aboutsummaryrefslogtreecommitdiff
path: root/lib/mk-ca-bundle.pl
AgeCommit message (Collapse)Author
2012-03-10mk-ca-bundle.pl: use LWP::UserAgent with proper https verify behavior.John Joseph Bachir
An alternative would be: 1. specify HTTPS_CA_DIR and/or HTTPS_CA_FILE 2. ensure that Net::SSL is being used, and IO::Socket::SSL is NOT being used This question and answer explain: http://stackoverflow.com/questions/74358/
2012-03-10access the CA source file using HTTPSJohn Joseph Bachir
2011-09-20Also skip certs masked as CKT_NSS_TRUST_UNKNOWN.Guenter Knauf
Fix posted by Tomas Hoger <thoger redhat com>.
2011-09-04Fixed final message output.Guenter Knauf
2011-09-04Fix to skip untrusted certs.Guenter Knauf
2011-04-14Replaced var manipulations with perlish hacks.Guenter Knauf
2011-04-07mk-ca-bundle.pl: show full URL in outputDaniel Stenberg
When I decided to search for a potential error with the cacert bundle it struck me I wanted to see the full source URL in the output...
2011-04-01Increased script version.Guenter Knauf
2011-04-01Make use of proxy vars if set.Guenter Knauf
Posted to the list by Quanah Gibson-Mount [quanah zimbra.com].
2011-04-01Use var again instead of hard-coded filename.Guenter Knauf
2011-03-14mk-ca-bundle.pl: Only download if modifiedAsk Bjørn Hansen
Only download and convert the certdata to the ca-bundle.crt if Mozilla changed the data The Perl LWP module (which in a bit of a circular reference is used by mk-ca-bundle.pl) is now indirectly using this script. I made this small tweak to make it easier to automatically maintain the generated ca-bundle.crt file in version control.
2011-02-02mk-ca-bundle.pl: use new cacert urlDaniel Stenberg
The official Mozilla page at http://www.mozilla.org/projects/security/certs/ points out a new place as the "proper" place to get Mozilla's CA certs from so this script is now updated to use that instead. Reported by: Daniel Mentz
2010-07-22Fixed script version which was still based on CVS Revision tag.Guenter Knauf
2010-03-24restore executable bits on some filesDaniel Stenberg
2010-03-24remove the CVSish $Id$ linesDaniel Stenberg
2010-02-14removed trailing whitespaceYang Tse
2008-08-23removed obsolete slash in URL.Gunter Knauf
2008-08-23revert accidental commitDaniel Stenberg
2008-08-23- Constantine Sapuntzakis fixed a bug when doing proxy CONNECT with the multiDaniel Stenberg
interface, and the proxy would send Connection: close during the authentication phase. http://curl.haxx.se/bug/view.cgi?id=2069047
2008-08-21use a more updated certdata.txt URLDaniel Stenberg
2008-02-15fixed version var.Gunter Knauf
2008-02-15moved info block up before help block so that it can also be displayed ↵Gunter Knauf
before help option; trial to add a version number.
2008-02-11open pipe to openssl commandline instead of writing into temp file.Gunter Knauf
2008-02-11added strict to make sure all vars are properly defined;Gunter Knauf
added -t switch to make text info of CAs optional; added -q switch to be really quiet.
2008-02-10added -b switch to provide a backup functionality for existing ca-bundle.crt ↵Gunter Knauf
file.
2008-02-09fixed another wrong var in error message.Gunter Knauf
2008-02-09fixed wrong var in error message.Gunter Knauf
2008-02-08use argument to specify output filename if present.Gunter Knauf
2008-02-08fixed regex to fetch certdata.txt version since it was replaced by CVS (argh!)Gunter Knauf
added a switch to display certdata.txt version header.
2008-02-08added Perl script to create a fresh ca-bundle.crt.Gunter Knauf