kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
254114 commits 166 branches 0 tags 1.5 GiB
Commit graph

31 commits

Author SHA1 Message Date
wiz
60766081b6 Update to certificates of 20160610. 
Bump version.
 2016-07-21 12:37:43 +00:00
dsainty
f232725314 gawk will corrupt the output data stream in multibyte locales, 
so force the locale to "C".

Fixes mozilla-rootcerts under Linux.
 2016-03-03 03:02:21 +00:00
tron
879aef85da Create and install a file called "share/mozilla-rootcerts/cacert.pem" 
which contains all the trusted certificates in PEM format. This file
can e.g. be used with command line clients like "curl" or "wget" to
validate certificates.
 2016-02-06 10:22:54 +00:00
agc
5293710fb4 Add SHA512 digests for distfiles for security category 
Problems found locating distfiles:
	Package f-prot-antivirus6-fs-bin: missing distfile fp-NetBSD.x86.32-fs-6.2.3.tar.gz
	Package f-prot-antivirus6-ws-bin: missing distfile fp-NetBSD.x86.32-ws-6.2.3.tar.gz
	Package libidea: missing distfile libidea-0.8.2b.tar.gz
	Package openssh: missing distfile openssh-7.1p1-hpn-20150822.diff.bz2
	Package uvscan: missing distfile vlp4510e.tar.Z

Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden).  All existing
SHA1 digests retained for now as an audit trail.
 2015-11-04 01:17:40 +00:00
tnn
7618149b5e set HOMEPAGE to the hg revision log URL to make it easier to figure out if 
the package needs an update.
 2015-10-18 19:24:39 +00:00
tnn
d80fe900e7 mention mozilla-rootcerts-openssl 2015-09-12 13:06:13 +00:00
tnn
0ff9c47083 Update to 20150804. 
Added:

C=CN, O=China Financial Certification Authority, CN=CFCA EV ROOT
C=DE, O=Deutscher Sparkassen Verlag GmbH, OU=S-TRUST Certification Services, \
    CN=S-TRUST Universal Root CA
C=FR, O=Certinomis, OU=0002 433998903, CN=Certinomis - Root CA
C=NL, O=Staat der Nederlanden, CN=Staat der Nederlanden EV Root CA
C=NL, O=Staat der Nederlanden, CN=Staat der Nederlanden Root CA - G3
C=TR, L=Ankara, \
    O=T?RKTRUST Bilgi ?leti?im ve Bili?im G?venli?i Hizmetleri A.?., \
    CN=T?RKTRUST Elektronik Sertifika Hizmet Sa?lay?c?s? H5
C=TR, L=Ankara, \
    O=T?RKTRUST Bilgi ?leti?im ve Bili?im G?venli?i Hizmetleri A.?., \
    CN=T?RKTRUST Elektronik Sertifika Hizmet Sa?lay?c?s? H6
C=US, O=Entrust, Inc., OU=See www.entrust.net/legal-terms, \
    OU=(c) 2009 Entrust, Inc. - for authorized use only, \
    CN=Entrust Root Certification Authority - G2
C=US, O=Entrust, Inc., OU=See www.entrust.net/legal-terms, \
    OU=(c) 2012 Entrust, Inc. - for authorized use only, \
    CN=Entrust Root Certification Authority - EC1
C=US, O=IdenTrust, CN=IdenTrust Commercial Root CA 1
C=US, O=IdenTrust, CN=IdenTrust Public Sector Root CA 1

Removed:

C=DE, O=TC TrustCenter GmbH, OU=TC TrustCenter Class 2 CA, \
    CN=TC TrustCenter Class 2 CA II
C=DE, O=TC TrustCenter GmbH, OU=TC TrustCenter Universal CA, \
    CN=TC TrustCenter Universal CA I
C=NO, O=Buypass AS-983163327, CN=Buypass Class 3 CA 1
C=TR, O=Elektronik Bilgi Guvenligi A.S., \
    CN=e-Guven Kok Elektronik Sertifika Hizmet Saglayicisi
CN=SG TRUST SERVICES RACINE, OU=0002 43525289500022, O=SG TRUST SERVICES, C=FR
CN=T?RKTRUST Elektronik Sertifika Hizmet Sa?lay?c?s?, C=TR, L=ANKARA, \
    O=(c) 2005 T?RKTRUST Bilgi ?leti?im ve Bili?im G?venli?i Hizmetleri A.?.
 2015-09-11 20:32:33 +00:00
dholland
69b63823bc Add support for -d destdir to the mozilla-rootcerts installer script. 2015-04-18 20:11:35 +00:00
tnn
a84f21ab9f Update to mozilla-rootcerts-20141117. 
Added root certs:

C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority
C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=Terms of use at https://www.verisign.com/rpa (c)09, CN=VeriSign Class 3 Secure Server CA - G2
C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust ECC Certification Authority
C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
OU=GlobalSign ECC Root CA - R4, O=GlobalSign, CN=GlobalSign
OU=GlobalSign ECC Root CA - R5, O=GlobalSign, CN=GlobalSign

Removed root certs:

C=US, O=America Online Inc., CN=America Online Root Certification Authority 1
C=US, O=America Online Inc., CN=America Online Root Certification Authority 2
C=US, O=GTE Corporation, OU=GTE CyberTrust Solutions, Inc., CN=GTE CyberTrust Global Root
C=ZA, ST=Western Cape, L=Cape Town, O=Thawte Consulting cc, OU=Certification Services Division, CN=Thawte Premium Server CA/emailAddress=premium-server@thawte.com
C=ZA, ST=Western Cape, L=Cape Town, O=Thawte Consulting cc, OU=Certification Services Division, CN=Thawte Server CA/emailAddress=server-certs@thawte.com
 2015-02-16 13:09:10 +00:00
jperkin
805047afbd Fix typo in previous. 2015-01-27 13:54:10 +00:00
jperkin
e31292423f Ensure we call the full path to the script. Bump PKGREVISION. 2015-01-27 13:53:06 +00:00
wiz
8fb0245862 Improve detection of untrusted certificates. From John D. Baker 
in PR 49176. Bump PKGREVISION.
 2014-09-06 08:03:00 +00:00
mlelstv
6c6af783d9 Update certs to more recent version. The License changed to MPL 2.0. 2014-08-25 08:34:44 +00:00
wiz
f78434a2b8 Use 'mkdir -p' in case ${PREFIX}/etc doesn't exist yet. 2014-08-10 10:47:42 +00:00
obache
2e5395c626 reset CHECK_BUILTIN.openssl to avoid side effect. 2014-03-03 06:01:26 +00:00
bsiegert
d35d58370a Add a new subcommand "mozilla-rootcerts install" that unpacks and installs 
the certificates with a single command.

ok gdt, wiz
 2013-03-15 16:14:55 +00:00
fhajny
4900d3dd39 Substitute the openssl tool path in a different manner, so that pkgsrc 
openssl will be used if not builtin. Fixes problem with incorrect cert
hashes generated on (at least) SunOS.
 2013-03-15 12:36:25 +00:00
wiz
45f7f4801f Update mozilla root certificates to 20121229 version. 2013-01-31 09:39:00 +00:00
asau
1a433eae91 Drop superfluous PKG_DESTDIR_SUPPORT, "user-destdir" is default these days. 2012-10-23 18:16:19 +00:00
drochner
0b08870926 mozilla has switched to a scheme of explicitly distrusting certificates 
in its stable branch (ie firefox-6.0.2) too,
so deal with this in the mozilla-rootcerts script (this is not great -
it depends on syntactic details of the file where it should better
use checksums, but the perl script which is distributed with "curl"
works the same way),
and switch back to the certificate list in CVS HEAD
 2011-09-08 19:46:01 +00:00
drochner
3a2c5b4628 update to the version distributed with firefox-6.0.1, in response 
to the recent discovery of false certificates from diginotar
(Recent versions from the source repository don't work, see the
comment in Makefile.)
 2011-08-31 11:42:43 +00:00
drochner
eef8ae78bc add a hint for gnupg2 users (as claws-mail with the s/mime plugin) 2011-06-10 16:23:45 +00:00
drochner
8453b39053 add some clarification about the difference between OpenSSL and GnuTLS, 
and guidance for users of the latter
 2011-03-11 21:00:06 +00:00
jym
b49129eb91 Add MESSAGE to give a hint on what to do (~copy/pasted from script) 2011-01-31 03:05:17 +00:00
shattered
3b05a61c76 Follow HTTP redirects to new HOMEPAGEs and/or MASTER_SITES. 2010-11-13 21:08:54 +00:00
wiz
b838928231 Update to 20100827. Set LICENSE. 
Fix bug reported by Makoto Yamakura in PR 43992.
 2010-10-22 10:41:49 +00:00
wiz
a4eec2f4cc Reset maintainer, developer lost his commit bit. 2010-03-21 16:29:38 +00:00
wiz
a1981918ab Simplify awk usage to make it work with nawk, from Matthias Pfaller in 
PR 42238.

While here, update to latest certificates from mozilla.
 2009-11-03 02:43:55 +00:00
joerg
f0bbd1517d Remove @dirrm entries from PLISTs 2009-06-14 18:13:25 +00:00
joerg
b34aa6885e DESTDIR support. 2008-06-22 23:05:00 +00:00
jlam
909f41a142 Import security/mozilla-rootcerts: 
This package provides a script which can be used to extract the root
CA certificates distributed by the Mozilla Project into the current
working directory and to rehash the existing certificates.  The directory
can be used by most SSL-aware programs that expect a "CA certificate
path".
 2007-09-20 20:02:53 +00:00