lp:ubuntu/precise-proposed/ca-certificates
- Get this branch:
- bzr branch lp:ubuntu/precise-proposed/ca-certificates
Branch merges
Related bugs
Bug #1014640: 12.04/openssl refusing some verisign certified sites | Unknown | Confirmed |
Related blueprints
Branch information
Recent revisions
- 30. By Marc Deslauriers
-
* Update ca-certificates database to 20130906 (LP: #1257265):
- backport changes from the Ubuntu 14.04 20130906ubuntu1 package
- No longer ship cacert.org certificates (LP: #1258286)
- No longer ship obsolete debconf.org certificates
- mozilla/certdata2pem. py: Work around openssl issue by shipping both
versions of the same signed roots. Previously, the script would
simply overwrite the first one found in the certdata.txt with the
later one since they both have the same CKA_LABEL, resulting in
identical filenames. (LP: #1014640, LP: #1031333) - 29. By Michael Shuler
-
* Clarify CA audit note in package description and README.debian. Thanks
to C.J. Adams-Collier for the patch. Closes: #594383
* Remove French Government IGC/A CA certificates. The RSA certificate is
included in the Mozilla bundle and the DSA certificate is not in use.
Closes: #646767
* Remove expired signet.pl CAs. Closes: #647849
* Remove expired brasil.gov.br CA.
* Edit 20111025 changelog/NEWS entries to correctly list installed CAs
* Use 'set -e' in body of debian/postinst
* Update mozilla/certdata. txt to version 1.80
(no added/removed CAs)
* Update mozilla/certdata2pem. py to parse NETSCAPE or NSS data - 28. By Loïc Minier
-
Tweak postinst to not run update-
ca-certificates multiple times and remove
dangerous plain c_rehash snippet; LP: #854927. - 27. By Loïc Minier
-
Run update-
ca-certificates --fresh on upgrades from versions older than
this one as to remove links created by patched c_rehash or add missing
links; depend on fixed openssl; drop after oneiric; see Debian #642314;
LP: #855454. - 25. By Steve Langasek
-
Conflict with ca-certificates
-java == 20110912ubuntu1, since its hook
will accidentally remove system libraries. LP: #855171. - 24. By Steve Langasek
-
Really only call --fresh on upgrade, instead of all the time; thanks to
Adam Conrad for catching this in the queue. - 21. By Steve Langasek
-
debian/postinst: kludge in support for running
update-ca-certificates --fresh on upgrade, to ensure we fix up the hash
for anyone who happened to install from a daily.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/trusty/ca-certificates