Natanael Copa 914471a540 merge: mk-ca-bundle: remove CKA_NSS_SERVER_DISTRUST_AFTER conditions ...

Apply the [upstream patch][0] to restore certificates that are going to
be removed in the future, but should still be available to verify
existing certificates.

Note that the CKA_NSS_SERVER_DISTRUST_AFTER cannot be encoded in the
generated certificate bundle, so that means newly generated certificates
will be trusted as well. This is a trade-off between breaking existing
certificates versus not trusting newly generated certificates.

With this change, the following root certificates would be restored:

- Entrust.net Premium 2048 Secure Server CA
- Entrust Root Certification Authority
- AffirmTrust Commercial
- AffirmTrust Networking
- AffirmTrust Premium
- AffirmTrust Premium ECC
- Entrust Root Certification Authority - G2
- Entrust Root Certification Authority - EC
- GLOBALTRUST 2020

[0]:448df98d92.patch

Fixes #6

Closes #6

See merge request alpine/ca-certificates!16

2025-01-08 09:29:23 +00:00

.gitignore

replace python script with perl script

2020-02-05 16:03:44 +01:00

.gitlab-ci.yml

ci: verify build

2025-01-08 10:27:45 +01:00

c_rehash.c

c_rehash: fix indentation

2023-01-06 17:57:25 +01:00

certdata.txt

certdata: NSS_107_RTM

2025-01-03 17:22:40 +01:00

Makefile

certdata: NSS_107_RTM

2025-01-03 17:22:40 +01:00

mk-ca-bundle.pl

mk-ca-bundle: remove CKA_NSS_SERVER_DISTRUST_AFTER conditions

2025-01-07 18:22:33 +01:00

renovate.json

renovate: add config to update certdata

2024-02-25 12:53:09 +01:00

split-ca-bundle.sh

split-ca-bundle: clean up unused function

2020-02-06 11:31:40 +01:00

update-ca-certificates.8

correct update-ca-certificates manpage

2023-01-06 14:55:15 +00:00

update-ca.c

update-ca: insert newline between certs

2020-02-05 17:40:57 +01:00

VERSION

=== release 20241121 ===

2025-01-03 17:34:42 +01:00

Description

Управление центрами сертификации, предоставляемыми Mozilla

1.1 MiB

Languages

Perl 53.4%

C 38.1%

Roff 5.1%

Makefile 2.8%

Shell 0.6%