root_ssl_certificates

command
v0.0.0-...-bbc9ce3 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Dec 6, 2021 License: BSD-2-Clause Imports: 11 Imported by: 0

README

root_ssl_certificates

This directory contains the root_ssl_certificates package, which is used by appmgr to provide the root-ssl-certificates sandbox feature.

The certificates file, third_party/cert.pem, is updated using the roll_certs.go script, which pulls from Mozilla's root cert bundle at https://hg.mozilla.org/mozilla-central/raw-file/tip/security/nss/lib/ckfw/builtins/certdata.txt and converts it to a single PEM file using third_party/convert_mozilla_certdata.go. To update, simply run go run roll_certs.go and, if this results in any update to third_party/cert.pem, check in the new versions of both third_party/cert.pem and third_party/cert.stamp.

This includes the third_party/convert_mozilla_certdata.go tool, which is used by roll_certs.go to extract the bundle of Mozilla root certificates. This tool is originally from https://github.com/agl/extract-nss-root-certs. The version of the tool here is taken from commit 492d8c95628eb861a9f1467099936bc2b1fd6a7b.

The contents of third_party/cert.pem are covered by the license file third_party/LICENSE.MPLv2.

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Directories

Path Synopsis
third_party
convert_mozilla_certdata

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.