Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update Mozilla CA certificate store to latest (01-23-2019) for libgit2 SSL. #31029

Merged
merged 1 commit into from
Feb 11, 2019
Merged

Update Mozilla CA certificate store to latest (01-23-2019) for libgit2 SSL. #31029

merged 1 commit into from
Feb 11, 2019

Conversation

mikhail-j
Copy link
Contributor

@mikhail-j mikhail-j commented Feb 10, 2019
edited
Loading

@staticfloat

The curl project has updated the Mozilla CA certificate store last month (01/23/2019).

This update coincides with CA certificate list changes to Mozilla NSS 3.41.

7 CA certificates were added:

  • Certigna Root CA
  • GTS Root R1
  • GTS Root R2
  • GTS Root R3
  • GTS Root R4
  • UCA Global G2 Root
  • UCA Extended Validation Root

The following CA certificates that were previously trust bit disabled in Mozilla NSS 3.39 (cacert-2018-10-17.pem had them removed #30079) are officially removed in Mozilla NSS 3.41:

  • Certplus Root CA G1
  • Certplus Root CA G2
  • OpenTrust Root CA G1
  • OpenTrust Root CA G2
  • OpenTrust Root CA G3

@StefanKarpinski
Copy link
Member

Thank you for taking care of these updates! Should be backported to 1.0 and 1.1 branches.

@mikhail-j
Copy link
Contributor Author

@StefanKarpinski Glad to be of help.

@StefanKarpinski StefanKarpinski added backport 1.0 triage This should be discussed on a triage call labels Feb 11, 2019
@StefanKarpinski StefanKarpinski merged commit a1377ea into JuliaLang:master Feb 11, 2019
@StefanKarpinski
Copy link
Member

@staticfloat: are these safe for backporting? I assume that they should be backported for security.

@mikhail-j mikhail-j deleted the libgit2-cacert-january2019 branch February 12, 2019 00:31
@staticfloat
Copy link
Member

Yes, these should be safe for backporting.

@StefanKarpinski StefanKarpinski removed the triage This should be discussed on a triage call label Feb 12, 2019
This was referenced Apr 15, 2019
Merged
Merged
KristofferC pushed a commit that referenced this pull request Apr 20, 2019
@mikhail-j @KristofferC
Update Mozilla CA certificate store to latest (01-23-2019) for libgit…
0bc6c5d 
…2 SSL. (#31029)

(cherry picked from commit a1377ea)
KristofferC pushed a commit that referenced this pull request Apr 20, 2019
@mikhail-j @KristofferC
Update Mozilla CA certificate store to latest (01-23-2019) for libgit…
3c1cc6c 
…2 SSL. (#31029)

(cherry picked from commit a1377ea)
KristofferC pushed a commit that referenced this pull request Apr 20, 2019
@mikhail-j @KristofferC
Update Mozilla CA certificate store to latest (01-23-2019) for libgit…
ef22206 
…2 SSL. (#31029)

(cherry picked from commit a1377ea)
@KristofferC KristofferC mentioned this pull request Aug 26, 2019
Merged
55 tasks
KristofferC pushed a commit that referenced this pull request Feb 20, 2020
@mikhail-j @KristofferC
Update Mozilla CA certificate store to latest (01-23-2019) for libgit…
e5366e5 
…2 SSL. (#31029)

(cherry picked from commit a1377ea)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@staticfloat staticfloat staticfloat approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@mikhail-j @StefanKarpinski @staticfloat @KristofferC