./security/mozilla-rootcerts, Root CA certificates from the Mozilla Project

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 1.0.20200529nb1, Package name: mozilla-rootcerts-1.0.20200529nb1, Maintainer: pkgsrc-users

This package provides the certificates distributed by the Mozilla
Project, with the exception of any certificates not globally trusted.

It also provides a script, mozilla-rootcerts, which can be used to
install the root CA certificates distributed by the Mozilla Project
into a location that makes them usable by TLS implementations, extract
them to the current working directory, or rehash the existing
certificates.

NB: This package provides certificates, but does not as a consequence
of installation place them in a location that makes them immediately
usable by SSL/TLS implementations.

Use the 'mozilla-rootcerts install' script or mozilla-rootcerts-openssl
package if you want to use these certificates.


Required to run:
[security/openssl]

Required to build:
[pkgtools/cwrappers]

Master sites:


Version history: (Expand)


CVS history: (Expand)


   2020-06-12 12:37:18 by Maya Rashish | Files touched by this commit (1)
Log message:
mozilla-rootcerts: explain that this package isn't all the mozilla rootcerts
   2020-06-12 12:35:11 by Maya Rashish | Files touched by this commit (5)
Log message:
mozilla-rootcerts*: remove Kamu SM from the list of certificates.

Mozilla only trusts this for Turkish domains, see:
https://wiki.mozilla.org/CA/Additional_Trust_Changes

And users of mozilla-rootcerts likely don't implement the same fine-grained
trust.

Proposed on tech-pkg
   2020-06-03 00:32:02 by Jonathan Perkin | Files touched by this commit (2)
Log message:
mozilla-rootcerts: Ensure script uses correct SH.
   2020-05-31 00:39:08 by Tobias Nygren | Files touched by this commit (3)
Log message:
mozilla-rootcerts: silence pkglint warning about inconsistent patch name
   2020-05-30 14:55:46 by Tobias Nygren | Files touched by this commit (3) | Package updated
Log message:
mozilla-rootcerts: update to 20200529

pkgsrc changes: Delete roots which expired today or earlier:
C = SE, O = AddTrust AB, OU = AddTrust TTP Network, CN = AddTrust Class 1 CA Root
C = SE, O = AddTrust AB, OU = AddTrust External TTP Network, CN = AddTrust \ 
External CA Root
C = NL, O = Staat der Nederlanden, CN = Staat der Nederlanden Root CA - G2

Upstream changes:
1618404 - Set CKA_NSS_SERVER_DISTRUST_AFTER for Symantec root
1621159 - Set CKA_NSS_SERVER_DISTRUST_AFTER for Consorci AOC,
          GRCA, and SK ID root certs. r=jcj
   2020-03-30 18:38:03 by Greg Troxel | Files touched by this commit (2)
Log message:
mozilla-rootcerts: Cope with missing certs dir

While the certs dir should exist, pkg_delete of
mozilla-rootcerts-openssl currently removes it, despite it not having
been created by the corresponding pkg_add.  Instead of failing if the
directory does not exist, simply emit a warning and create it.
   2020-03-27 20:23:43 by Nia Alarie | Files touched by this commit (1)
Log message:
mozilla-rootcerts: Simplify DESCR.

Use the phrase "configuring a trust anchor" less, it won't stop echoing
around my head.
   2020-03-27 19:49:39 by Nia Alarie | Files touched by this commit (1)
Log message:
mozilla-rootcerts: Mention 'mozilla-rootcerts install' in the DESCR

This seems to be a far more common operation than 'extract', I'm slightly
confused why it onlymentions installing to the current working directory.