Commit Graph

160 Commits

Author SHA1 Message Date
DJ Lucas
30fc33d7fe Changed default name of anchors list to use md5sums extension
Added copy-trust-modifcations script for use by p11-kit
2019-01-01 20:00:04 -06:00
DJ Lucas
7e305de608 Fix certificate label in local certificates 2019-01-01 19:35:19 -06:00
DJ Lucas
6832ac11b8 Added get_trust_values(), get_p11_trust(), and write_anchor() functions to eliminate duplicate code 2019-01-01 14:35:23 -06:00
DJ Lucas
5316943b46 Use md5sum values for anchors.txt to detect p11-kit changes
Added get_p11_label function to get reliable label values
2019-01-01 14:08:35 -06:00
DJ Lucas
33cdab2a45 Add anchorlist for use by p11-kit to utilize LOCALDIR 2018-12-28 00:41:01 -06:00
DJ Lucas
2526d6b813 Fix assignment of make-ca.conf 2018-12-01 17:26:26 -06:00
DJ Lucas
a3a5711466 Allow definition of configuratino file and install default configuration file. 2018-12-01 17:21:37 -06:00
DJ Lucas
b8603c3856 Perform system installation of update service files
Separate installation step for other consumers
- Partial merge of PR from Graham Weldon
2018-12-01 17:07:13 -06:00
DJ Lucas
aa43bb31eb Add missing java change to CHANGELOG 2018-12-01 16:07:58 -06:00
DJ Lucas
5a06937b96 Fix typo 2018-12-01 16:05:08 -06:00
DJ Lucas
ca103899f6 Move bundle defaults to /etc/pki/tls/certs/
Fix invalid test cases on command line processing
Remove -c/--cadir flags, replace with -b/--bindledir to store all bundles in same location
2018-12-01 16:03:19 -06:00
DJ Lucas
21ec3212be clean up inadvertant website change 2018-12-01 12:25:54 -06:00
DJ Lucas
7fe19acbb1 Set theme jekyll-theme-slate 2018-12-01 12:21:13 -06:00
DJ Lucas
d30386dc33 Fix help output for optional argument to -n 2018-09-04 22:44:07 -05:00
DJ Lucas
600de222bd minor logic fixes 2018-09-04 22:41:01 -05:00
DJ Lucas
98c0193bb5 Add back Java P12 certs (disabled by default)
Disable NSSDB by default
2018-09-04 22:19:40 -05:00
DJ Lucas
1aa966774d Fix changelog, compatibility symlink never went in, and will not 2018-09-03 01:02:16 -05:00
DJ Lucas
1477399b17 Put back creation of blank NSSDB 2018-09-03 01:01:28 -05:00
DJ Lucas
d342d6f51a Fix accidental breakage of anchors 2018-09-03 00:57:28 -05:00
DJ Lucas
eb574a7166 Properly update CHANGELOG. 2018-09-02 03:12:44 -05:00
DJ Lucas
f311a2b9cb Actually depend on the network-onlne.target. 2018-09-02 03:11:54 -05:00
DJ Lucas
3d0431cd86 Added "Wants=network-online.target" to update-pki.service 2018-09-02 03:08:21 -05:00
DJ Lucas
e0d9307489 Use p11-kit to generate alternate stores 2018-09-02 02:59:25 -05:00
DJ Lucas
486284c5ad
Use 'openssl rehash' instead of 'c_rehash'
Manual merge:
From 8fc206c2a9eb627dadc89c50f9c3b2992560130c Mon Sep 17 00:00:00 2001
From: Ken Moffat <zarniwhoop_AT_ntlworld_DOT_com>
Date: Thu, 5 Apr 2018 20:36:04 +0100
Subject: [PATCH] Change c_rehash to openssl rehash.
2018-04-06 00:30:28 -05:00
DJ Lucas
c7720cf468 Remove use of .old files/directories
Fix argument for catrust/smtrust in java cacerts logic.
2018-02-18 20:35:03 -06:00
DJ Lucas
0baf68696f Generate both PKCS#12 and JKS stores for Java
Local certs keep out of band trust when copied to system certs
2018-02-07 22:49:55 -06:00
DJ Lucas
e29ccf19ac Allow use of proxy with OpenSSL s_client. 2017-10-14 00:07:58 -05:00
DJ Lucas
73bfc6b792 Bump to version 0.6.
Really check revision before downloading.
2017-10-13 23:43:57 -05:00
DJ Lucas
ad038d1a46 Add uninstall and clean target, install systemd units 2017-09-30 02:40:10 -05:00
DJ Lucas
ecdb27dff2 Add example systemd service and timer 2017-09-30 00:49:49 -05:00
DJ Lucas
63ca0511c9 Bumpt to v0.5 2017-09-27 18:23:51 -05:00
DJ Lucas
0a1cf833bf Bump to v0.4 2017-09-27 18:22:08 -05:00
DJ Lucas
3e5253e9f9 Add email and code signing single stores. 2017-09-27 00:32:19 -05:00
DJ Lucas
73d32415a1 bump CHANGELOG to 0.4 after quick followup release 2017-09-24 22:01:40 -05:00
DJ Lucas
61576faff8 Fix target 2017-09-24 21:19:25 -05:00
DJ Lucas
dd5f5f2f52 sync help text and readme 2017-09-24 21:18:16 -05:00
DJ Lucas
21cfc0a38d remove .sh extension in comment 2017-09-24 21:03:30 -05:00
DJ Lucas
2eb827068a remove unneeded (commented) text 2017-09-24 21:01:17 -05:00
DJ Lucas
cecc4af094 Generate single file stores using completed OpenSSL store. 2017-09-24 20:51:49 -05:00
DJ Lucas
d88795240e Bump to 0.3. 2017-09-22 20:04:01 -05:00
DJ Lucas
497dd83b6c Update documentation and program output 2017-09-22 19:57:31 -05:00
DJ Lucas
e44fa32914 Allow rebuild with DESTDIR 2017-09-22 16:37:00 -05:00
DJ Lucas
0adb08d7e8 Use HG revision, fallback to date for local files 2017-09-22 11:50:47 -05:00
DJ Lucas
1a1f396832 typo 2017-09-21 00:40:23 -05:00
DJ Lucas
42d0ed55ff Add note about local overrides. 2017-09-21 00:39:18 -05:00
DJ Lucas
bf6d2a8eed Always add REVISION value to installed certdata.txt 2017-09-21 00:34:41 -05:00
DJ Lucas
e252b2413f Add -g/--get option to download using only s_client 2017-09-21 00:17:24 -05:00
DJ Lucas
c02dd19221 Install source certdata.txt file
Provide -r/--rebuild option
2017-09-20 22:29:03 -05:00
DJ Lucas
8e9c5b6abd Version 0.1. 2017-09-19 00:38:45 -05:00
DJ Lucas
3f2d76de5b Fix makefile for new name 2017-09-19 00:35:08 -05:00