mirror of
https://git.launchpad.net/ubuntu/+source/ca-certificates
synced 2025-04-13 09:38:26 +00:00
20140223 (patches unapplied)
Imported using git-ubuntu import.
This commit is contained in:
Michael Shuler
git-ubuntu importer
parent
9fa1e85c21
commit
8bdbf2ade9
Notes:
git-ubuntu importer
2020-07-14 23:28:46 +00:00
* No longer ship cacert.org certificates. Closes: #718434, LP: #1258286 * Fix certdata2pem.py for multiple CAs using the same CKA_LABEL. Thanks to Marc Deslauriers for the patch. Closes: #683403, LP: #1031333 * Sort local CA certificates on update-ca-certificates runs. Thanks to Vaclav Ovsik for the suggestion and patch. Closes: #727136 * Add trailing newline to certificate, if it is missing. Closes: #635570 * Update mozilla/certdata.txt to version 1.97. Certificates added (+), removed (-), and renamed (~): + "ACCVRAIZ1" + "Atos TrustedRoot 2011" + "E-Tugra Certification Authority" + "SG TRUST SERVICES RACINE" + "T-TeleSec GlobalRoot Class 2" + "TWCA Global Root CA" + "TeliaSonera Root CA v1" + "Verisign Class 3 Public Primary Certification Authority" ~ "Verisign Class 3 Public Primary Certification Authority"_2 (both Verisign Class 3 CAs now included with duplicate CKA_LABEL fix) - "Entrust.net Secure Server CA" - "Firmaprofesional Root CA" - "GTE CyberTrust Global Root" - "RSA Root Certificate 1" - "TDC OCES Root CA" - "ValiCert Class 1 VA" - "ValiCert Class 2 VA" - "Wells Fargo Root CA"
16 changed files with 3486 additions and 1279 deletions
2
Makefile
2
Makefile
|
|
@ -3,7 +3,7 @@
|
|||
#
|
||||
|
||||
CERTSDIR = /usr/share/ca-certificates
|
||||
SUBDIRS = mozilla cacert.org spi-inc.org
|
||||
SUBDIRS = mozilla spi-inc.org
|
||||
|
||||
all:
|
||||
for dir in $(SUBDIRS); do \
|
||||
|
|
|
|||
|
|
@ -1,12 +0,0 @@
|
|||
#
|
||||
# Makefile
|
||||
#
|
||||
|
||||
all:
|
||||
|
||||
clean:
|
||||
|
||||
install:
|
||||
for p in *.crt; do \
|
||||
install -m 644 $$p $(CERTSDIR)/cacert.org_$$p ; \
|
||||
done
|
||||
|
|
@ -1,54 +0,0 @@
|
|||
-----BEGIN PGP SIGNED MESSAGE-----
|
||||
Hash: SHA256
|
||||
|
||||
- -----------------------
|
||||
CACert.org Certificate
|
||||
- -----------------------
|
||||
|
||||
This certificate has been fetched from the following website:
|
||||
|
||||
http://www.cacert.org/index.php?id=3
|
||||
|
||||
Confirmed the certificate fingerprint with this webpage.
|
||||
(Sun Oct 23 21:18:35 CDT 2011)
|
||||
|
||||
$ openssl x509 -in root.crt -fingerprint -noout -sha1
|
||||
SHA1 Fingerprint=13:5C:EC:36:F4:9C:B8:E9:3B:1A:B2:70:CD:80:88:46:76:CE:8F:33
|
||||
$ openssl x509 -in root.crt -fingerprint -noout -md5
|
||||
MD5 Fingerprint=A6:1B:37:5E:39:0D:9C:36:54:EE:BD:20:31:46:1F:6B
|
||||
|
||||
$ openssl x509 -in class3.crt -fingerprint -noout -sha1
|
||||
SHA1 Fingerprint=AD:7C:3F:64:FC:44:39:FE:F4:E9:0B:E8:F4:7C:6C:FA:8A:AD:FD:CE
|
||||
$ openssl x509 -in class3.crt -fingerprint -noout -md5
|
||||
MD5 Fingerprint=F7:25:12:82:4E:67:B5:D0:8D:92:B7:7C:0B:86:7A:42
|
||||
|
||||
$ LANG=C gpg --verify cacert-fingerprint.asc
|
||||
gpg: Signature made Thu Sep 4 00:57:45 2003 CDT using DSA key ID 65D0FD58
|
||||
gpg: Good signature from "CA Cert Signing Authority (Root CA) <gpg@cacert.org>"
|
||||
gpg: WARNING: This key is not certified with a trusted signature!
|
||||
gpg: There is no indication that the signature belongs to the owner.
|
||||
Primary key fingerprint: A31D 4F81 EF4E BD07 B456 FA04 D2BB 0D01 65D0 FD58
|
||||
$ LANG=C gpg --verify cacert-gpg-fingerprint.asc
|
||||
gpg: Signature made Sun Feb 13 23:10:37 2005 CST using DSA key ID 65D0FD58
|
||||
gpg: Good signature from "CA Cert Signing Authority (Root CA) <gpg@cacert.org>"
|
||||
gpg: WARNING: This key is not certified with a trusted signature!
|
||||
gpg: There is no indication that the signature belongs to the owner.
|
||||
Primary key fingerprint: A31D 4F81 EF4E BD07 B456 FA04 D2BB 0D01 65D0 FD58
|
||||
|
||||
-----BEGIN PGP SIGNATURE-----
|
||||
Version: GnuPG v1.4.11 (GNU/Linux)
|
||||
|
||||
iQIcBAEBCAAGBQJOpNDeAAoJEKJ4t4H+SyvajrQP/2v2x9JerwNLfWHpgHm2rjHI
|
||||
r8gHCSPD5SGtnSAwr8FrpGcbPRDwm8a8pLnCu8+X/LUcNU0qLikhB1n9Wv1mkPrb
|
||||
IFMkuz6z5GLp2Jo0uyO5vhoJxiaRAAbk6gjt8cGw7Lxfio+ckwjlYeTY3fkRgzu+
|
||||
WwWfDPUbsG2wGPuAxVZL9gzCmCrRN2v6XxTRk84rngiDR3J7Q4MEe5qDdEyCdoqp
|
||||
lBF0WS1fpNx9JSHaAkEqbl/Hffi+8XuzZpbDV1NouKf72JSQtvmf7en/0U9JMHA7
|
||||
/D156DXKMgUjyQSBPQ0BS+Fdh2ta/8of/SWLGKZtoC1DGtfRtmk3Mfbc94zPoH+w
|
||||
jRcmp9J0wcJndXUWU7d8XNaBF/c83xpGjt1HsiKIVDFh4HAU5VPNYm70YWDKoDWJ
|
||||
fQWVhG11PDTgz17FPKNlYCHKg5P8B05xR/Z3C6DyQCKV0wCXoAmV6giafC27nSVy
|
||||
pcchrYh80cqrgN0Fw8zXIlNu+8nFVyKWhtVsShmynBq4VoKnFM34+wmeWlv/Ym4F
|
||||
u3yrucY14Ucg+0pH4GFxFz+4vIZaV7pZ01LHLUC72Ja5/w8w0vvtOQlBx/+jI8Kk
|
||||
61ar2IAR3q4FtNmAiWGFDjsuzxD/TKatzwBvCL+RGZkR5IJFnmMv4YyYpuX1PwSx
|
||||
G/+ndT6YKiwegPvBacvj
|
||||
=ahp2
|
||||
-----END PGP SIGNATURE-----
|
||||
|
|
@ -1,15 +0,0 @@
|
|||
-----BEGIN PGP SIGNED MESSAGE-----
|
||||
Hash: SHA1
|
||||
|
||||
For most software, the fingerprint is reported as:
|
||||
A6:1B:37:5E:39:0D:9C:36:54:EE:BD:20:31:46:1F:6B
|
||||
|
||||
Under MSIE the thumbprint is reported as:
|
||||
135C EC36 F49C B8E9 3B1A B270 CD80 8846 76CE 8F33
|
||||
-----BEGIN PGP SIGNATURE-----
|
||||
Version: GnuPG v1.2.2 (GNU/Linux)
|
||||
|
||||
iD8DBQE/VtRZ0rsNAWXQ/VgRAphfAJ9jh6TKBDexG0NTTUHvdNuf6O9RuQCdE5kD
|
||||
Mch2LMZhK4h/SBIft5ROzVU=
|
||||
=R/pJ
|
||||
-----END PGP SIGNATURE-----
|
||||
|
|
@ -1,13 +0,0 @@
|
|||
-----BEGIN PGP SIGNED MESSAGE-----
|
||||
Hash: SHA1
|
||||
|
||||
pub 1024D/65D0FD58 2003-07-11 CA Cert Signing Authority (Root CA)
|
||||
Key fingerprint = A31D 4F81 EF4E BD07 B456 FA04 D2BB 0D01 65D0 FD58
|
||||
sub 2048g/113ED0F2 2003-07-11 [expires: 2033-07-03]
|
||||
-----BEGIN PGP SIGNATURE-----
|
||||
Version: GnuPG v1.2.5 (GNU/Linux)
|
||||
|
||||
iD8DBQFCEDLN0rsNAWXQ/VgRArhhAJ9EY1TJOzsVVuy2lL98CoKL0vnJjQCfbdBk
|
||||
TG1yj+lkktROGGyn0hJ5SbM=
|
||||
=tXoj
|
||||
-----END PGP SIGNATURE-----
|
||||
|
|
@ -1,30 +0,0 @@
|
|||
-----BEGIN PGP PUBLIC KEY BLOCK-----
|
||||
Version: GnuPG v1.2.2 (GNU/Linux)
|
||||
|
||||
mQGiBD8OdRwRBACEr0/NPA88qp8f6KyIMMveLQ1FOuLi0aDQDPybG7u1nrBoi3VI
|
||||
tSRyfYcdExVxWQjTGd9qbShzXBw2DsxjA6YjiGzWKpVcqtj9uUDpSlylBaoadUzu
|
||||
Sf3r3IkOHR2QJeC+9v2il30xy5XLMxDRbQYaSmf4uwTlIOUWNn118KpdawCgoNny
|
||||
p4DR9EvRgCmY5z6IKHA2WscD/AhAKDVHCIAoZHzSB/puNOuVUSKRbIWNAqUAYosz
|
||||
GRzYWb8O/3Ja4fNb3IMQ1gIsEcnUJFHnzID3pTjqWyiCId/NSX3fLuQxZHZE9n8P
|
||||
PqlZIvqMrOfCT0RJQa0zTFcrgepnmnHLj7qmtXQZm+YkTvlihOZNtVA4JNzrxDrQ
|
||||
egkqA/4hr0LezNJfkUhWnbW604p7AmmKK7Hi/ZixAfnxN0adgnV7oC3Q4VM8aB2i
|
||||
gReSuifluHiaJmf/WsA3KH4bdyLRbagz6dOPkXY8bQKy9yRxQz9oYwudlluYoZXe
|
||||
gSQI2Jle9U2ENefa9ouvVlsB0he1qzF6VzHXAXpLsANt5smDh7Q0Q0EgQ2VydCBT
|
||||
aWduaW5nIEF1dGhvcml0eSAoUm9vdCBDQSkgPGdwZ0BjYWNlcnQub3JnPohfBBMR
|
||||
AgAfBQI/DnUcBQk4ZAkABAsHAwIDFQIDAxYCAQIeAQIXgAAKCRDSuw0BZdD9WEFX
|
||||
AJ9C6WBcYfTYw1uvZ+N85TPGG5PMKQCcCM1tyULC5J6pfwevywS6cEwfagW5Ag0E
|
||||
Pw51MBAIANUbl1u0j+mnVJk1fKbJ+Ul6SAYpNtordfgrgrmlnOhMCFcROrCzsaaI
|
||||
1ehohxMbTnIj0RP0g/KotahAurqB98qzHIxXZMEJSzBE2OCNvlIXqUyT1jwhAUN6
|
||||
e71s084Lml84gD4cIr7+2YtwIu+6zrE+YdjfMT1NibM3vmiXaknrk4aADb02ZS5U
|
||||
iDeRstUO5PG7qVg4umR0HZJ1Ck2U7Kdjaekzzlm0q/vYMZKTYX37NkZRUU0QFLsM
|
||||
tACEaZnwKf9hMAWJwG1OFyJeLVH8xvzCkI4I+fpAvAQj6LVAh41SHl7EivH6SiTp
|
||||
/+61idoz/CGqeLBxuex6Z+Y53U54FmcAAwUH/2chzBs1YWFX5LuLGEW3R3UW/wDb
|
||||
RnYpsSR+pnMBVh18WS0nF08R/SXtb12RsqN5H+GtELOZng6IWL5hhgNaYvF1F4sW
|
||||
Ezm2nyVmTsu7/DtHLmXtzz1oNLQ9pzJkoqP2pGtPYQKvmiuoNbt+l1prwjt5zn1D
|
||||
slLn8w0+9/PP1YdKpuZ/189yQP6iYsLHxBxg/50MbSzoFwiT22aJCdF+OJ7zRwDy
|
||||
GhjnfV7HVwdEDV5rvb7aRolRmZZF2UADSPu52BWT4PI0nVnewAgivyELqVU3Zc3P
|
||||
aWqmH5BAh22MjbsbXrWZXK/WOfZCNlPVdfHxwFGxnlwsHgmyrkPAs3szJGiITAQY
|
||||
EQIADAUCPw51MAUJOGQJAAAKCRDSuw0BZdD9WMw8AJwIVUzB2WQJGAbf/aXzCABn
|
||||
QWdKwACdEWUSf69RZiJgp4oMfXMx0fDEh2I=
|
||||
=OaPO
|
||||
-----END PGP PUBLIC KEY BLOCK-----
|
||||
|
|
@ -1,42 +0,0 @@
|
|||
-----BEGIN CERTIFICATE-----
|
||||
MIIHWTCCBUGgAwIBAgIDCkGKMA0GCSqGSIb3DQEBCwUAMHkxEDAOBgNVBAoTB1Jv
|
||||
b3QgQ0ExHjAcBgNVBAsTFWh0dHA6Ly93d3cuY2FjZXJ0Lm9yZzEiMCAGA1UEAxMZ
|
||||
Q0EgQ2VydCBTaWduaW5nIEF1dGhvcml0eTEhMB8GCSqGSIb3DQEJARYSc3VwcG9y
|
||||
dEBjYWNlcnQub3JnMB4XDTExMDUyMzE3NDgwMloXDTIxMDUyMDE3NDgwMlowVDEU
|
||||
MBIGA1UEChMLQ0FjZXJ0IEluYy4xHjAcBgNVBAsTFWh0dHA6Ly93d3cuQ0FjZXJ0
|
||||
Lm9yZzEcMBoGA1UEAxMTQ0FjZXJ0IENsYXNzIDMgUm9vdDCCAiIwDQYJKoZIhvcN
|
||||
AQEBBQADggIPADCCAgoCggIBAKtJNRFIfNImflOUz0Op3SjXQiqL84d4GVh8D57a
|
||||
iX3h++tykA10oZZkq5+gJJlz2uJVdscXe/UErEa4w75/ZI0QbCTzYZzA8pD6Ueb1
|
||||
aQFjww9W4kpCz+JEjCUoqMV5CX1GuYrz6fM0KQhF5Byfy5QEHIGoFLOYZcRD7E6C
|
||||
jQnRvapbjZLQ7N6QxX8KwuPr5jFaXnQ+lzNZ6MMDPWAzv/fRb0fEze5ig1JuLgia
|
||||
pNkVGJGmhZJHsK5I6223IeyFGmhyNav/8BBdwPSUp2rVO5J+TJAFfpPBLIukjmJ0
|
||||
FXFuC3ED6q8VOJrU0gVyb4z5K+taciX5OUbjchs+BMNkJyIQKopPWKcDrb60LhPt
|
||||
XapI19V91Cp7XPpGBFDkzA5CW4zt2/LP/JaT4NsRNlRiNDiPDGCbO5dWOK3z0luL
|
||||
oFvqTpa4fNfVoIZwQNORKbeiPK31jLvPGpKK5DR7wNhsX+kKwsOnIJpa3yxdUly6
|
||||
R9Wb7yQocDggL9V/KcCyQQNokszgnMyXS0XvOhAKq3A6mJVwrTWx6oUrpByAITGp
|
||||
rmB6gCZIALgBwJNjVSKRPFbnr9s6JfOPMVTqJouBWfmh0VMRxXudA/Z0EeBtsSw/
|
||||
LIaRmXGapneLNGDRFLQsrJ2vjBDTn8Rq+G8T/HNZ92ZCdB6K4/jc0m+YnMtHmJVA
|
||||
BfvpAgMBAAGjggINMIICCTAdBgNVHQ4EFgQUdahxYEyIE/B42Yl3tW3Fid+8sXow
|
||||
gaMGA1UdIwSBmzCBmIAUFrUyG9TH8+DmjvO90rA67rI5GNGhfaR7MHkxEDAOBgNV
|
||||
BAoTB1Jvb3QgQ0ExHjAcBgNVBAsTFWh0dHA6Ly93d3cuY2FjZXJ0Lm9yZzEiMCAG
|
||||
A1UEAxMZQ0EgQ2VydCBTaWduaW5nIEF1dGhvcml0eTEhMB8GCSqGSIb3DQEJARYS
|
||||
c3VwcG9ydEBjYWNlcnQub3JnggEAMA8GA1UdEwEB/wQFMAMBAf8wXQYIKwYBBQUH
|
||||
AQEEUTBPMCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5DQWNlcnQub3JnLzAoBggr
|
||||
BgEFBQcwAoYcaHR0cDovL3d3dy5DQWNlcnQub3JnL2NhLmNydDBKBgNVHSAEQzBB
|
||||
MD8GCCsGAQQBgZBKMDMwMQYIKwYBBQUHAgEWJWh0dHA6Ly93d3cuQ0FjZXJ0Lm9y
|
||||
Zy9pbmRleC5waHA/aWQ9MTAwNAYJYIZIAYb4QgEIBCcWJWh0dHA6Ly93d3cuQ0Fj
|
||||
ZXJ0Lm9yZy9pbmRleC5waHA/aWQ9MTAwUAYJYIZIAYb4QgENBEMWQVRvIGdldCB5
|
||||
b3VyIG93biBjZXJ0aWZpY2F0ZSBmb3IgRlJFRSwgZ28gdG8gaHR0cDovL3d3dy5D
|
||||
QWNlcnQub3JnMA0GCSqGSIb3DQEBCwUAA4ICAQApKIWuRKm5r6R5E/CooyuXYPNc
|
||||
7uMvwfbiZqARrjY3OnYVBFPqQvX56sAV2KaC2eRhrnILKVyQQ+hBsuF32wITRHhH
|
||||
Va9Y/MyY9kW50SD42CEH/m2qc9SzxgfpCYXMO/K2viwcJdVxjDm1Luq+GIG6sJO4
|
||||
D+Pm1yaMMVpyA4RS5qb1MyJFCsgLDYq4Nm+QCaGrvdfVTi5xotSu+qdUK+s1jVq3
|
||||
VIgv7nSf7UgWyg1I0JTTrKSi9iTfkuO960NAkW4cGI5WtIIS86mTn9S8nK2cde5a
|
||||
lxuV53QtHA+wLJef+6kzOXrnAzqSjiL2jA3k2X4Ndhj3AfnvlpaiVXPAPHG0HRpW
|
||||
Q7fDCo1y/OIQCQtBzoyUoPkD/XFzS4pXM+WOdH4VAQDmzEoc53+VGS3FpQyLu7Xt
|
||||
hbNc09+4ufLKxw0BFKxwWMWMjTPUnWajGlCVI/xI4AZDEtnNp4Y5LzZyo4AQ5OHz
|
||||
0ctbGsDkgJp8E3MGT9ujayQKurMcvEp4u+XjdTilSKeiHq921F73OIZWWonO1sOn
|
||||
ebJSoMbxhbQljPI/lrMQ2Y1sVzufb4Y6GIIiNsiwkTjbKqGTqoQ/9SdlrnPVyNXT
|
||||
d+pLncdBu8fA46A/5H2kjXPmEkvfoXNzczqA6NXLji/L6hOn1kGLrPo8idck9U60
|
||||
4GGSt/M3mMS+lqO3ig==
|
||||
-----END CERTIFICATE-----
|
||||
|
|
@ -1,41 +0,0 @@
|
|||
-----BEGIN CERTIFICATE-----
|
||||
MIIHPTCCBSWgAwIBAgIBADANBgkqhkiG9w0BAQQFADB5MRAwDgYDVQQKEwdSb290
|
||||
IENBMR4wHAYDVQQLExVodHRwOi8vd3d3LmNhY2VydC5vcmcxIjAgBgNVBAMTGUNB
|
||||
IENlcnQgU2lnbmluZyBBdXRob3JpdHkxITAfBgkqhkiG9w0BCQEWEnN1cHBvcnRA
|
||||
Y2FjZXJ0Lm9yZzAeFw0wMzAzMzAxMjI5NDlaFw0zMzAzMjkxMjI5NDlaMHkxEDAO
|
||||
BgNVBAoTB1Jvb3QgQ0ExHjAcBgNVBAsTFWh0dHA6Ly93d3cuY2FjZXJ0Lm9yZzEi
|
||||
MCAGA1UEAxMZQ0EgQ2VydCBTaWduaW5nIEF1dGhvcml0eTEhMB8GCSqGSIb3DQEJ
|
||||
ARYSc3VwcG9ydEBjYWNlcnQub3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC
|
||||
CgKCAgEAziLA4kZ97DYoB1CW8qAzQIxL8TtmPzHlawI229Z89vGIj053NgVBlfkJ
|
||||
8BLPRoZzYLdufujAWGSuzbCtRRcMY/pnCujW0r8+55jE8Ez64AO7NV1sId6eINm6
|
||||
zWYyN3L69wj1x81YyY7nDl7qPv4coRQKFWyGhFtkZip6qUtTefWIonvuLwphK42y
|
||||
fk1WpRPs6tqSnqxEQR5YYGUFZvjARL3LlPdCfgv3ZWiYUQXw8wWRBB0bF4LsyFe7
|
||||
w2t6iPGwcswlWyCR7BYCEo8y6RcYSNDHBS4CMEK4JZwFaz+qOqfrU0j36NK2B5jc
|
||||
G8Y0f3/JHIJ6BVgrCFvzOKKrF11myZjXnhCLotLddJr3cQxyYN/Nb5gznZY0dj4k
|
||||
epKwDpUeb+agRThHqtdB7Uq3EvbXG4OKDy7YCbZZ16oE/9KTfWgu3YtLq1i6L43q
|
||||
laegw1SJpfvbi1EinbLDvhG+LJGGi5Z4rSDTii8aP8bQUWWHIbEZAWV/RRyH9XzQ
|
||||
QUxPKZgh/TMfdQwEUfoZd9vUFBzugcMd9Zi3aQaRIt0AUMyBMawSB3s42mhb5ivU
|
||||
fslfrejrckzzAeVLIL+aplfKkQABi6F1ITe1Yw1nPkZPcCBnzsXWWdsC4PDSy826
|
||||
YreQQejdIOQpvGQpQsgi3Hia/0PsmBsJUUtaWsJx8cTLc6nloQsCAwEAAaOCAc4w
|
||||
ggHKMB0GA1UdDgQWBBQWtTIb1Mfz4OaO873SsDrusjkY0TCBowYDVR0jBIGbMIGY
|
||||
gBQWtTIb1Mfz4OaO873SsDrusjkY0aF9pHsweTEQMA4GA1UEChMHUm9vdCBDQTEe
|
||||
MBwGA1UECxMVaHR0cDovL3d3dy5jYWNlcnQub3JnMSIwIAYDVQQDExlDQSBDZXJ0
|
||||
IFNpZ25pbmcgQXV0aG9yaXR5MSEwHwYJKoZIhvcNAQkBFhJzdXBwb3J0QGNhY2Vy
|
||||
dC5vcmeCAQAwDwYDVR0TAQH/BAUwAwEB/zAyBgNVHR8EKzApMCegJaAjhiFodHRw
|
||||
czovL3d3dy5jYWNlcnQub3JnL3Jldm9rZS5jcmwwMAYJYIZIAYb4QgEEBCMWIWh0
|
||||
dHBzOi8vd3d3LmNhY2VydC5vcmcvcmV2b2tlLmNybDA0BglghkgBhvhCAQgEJxYl
|
||||
aHR0cDovL3d3dy5jYWNlcnQub3JnL2luZGV4LnBocD9pZD0xMDBWBglghkgBhvhC
|
||||
AQ0ESRZHVG8gZ2V0IHlvdXIgb3duIGNlcnRpZmljYXRlIGZvciBGUkVFIGhlYWQg
|
||||
b3ZlciB0byBodHRwOi8vd3d3LmNhY2VydC5vcmcwDQYJKoZIhvcNAQEEBQADggIB
|
||||
ACjH7pyCArpcgBLKNQodgW+JapnM8mgPf6fhjViVPr3yBsOQWqy1YPaZQwGjiHCc
|
||||
nWKdpIevZ1gNMDY75q1I08t0AoZxPuIrA2jxNGJARjtT6ij0rPtmlVOKTV39O9lg
|
||||
18p5aTuxZZKmxoGCXJzN600BiqXfEVWqFcofN8CCmHBh22p8lqOOLlQ+TyGpkO/c
|
||||
gr/c6EWtTZBzCDyUZbAEmXZ/4rzCahWqlwQ3JNgelE5tDlG+1sSPypZt90Pf6DBl
|
||||
Jzt7u0NDY8RD97LsaMzhGY4i+5jhe1o+ATc7iwiwovOVThrLm82asduycPAtStvY
|
||||
sONvRUgzEv/+PDIqVPfE94rwiCPCR/5kenHA0R6mY7AHfqQv0wGP3J8rtsYIqQ+T
|
||||
SCX8Ev2fQtzzxD72V7DX3WnRBnc0CkvSyqD/HMaMyRa+xMwyN2hzXwj7UfdJUzYF
|
||||
CpUCTPJ5GhD22Dp1nPMd8aINcGeGG7MW9S/lpOt5hvk9C8JzC6WZrG/8Z7jlLwum
|
||||
GCSNe9FINSkYQKyTYOGWhlC0elnYjyELn8+CkcY7v2vcB5G5l1YjqrZslMZIBjzk
|
||||
zk6q5PYvCdxTby78dOs6Y5nCpqyJvKeyRKANihDjbPIky/qbn3BHLt4Ui9SyIAmW
|
||||
omTxJBzcoTWcFbLUvFUufQb1nA5V9FrWk9p2rSVzTMVD
|
||||
-----END CERTIFICATE-----
|
||||
27
debian/NEWS
vendored
27
debian/NEWS
vendored
|
|
@ -1,3 +1,30 @@
|
|||
ca-certificates (20140223) unstable; urgency=medium
|
||||
|
||||
Debian will no longer ship cacert.org certificates.
|
||||
|
||||
Update mozilla/certdata.txt to version 1.97.
|
||||
Certificates added (+), removed (-), and renamed (~):
|
||||
+ "ACCVRAIZ1"
|
||||
+ "Atos TrustedRoot 2011"
|
||||
+ "E-Tugra Certification Authority"
|
||||
+ "SG TRUST SERVICES RACINE"
|
||||
+ "T-TeleSec GlobalRoot Class 2"
|
||||
+ "TWCA Global Root CA"
|
||||
+ "TeliaSonera Root CA v1"
|
||||
+ "Verisign Class 3 Public Primary Certification Authority"
|
||||
~ "Verisign Class 3 Public Primary Certification Authority"_2
|
||||
(both Verisign Class 3 CAs now included with duplicate CKA_LABEL fix)
|
||||
- "Entrust.net Secure Server CA"
|
||||
- "Firmaprofesional Root CA"
|
||||
- "GTE CyberTrust Global Root"
|
||||
- "RSA Root Certificate 1"
|
||||
- "TDC OCES Root CA"
|
||||
- "ValiCert Class 1 VA"
|
||||
- "ValiCert Class 2 VA"
|
||||
- "Wells Fargo Root CA"
|
||||
|
||||
-- Michael Shuler <michael@pbandjelly.org> Sun, 23 Feb 2014 15:21:39 -0600
|
||||
|
||||
ca-certificates (20130906) unstable; urgency=low
|
||||
|
||||
Update mozilla/certdata.txt to version 1.94
|
||||
|
|
|
|||
6
debian/README.Debian
vendored
6
debian/README.Debian
vendored
|
|
@ -52,6 +52,6 @@ How certificates will be accepted into the ca-certificates package
|
|||
- Get it included into Mozilla's trust store.
|
||||
- File a bug against ca-certificates stating this fact.
|
||||
|
||||
With the exception of SPI (http://www.spi-inc.org/) and CAcert
|
||||
(http://www.cacert.org/), only those CAs included in the Mozilla trust
|
||||
store will be included in the ca-certificates package in Debian.
|
||||
With the exception of SPI (http://www.spi-inc.org/), only those CAs
|
||||
included in the Mozilla trust store will be included in the ca-certificates
|
||||
package in Debian.
|
||||
|
|
|
|||
31
debian/changelog
vendored
31
debian/changelog
vendored
|
|
@ -1,3 +1,34 @@
|
|||
ca-certificates (20140223) unstable; urgency=medium
|
||||
|
||||
* No longer ship cacert.org certificates. Closes: #718434, LP: #1258286
|
||||
* Fix certdata2pem.py for multiple CAs using the same CKA_LABEL. Thanks
|
||||
to Marc Deslauriers for the patch. Closes: #683403, LP: #1031333
|
||||
* Sort local CA certificates on update-ca-certificates runs. Thanks to
|
||||
Vaclav Ovsik for the suggestion and patch. Closes: #727136
|
||||
* Add trailing newline to certificate, if it is missing. Closes: #635570
|
||||
* Update mozilla/certdata.txt to version 1.97.
|
||||
Certificates added (+), removed (-), and renamed (~):
|
||||
+ "ACCVRAIZ1"
|
||||
+ "Atos TrustedRoot 2011"
|
||||
+ "E-Tugra Certification Authority"
|
||||
+ "SG TRUST SERVICES RACINE"
|
||||
+ "T-TeleSec GlobalRoot Class 2"
|
||||
+ "TWCA Global Root CA"
|
||||
+ "TeliaSonera Root CA v1"
|
||||
+ "Verisign Class 3 Public Primary Certification Authority"
|
||||
~ "Verisign Class 3 Public Primary Certification Authority"_2
|
||||
(both Verisign Class 3 CAs now included with duplicate CKA_LABEL fix)
|
||||
- "Entrust.net Secure Server CA"
|
||||
- "Firmaprofesional Root CA"
|
||||
- "GTE CyberTrust Global Root"
|
||||
- "RSA Root Certificate 1"
|
||||
- "TDC OCES Root CA"
|
||||
- "ValiCert Class 1 VA"
|
||||
- "ValiCert Class 2 VA"
|
||||
- "Wells Fargo Root CA"
|
||||
|
||||
-- Michael Shuler <michael@pbandjelly.org> Sun, 23 Feb 2014 23:22:29 -0600
|
||||
|
||||
ca-certificates (20130906) unstable; urgency=low
|
||||
|
||||
* Add ca-certificates-local source package example to documentation
|
||||
|
|
|
|||
2
debian/control
vendored
2
debian/control
vendored
|
|
@ -7,7 +7,7 @@ Uploaders: Raphael Geissert <geissert@debian.org>,
|
|||
Christian Perrier <bubulle@debian.org>
|
||||
Build-Depends: debhelper (>= 8), po-debconf
|
||||
Build-Depends-Indep: python
|
||||
Standards-Version: 3.9.4
|
||||
Standards-Version: 3.9.5
|
||||
Vcs-Git: git://anonscm.debian.org/collab-maint/ca-certificates.git
|
||||
Vcs-Browser: http://anonscm.debian.org/gitweb/?p=collab-maint/ca-certificates.git
|
||||
|
||||
|
|
|
|||
4471
mozilla/certdata.txt
4471
mozilla/certdata.txt
File diff suppressed because it is too large
Load diff
|
|
@ -116,12 +116,16 @@ for obj in objects:
|
|||
if obj['CKA_CLASS'] == 'CKO_CERTIFICATE':
|
||||
if not obj['CKA_LABEL'] in trust or not trust[obj['CKA_LABEL']]:
|
||||
continue
|
||||
fname = obj['CKA_LABEL'][1:-1].replace('/', '_')\
|
||||
bname = obj['CKA_LABEL'][1:-1].replace('/', '_')\
|
||||
.replace(' ', '_')\
|
||||
.replace('(', '=')\
|
||||
.replace(')', '=')\
|
||||
.replace(',', '_') + '.crt'
|
||||
fname = fname.decode('string_escape')
|
||||
.replace(',', '_')
|
||||
bname = bname.decode('string_escape')
|
||||
fname = bname + '.crt'
|
||||
if os.path.exists(fname):
|
||||
print "Found duplicate certificate name %s, renaming." % bname
|
||||
fname = bname + '_2.crt'
|
||||
f = open(fname, 'w')
|
||||
f.write("-----BEGIN CERTIFICATE-----\n")
|
||||
f.write("\n".join(textwrap.wrap(base64.b64encode(obj['CKA_VALUE']), 64)))
|
||||
|
|
|
|||
|
|
@ -45,8 +45,8 @@
|
|||
* of the comment in the CK_VERSION type definition.
|
||||
*/
|
||||
#define NSS_BUILTINS_LIBRARY_VERSION_MAJOR 1
|
||||
#define NSS_BUILTINS_LIBRARY_VERSION_MINOR 94
|
||||
#define NSS_BUILTINS_LIBRARY_VERSION "1.94"
|
||||
#define NSS_BUILTINS_LIBRARY_VERSION_MINOR 97
|
||||
#define NSS_BUILTINS_LIBRARY_VERSION "1.97"
|
||||
|
||||
/* These version numbers detail the semantic changes to the ckfw engine. */
|
||||
#define NSS_BUILTINS_HARDWARE_VERSION_MAJOR 1
|
||||
|
|
|
|||
|
|
@ -69,7 +69,8 @@ add() {
|
|||
ln -sf "$CERT" "$PEM"
|
||||
echo +$PEM >> "$ADDED"
|
||||
fi
|
||||
cat "$CERT" >> "$TEMPBUNDLE"
|
||||
# Add trailing newline to certificate, if it is missing (#635570)
|
||||
sed -e '$a\' "$CERT" >> "$TEMPBUNDLE"
|
||||
}
|
||||
|
||||
remove() {
|
||||
|
|
@ -121,7 +122,7 @@ done
|
|||
# administrator.
|
||||
if [ -d "$LOCALCERTSDIR" ]
|
||||
then
|
||||
find -L "$LOCALCERTSDIR" -type f -name '*.crt' | while read crt
|
||||
find -L "$LOCALCERTSDIR" -type f -name '*.crt' | sort | while read crt
|
||||
do
|
||||
add "$crt"
|
||||
done
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue