./security/mozilla-rootcerts-openssl, Wedge for installing and managing mozilla-rootcerts

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 2.7, Package name: mozilla-rootcerts-openssl-2.7, Maintainer: dholland

This package configures the Mozilla rootcerts bundle CAs as trust
anchors in OpenSSL, so that programs using OpenSSL will be able to use
them to validate SSL certificates.

For pkgsrc-provided OpenSSL, this package modifies
${PREFIX}/etc/ssl/certs, which belongs to another package. This is
somewhat irregular as packages should not modify content under etc.

For native OpenSSL, it modifies the base system OpenSSL certificate
directory, e.g. /etc/openssl/certs or /etc/ssl/certs. This is
necessary to configure trust anchors for native OpenSSL, so that
progams in pkgsrc can use these CA certs in validation. Modification
of /etc is very irregular as pkgsrc should not write anything outside
of ${PREFIX}.

See also the mozilla-rootcerts package (which this one depends on) for
placing the Mozilla CA list in the filesystem but not configuring it
into OpenSSL, as well as a script to aid in manual configuration of
trust anchors.


Required to build:
[security/mozilla-rootcerts] [pkgtools/cwrappers]

Version history: (Expand)


CVS history: (Expand)


   2021-10-15 15:06:11 by Thomas Klausner | Files touched by this commit (1) | Package updated
Log message:
mozilla-rootcerts-openssl: ... and update PLIST for 2.7
   2021-10-14 14:42:43 by Thomas Klausner | Files touched by this commit (1)
Log message:
mozilla-rootcerts-openssl: adapt for mozilla-rootcerts change
   2021-10-14 14:40:10 by Thomas Klausner | Files touched by this commit (1)
Log message:
mozilla-rootcerts-openssl: bump for 20211014.
   2021-01-11 23:50:37 by Thomas Klausner | Files touched by this commit (4) | Package updated
Log message:
mozilla-rootcerts: update to 20201204 data
   2020-11-29 19:36:15 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
mozilla-rootcerts-openssl: update to 2.5.

Sync with mozilla-rootcerts.
   2020-06-12 12:35:11 by Maya Rashish | Files touched by this commit (5)
Log message:
mozilla-rootcerts*: remove Kamu SM from the list of certificates.

Mozilla only trusts this for Turkish domains, see:
https://wiki.mozilla.org/CA/Additional_Trust_Changes

And users of mozilla-rootcerts likely don't implement the same fine-grained
trust.

Proposed on tech-pkg
   2020-05-30 14:56:54 by Tobias Nygren | Files touched by this commit (2)
Log message:
mozilla-rootcerts-openssl: sync w/ mozilla-rootcerts
   2020-03-27 18:00:01 by Greg Troxel | Files touched by this commit (1)
Log message:
mozilla-rootcerts-openssl: Minor DESCR fixups

Mention the manual script approach, almost parenthetically, in the See
also part about mozilla-rootcerts.