Overview
Comment: | Added "Common Policy" root CA |
---|---|
Downloads: | Tarball | ZIP archive | SQL archive |
Timelines: | family | ancestors | descendants | both | piv |
Files: | files | file ages | folders |
SHA1: | 69efc196d7c9f90be0e1eeaf780d6f9091df3773 |
User & Date: | rkeene on 2013-01-15 19:15:38 |
Other Links: | manifest | tags |
Context
2013-01-15
| ||
21:00 | Added additional debugging output check-in: b7f98935cd user: rkeene tags: piv | |
19:15 | Added "Common Policy" root CA check-in: 69efc196d7 user: rkeene tags: piv | |
19:03 | Removed extraneous CA check-in: acce3f42d5 user: rkeene tags: piv | |
Changes
Modified build/certs/federal/Makefile from [b3e9bfcd30] to [7088ba1ceb].
1 2 3 4 5 6 7 8 . 9 10 11 12 13 14 15 16 17 18 19 20 21 22 .. 27 28 29 30 31 32 33 34 35 36 37 |
all: cert-1.crt CPCA_TRCA.crt grep -l 'Issuer: C=US, O=U.S. Government, OU=FPKI, CN=Federal Bridge CA' *.crt | xargs rm -f grep -l 'Subject: C=US, O=U.S. Government, OU=FPKI, CN=Federal Common Policy CA' *.crt | xargs grep -H 'Issuer:' | grep -v 'Issuer: C=us, O=U.S. Government, OU=FBCA, CN=Common Policy' | cut -f 1 -d : | xargs rm -f CPCA_TRCA.crt: wget -O - --no-check-certificate https://pki.treas.gov/CPCA_TRCA.cer | openssl x509 -text > "$@.new" mv "$@.new" "$@" ................................................................................ caCertsIssuedTofcpca.p7c: wget -O "$@.new" http://http.fpki.gov/fcpca/caCertsIssuedTofcpca.p7c mv "$@.new" "$@" root_sia.p7b: wget -O "$@.new" --no-check-certificate https://pki.treas.gov/root_sia.p7b mv "$@.new" "$@" cert-%.crt: root_sia.p7b caCertsIssuedTofcpca.p7c idx=0; \ ( \ openssl pkcs7 -in root_sia.p7b -inform DER -print_certs -text; \ openssl pkcs7 -in caCertsIssuedTofcpca.p7c -inform DER -print_certs -text; \ ) | while IFS='' read -r line; do \ ................................................................................ if [ "$${line}" == "-----END CERTIFICATE-----" ]; then \ idx=$$[$$idx + 1]; \ fi; \ done clean: rm -f cert-*.crt rm -f CPCA_TRCA.crt.new root_sia.p7b.new caCertsIssuedTofcpca.p7c.new distclean: clean rm -f CPCA_TRCA.crt root_sia.p7b caCertsIssuedTofcpca.p7c |
| > > > > | | |
1 2 3 4 5 6 7 8 . 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 .. 31 32 33 34 35 36 37 38 39 40 41 |
all: cert-1.crt CPCA_TRCA.crt CommonPolicy.crt grep -l 'Issuer: C=US, O=U.S. Government, OU=FPKI, CN=Federal Bridge CA' *.crt | xargs rm -f grep -l 'Subject: C=US, O=U.S. Government, OU=FPKI, CN=Federal Common Policy CA' *.crt | xargs grep -H 'Issuer:' | grep -v 'Issuer: C=us, O=U.S. Government, OU=FBCA, CN=Common Policy' | cut -f 1 -d : | xargs rm -f CPCA_TRCA.crt: wget -O - --no-check-certificate https://pki.treas.gov/CPCA_TRCA.cer | openssl x509 -text > "$@.new" mv "$@.new" "$@" ................................................................................ caCertsIssuedTofcpca.p7c: wget -O "$@.new" http://http.fpki.gov/fcpca/caCertsIssuedTofcpca.p7c mv "$@.new" "$@" root_sia.p7b: wget -O "$@.new" --no-check-certificate https://pki.treas.gov/root_sia.p7b mv "$@.new" "$@" CommonPolicy.crt: wget -O - http://fpkia.gsa.gov/CommonPolicy/CommonPolicy.crt | openssl x509 -inform der -text > "$@.new" mv "$@.new" "$@" cert-%.crt: root_sia.p7b caCertsIssuedTofcpca.p7c idx=0; \ ( \ openssl pkcs7 -in root_sia.p7b -inform DER -print_certs -text; \ openssl pkcs7 -in caCertsIssuedTofcpca.p7c -inform DER -print_certs -text; \ ) | while IFS='' read -r line; do \ ................................................................................ if [ "$${line}" == "-----END CERTIFICATE-----" ]; then \ idx=$$[$$idx + 1]; \ fi; \ done clean: rm -f cert-*.crt rm -f CPCA_TRCA.crt.new root_sia.p7b.new caCertsIssuedTofcpca.p7c.new CommonPolicy.crt.new distclean: clean rm -f CPCA_TRCA.crt root_sia.p7b caCertsIssuedTofcpca.p7c CommonPolicy.crt |
Modified cackey_builtin_certs.h from [afc4814f42] to [954ba4d224].
cannot compute difference between binary files