Commits
master
Name already in use
Commits on Aug 28, 2017
Commits on Feb 5, 2017
Commits on Oct 29, 2016
Commits on Jul 31, 2016
Commits on Apr 4, 2016
-
Update mozilla root certificates to mozilla-central certman.txt revis…
…ion 1f84dea6508d
Commits on Feb 10, 2016
Commits on Feb 8, 2016
-
Backport a change from Harmattan to handle the fact that /etc is a sy…
…mlink in Scratchbox Add a tool and instructions for updating the root CA store Update the root CA store to match the Mozilla certdata.txt file from the mozilla-central repositiory at revision 64df3815df9c
Commits on Aug 30, 2013
-
-
Change VeriSign certificate order, so "stronger" certificates to appe…
…ar first. Fixes supl.nokia.com not working
-
Signed-off-by: Ivaylo Dimitrov <freemangordon@abv.bg>
Commits on Jan 6, 2013
-
Added the two wrongly issued intermediate certificates from TÜRKTRUST
Commits on Nov 17, 2011
-
Updated root certificate blacklist
Added the two compromised Malaysian signing certs to the blacklist.
Juhani Mäkelä committedNov 17, 2011
Commits on Sep 8, 2011
-
Added the installing of the blacklist certificate store. This commit finalizes the blacklisting feature, which according to preliminary testing appears to work as intended.
Commits on Sep 7, 2011
-
Added explicit blacklisting of bad certificates
Added explicit blacklisting of compromised or rogue certificates following the Mozilla model. A new shared cert domain "blacklist" now contains all blocker certs from Mozilla's built-in certdata.txt as in changeset 76451:cf1ba8f0dbf7 Sep 02. See Mozilla bug 683261 for further information. The downside is that the blacklisted certificates appear in the settings applet as if they were valid since it shows the contents of all domains regardless of their type the same way. This must be fixed in the maemo-security-certificates-applet.
-
Fixed a few compilation errors in cryptoki_module.c
The latest scratchbox toolkit has a bit stricter compiler than before.
jum committedSep 7, 2011
Commits on Sep 2, 2011
-
Contains update of the common-ca root CA, including the removal of the compromised DigiNotar root. Also several backported fixes from Harmattan.
Juhani Mäkelä committedSep 2, 2011 -
Backported a set of small fixes from Harmattan
Fixed a biggish memory leak in iterate_certs (aegis-certman commit ce648d Oct 27 2010) Prevent eternal loops with cross-signed certs (-"- 6200345 and d4357cb Feb 09,10 2011) Fixed compiler errors with newer OpenSSL (-"- 9d61d27 Feb 02 2011) Don't return error when reading a private kea with cmcli (-"- 048f84c Jan 18 2011)
Juhani Mäkelä committedSep 2, 2011 -
Allow several certificates with the same public key
Backported fix for NB#223086 from Harmattan. Verisign has issued two different versions of two of their roots (public key fingerprints 00d85a4c25c12... and f3a27298eeb81...) that use the same public keys. This fix is needed to have both versions in the common-ca.
Juhani Mäkelä committedSep 2, 2011 -
Updated the common-ca root certificate store
Most importantly removed the compromised DigiNotar CA. Also removed expired roots and add the new roots from the Mozilla set.
Commits on Jan 20, 2011
-
Updated common-ca certificate index file
Forgot that in Fremantle the index file has to be updated manually. This version is now tested in my N900.
Commits on Jan 7, 2011
-
Updated the common-ca equal to security/nss/lib/ckfw/builtins/certdata.txt version 1.62.2.6 (changeset 58967:0f28e112a6b6) from hg.mozilla.org/mozilla-central/.
Juhani Mäkelä authored and Juhani Mäkelä committedJan 7, 2011
Commits on Jul 9, 2010
-
Juhani Mäkelä authored and Juhani Mäkelä committed
Jul 9, 2010 -
Juhani Mäkelä authored and Juhani Mäkelä committed
Jul 9, 2010 -
Updated the root certificate set.
Juhani Mäkelä authored and Juhani Mäkelä committedJul 9, 2010 -
Ported fix of NB#172389 from Harmattan: cryptoki_module causes
a crash if not all certificates can be fetched from the store. This can be caused by a broken store or similar causes. This fixes MB#10423.
Juhani Mäkelä authored and Juhani Mäkelä committedJul 9, 2010 -
Added checking of whether a certificate really was installed
also to "-i" when using "-e".
Juhani Mäkelä authored and Juhani Mäkelä committedJul 9, 2010
Commits on Feb 17, 2010
-
Increased version number and simplified -e.
Juhani Mäkelä authored and Juhani Mäkelä committedFeb 17, 2010 -
Added the -e command-line switch to echo the key ids of installed
certificates to stdout.
Juhani Mäkelä authored and Juhani Mäkelä committedFeb 17, 2010
Commits on Feb 3, 2010
-
Added the pkcs9_emailAddress as the last straw to make a nickname
if all other fields are missing.
Juhani Mäkelä authored and Juhani Mäkelä committedFeb 3, 2010
Commits on Dec 9, 2009
-
Removed the "bool" definition from maemosec_common.h and all
debug output.
Juhani Mäkelä authored and Juhani Mäkelä committedDec 9, 2009
Commits on Dec 8, 2009
-
Updated the root certificate set according to version 1.57 of file
security/nss/lib/ckfw/builtins/certdata.txt fetched from hg.mozilla.org's trunk 2009-12-08.
Juhani Mäkelä authored and Juhani Mäkelä committedDec 8, 2009
Commits on Nov 25, 2009
-
Fixed the install-file to contain all the files from the certs-
directory.
Juhani Mäkelä authored and Juhani Mäkelä committedNov 25, 2009 -
Updated the root certificate set.
Juhani Mäkelä authored and Juhani Mäkelä committedNov 25, 2009