Commit Graph

119 Commits

Author SHA1 Message Date
DJ Lucas
c7728786b8 Revert change to use /usr/bin/update-ca-certifiates for systemd service 2019-04-13 00:06:14 -05:00
DJ Lucas
5f9c836053 Redirect errors in copy-trust-modifications script
Use update-ca-certificates for systemd service
2019-04-12 23:11:01 -05:00
DJ Lucas
b616663f62 Update README 2019-04-12 22:53:30 -05:00
DJ Lucas
4b171eb701 Fix syntax error in check_arg() function 2019-04-12 22:32:02 -05:00
DJ Lucas
31e66e0c74 Remove unused variables saarg, csarg, and smarg in get_trust_values() function
Remove unused CERTLIST variable in copy-trust-modifications
Correct STDERR redirection in multiple functions
2019-04-12 22:20:20 -05:00
DJ Lucas
ddad9bbee0 Added write_nss_db() and write_java_p12() functions 2019-01-05 19:16:07 -06:00
DJ Lucas
a2b5c44153
Update README 2019-01-04 21:35:03 -06:00
DJ Lucas
1f668ec233 Fix filename 2019-01-01 20:16:40 -06:00
DJ Lucas
73c979f2b8 Update README and minor text modification 2019-01-01 20:09:21 -06:00
DJ Lucas
30fc33d7fe Changed default name of anchors list to use md5sums extension
Added copy-trust-modifcations script for use by p11-kit
2019-01-01 20:00:04 -06:00
DJ Lucas
7e305de608 Fix certificate label in local certificates 2019-01-01 19:35:19 -06:00
DJ Lucas
6832ac11b8 Added get_trust_values(), get_p11_trust(), and write_anchor() functions to eliminate duplicate code 2019-01-01 14:35:23 -06:00
DJ Lucas
5316943b46 Use md5sum values for anchors.txt to detect p11-kit changes
Added get_p11_label function to get reliable label values
2019-01-01 14:08:35 -06:00
DJ Lucas
33cdab2a45 Add anchorlist for use by p11-kit to utilize LOCALDIR 2018-12-28 00:41:01 -06:00
DJ Lucas
2526d6b813 Fix assignment of make-ca.conf 2018-12-01 17:26:26 -06:00
DJ Lucas
a3a5711466 Allow definition of configuratino file and install default configuration file. 2018-12-01 17:21:37 -06:00
DJ Lucas
b8603c3856 Perform system installation of update service files
Separate installation step for other consumers
- Partial merge of PR from Graham Weldon
2018-12-01 17:07:13 -06:00
DJ Lucas
aa43bb31eb Add missing java change to CHANGELOG 2018-12-01 16:07:58 -06:00
DJ Lucas
5a06937b96 Fix typo 2018-12-01 16:05:08 -06:00
DJ Lucas
ca103899f6 Move bundle defaults to /etc/pki/tls/certs/
Fix invalid test cases on command line processing
Remove -c/--cadir flags, replace with -b/--bindledir to store all bundles in same location
2018-12-01 16:03:19 -06:00
DJ Lucas
21ec3212be clean up inadvertant website change 2018-12-01 12:25:54 -06:00
DJ Lucas
7fe19acbb1 Set theme jekyll-theme-slate 2018-12-01 12:21:13 -06:00
DJ Lucas
d30386dc33 Fix help output for optional argument to -n 2018-09-04 22:44:07 -05:00
DJ Lucas
600de222bd minor logic fixes 2018-09-04 22:41:01 -05:00
DJ Lucas
98c0193bb5 Add back Java P12 certs (disabled by default)
Disable NSSDB by default
2018-09-04 22:19:40 -05:00
DJ Lucas
1aa966774d Fix changelog, compatibility symlink never went in, and will not 2018-09-03 01:02:16 -05:00
DJ Lucas
1477399b17 Put back creation of blank NSSDB 2018-09-03 01:01:28 -05:00
DJ Lucas
d342d6f51a Fix accidental breakage of anchors 2018-09-03 00:57:28 -05:00
DJ Lucas
eb574a7166 Properly update CHANGELOG. 2018-09-02 03:12:44 -05:00
DJ Lucas
f311a2b9cb Actually depend on the network-onlne.target. 2018-09-02 03:11:54 -05:00
DJ Lucas
3d0431cd86 Added "Wants=network-online.target" to update-pki.service 2018-09-02 03:08:21 -05:00
DJ Lucas
e0d9307489 Use p11-kit to generate alternate stores 2018-09-02 02:59:25 -05:00
DJ Lucas
486284c5ad
Use 'openssl rehash' instead of 'c_rehash'
Manual merge:
From 8fc206c2a9eb627dadc89c50f9c3b2992560130c Mon Sep 17 00:00:00 2001
From: Ken Moffat <zarniwhoop_AT_ntlworld_DOT_com>
Date: Thu, 5 Apr 2018 20:36:04 +0100
Subject: [PATCH] Change c_rehash to openssl rehash.
2018-04-06 00:30:28 -05:00
DJ Lucas
c7720cf468 Remove use of .old files/directories
Fix argument for catrust/smtrust in java cacerts logic.
2018-02-18 20:35:03 -06:00
DJ Lucas
0baf68696f Generate both PKCS#12 and JKS stores for Java
Local certs keep out of band trust when copied to system certs
2018-02-07 22:49:55 -06:00
DJ Lucas
e29ccf19ac Allow use of proxy with OpenSSL s_client. 2017-10-14 00:07:58 -05:00
DJ Lucas
73bfc6b792 Bump to version 0.6.
Really check revision before downloading.
2017-10-13 23:43:57 -05:00
DJ Lucas
ad038d1a46 Add uninstall and clean target, install systemd units 2017-09-30 02:40:10 -05:00
DJ Lucas
ecdb27dff2 Add example systemd service and timer 2017-09-30 00:49:49 -05:00
DJ Lucas
63ca0511c9 Bumpt to v0.5 2017-09-27 18:23:51 -05:00
DJ Lucas
0a1cf833bf Bump to v0.4 2017-09-27 18:22:08 -05:00
DJ Lucas
3e5253e9f9 Add email and code signing single stores. 2017-09-27 00:32:19 -05:00
DJ Lucas
73d32415a1 bump CHANGELOG to 0.4 after quick followup release 2017-09-24 22:01:40 -05:00
DJ Lucas
61576faff8 Fix target 2017-09-24 21:19:25 -05:00
DJ Lucas
dd5f5f2f52 sync help text and readme 2017-09-24 21:18:16 -05:00
DJ Lucas
21cfc0a38d remove .sh extension in comment 2017-09-24 21:03:30 -05:00
DJ Lucas
2eb827068a remove unneeded (commented) text 2017-09-24 21:01:17 -05:00
DJ Lucas
cecc4af094 Generate single file stores using completed OpenSSL store. 2017-09-24 20:51:49 -05:00
DJ Lucas
d88795240e Bump to 0.3. 2017-09-22 20:04:01 -05:00
DJ Lucas
497dd83b6c Update documentation and program output 2017-09-22 19:57:31 -05:00