freebsd-dev/secure
Kyle Evans b25bf676f0 caroot: commit initial bundle
Interested users can blacklist any/all of these with certctl(8), examples:

- mv /usr/share/certs/trusted/... /usr/share/certs/blacklisted/...; \
    certctl rehash
- certctl blacklist /usr/share/certs/trusted/*; \
    certctl rehash

Certs can be easily examined after installation with `certctl list`, and
certctl blacklist will accept the hashed filename as output by list or as
seen in /etc/ssl/certs

No objection from:	secteam
Relnotes:	Definite maybe
2019-10-04 02:34:20 +00:00
..
caroot caroot: commit initial bundle 2019-10-04 02:34:20 +00:00
lib Merge OpenSSL 1.1.1d. 2019-09-10 21:08:17 +00:00
libexec Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
tests Merge ^/user/ngie/release-pkg-fix-tests to unbreak how test files are installed 2016-05-04 23:20:53 +00:00
usr.bin Merge OpenSSL 1.1.1d. 2019-09-10 21:08:17 +00:00
usr.sbin Upgrade to OpenSSH 7.8p1. 2018-09-10 16:20:12 +00:00
Makefile [1/3] Initial infrastructure for SSL root bundle in base 2019-10-02 01:05:29 +00:00
Makefile.inc crypto: normalize paths using SRCTOP-relative paths or :H when possible 2017-03-04 11:35:30 +00:00