Root G5"
    + "DigiCert TLS RSA4096 Root G5"
    + "E-Tugra Global Root CA ECC v3"
    + "E-Tugra Global Root CA RSA v3"
    + "HARICA TLS ECC Root CA 2021"
    + "HARICA TLS RSA Root CA 2021"
    + "HiPKI Root CA - G1"
    + "ISRG Root X2"
    + "Security Communication ECC RootCA1"
    + "Security Communication RootCA3"
    + "Telia Root CA v2"
    + "TunTrust Root CA"
    + "vTrus ECC Root CA"
    + "vTrus Root CA"
    The following certificate authorities were removed (-):
    - "Cybertrust Global Root" (expired)
    - "EC-ACC"
    - "GlobalSign Root CA - R2" (expired)
    - "Hellenic Academic and Research Institutions RootCA 2011"
    - "Network Solutions Certificate Authority"
    - "Staat der Nederlanden EV Root CA" (expired)
  * Drop trailing space from debconf template causing misformatting
    (closes: #980821)

  [ Wataru Ashihara ]
  * Make certdata2pem.py compatible with cryptography >= 35 (closes: #1008244)

 -- Julien Cristau <jcristau@debian.org>  Sat, 11 Mar 2023 09:47:05 +0100

2022-10-19 15:56:34 by Nia Alarie | Files touched by this commit (26)

Log message:
fighting a losing battle against py-cryptography rustification, part 2

Switch users to versioned_dependencies.mk.

2022-07-17 04:58:32 by Tobias Nygren | Files touched by this commit (3)

Log message:
ca-certificates: try to mend py-cryptography fallout

2022-07-09 11:38:57 by Thomas Klausner | Files touched by this commit (1)

Log message:
ca-certificates: this does not support python 2

2022-06-12 09:05:30 by Kimmo Suominen | Files touched by this commit (7)

Log message:
security/ca-certificates: Add configurability for certificate store

- The location of the system certificate store can now be set using
  a new configuration file (ca-certificates-dir.conf).

- Installing the certificates to the system certificate store must
  be enabled by the administrator.

2022-06-10 15:14:10 by Greg Troxel | Files touched by this commit (1)

Log message:
security/ca-certificates: Clarify and adjust language

Point out that this is from Debian and that Debian's policy is unclear
(it's not on HOMEPAGE at least; they probably do have one).

Note that modification outside of the package's files is either to
base or to pkgsrc openssl.

Clarify that there's a supported way to exclude particular certs as
trust anchors.

2022-04-21 13:00:02 by Thomas Klausner | Files touched by this commit (18)

Log message:
*: convert to versioned_dependencies for py-cryptography

2022-02-28 07:46:52 by Kimmo Suominen | Files touched by this commit (3)

Log message:
security/ca-certificates: Fix mktemp usage