Skip to content

Commit

Permalink
Update mkcert to 1.4.1. Now a Go module.
Browse files Browse the repository at this point in the history
v1.4.1

  • Use sudo when necessary to install in system-wide NSS stores (#192)
  • Add a -version flag (#191)
  • Speed up macOS execution by 4x for most users (#135)
  • Minor usability improvements (#182, #178, #188)


v1.4.0

macOS Catalina compatibility, URL and email SANs, and more

macOS 10.15 Catalina introduced certificate lifespan limits which block mkcert
certificates. As a temporary measure, mkcert certificates now have a fixed
notBefore date of June 1st, 2019. Once the ACME server is implemented,
certificate lifespan will be shortened to 3 months. (#174)

Certificates generated by previous versions of mkcert after July 1st, 2019 will
not work on macOS 10.15 Catalina, and will have to be regenerated. The root CA
is unaffected and there is no need to rerun mkcert -install.

URL (#166) and email (for S/MIME, #152) SANs are now supported.

Client certificates are now created with a -client filename suffix, and they
claim the serverAuth EKU as well as the clientAuth one.

The certificate subject now includes the full user name, like
filippo@Bistromath.local (Filippo Valsorda).

SLES, OpenSUSE (#162), Snapcraft (#116), and CentOS 7 (#120) are now supported.

Linux release binaries are now fully static, and will work regardless of the
system libc. (#169)

v1.3.0

New advanced options:

  • -ecdsa to generate ECDSA private keys
  • -client to generate client certificates
  • -csr to sign certificate signing requests
  • $TRUST_STORES to select what stores to install into

Also, in other news:

  • Add "Firefox Nightly.app" support on macOS
  • Set the CommonName when generating PKCS#12 files for IIS
  • Loading branch information
bsiegert committed Jul 7, 2020
1 parent 5b64cb6 commit 6bd86d5
Show file tree
Hide file tree
Showing 2 changed files with 261 additions and 12 deletions.
67 changes: 60 additions & 7 deletions security/go-mkcert/Makefile
Original file line number Diff line number Diff line change
@@ -1,26 +1,79 @@
# $NetBSD: Makefile,v 1.15 2020/06/17 09:54:15 bsiegert Exp $
# $NetBSD: Makefile,v 1.16 2020/07/07 20:35:50 bsiegert Exp $

DISTNAME= mkcert-${GITHUB_TAG}
PKGNAME= go-mkcert-${VERSION}
PKGREVISION= 14
CATEGORIES= security
MASTER_SITES= ${MASTER_SITE_GITHUB:=FiloSottile/}
GITHUB_PROJECT= mkcert
VERSION= 1.2.0
VERSION= 1.4.1
GITHUB_TAG= v${VERSION}

MAINTAINER= pkgsrc-users@NetBSD.org
HOMEPAGE= https://github.com/FiloSottile/mkcert/
COMMENT= Make locally trusted development certificates
LICENSE= modified-bsd

GO_DIST_BASE= mkcert-${VERSION}
GO_SRCPATH= github.com/FiloSottile/mkcert
WRKSRC= ${WRKDIR}/mkcert-${VERSION}
GO_BUILD_PATTERN= github.com/FiloSottile/mkcert

INSTALLATION_DIRS+= bin

GO_MODULE_FILES+= software.sslmate.com/src/go-pkcs12/@v/v0.0.0-20180114231543-2291e8f0f237.mod
GO_MODULE_FILES+= golang.org/x/tools/@v/v0.0.0-20191108193012-7d206e10da11.mod
GO_MODULE_FILES+= golang.org/x/tools/@v/v0.0.0-20191022074931-774d2ec196ee.mod
GO_MODULE_FILES+= golang.org/x/net/@v/v0.0.0-20190620200207-3b0461eec859.mod
GO_MODULE_FILES+= golang.org/x/net/@v/v0.0.0-20190404232315-eb5bcb51f2a3.mod
GO_MODULE_FILES+= golang.org/x/sync/@v/v0.0.0-20190423024810-112230192c58.mod
GO_MODULE_FILES+= golang.org/x/xerrors/@v/v0.0.0-20190717185122-a985d3407aa7.mod
GO_MODULE_FILES+= golang.org/x/crypto/@v/v0.0.0-20190308221718-c2843e01d9a2.mod
GO_MODULE_FILES+= golang.org/x/crypto/@v/v0.0.0-20190510104115-cbcb75029529.mod
GO_MODULE_FILES+= golang.org/x/sys/@v/v0.0.0-20190215142949-d0b11bdaac8a.mod
GO_MODULE_FILES+= golang.org/x/sys/@v/v0.0.0-20190412213103-97732733099d.mod
GO_MODULE_FILES+= golang.org/x/text/@v/v0.3.0.mod
GO_MODULE_FILES+= golang.org/x/mod/@v/v0.0.0-20190513183733-4bf6d317e70e.mod
GO_MODULE_FILES+= howett.net/plist/@v/v0.0.0-20181124034731-591f970eefbb.mod
GO_MODULE_FILES+= honnef.co/go/tools/@v/v0.0.0-20191107024926-a9480a3ec3bc.mod
GO_MODULE_FILES+= github.com/kisielk/gotool/@v/v1.0.0.mod
GO_MODULE_FILES+= github.com/google/renameio/@v/v0.1.0.mod
GO_MODULE_FILES+= github.com/rogpeppe/go-internal/@v/v1.3.0.mod
GO_MODULE_FILES+= github.com/!burnt!sushi/toml/@v/v0.3.1.mod
GO_MODULE_FILES+= github.com/kr/pretty/@v/v0.1.0.mod
GO_MODULE_FILES+= github.com/kr/text/@v/v0.1.0.mod
GO_MODULE_FILES+= github.com/kr/pty/@v/v1.1.1.mod
GO_MODULE_FILES+= github.com/jessevdk/go-flags/@v/v1.4.0.mod
GO_MODULE_FILES+= gopkg.in/yaml.v2/@v/v2.2.1.mod
GO_MODULE_FILES+= gopkg.in/check.v1/@v/v1.0.0-20180628173108-788fd7840127.mod
GO_MODULE_FILES+= gopkg.in/check.v1/@v/v0.0.0-20161208181325-20d25e280405.mod
GO_MODULE_FILES+= gopkg.in/errgo.v2/@v/v2.1.0.mod
GO_MODULE_FILES+= software.sslmate.com/src/go-pkcs12/@v/v0.0.0-20180114231543-2291e8f0f237.zip
GO_MODULE_FILES+= golang.org/x/tools/@v/v0.0.0-20191108193012-7d206e10da11.zip
GO_MODULE_FILES+= golang.org/x/net/@v/v0.0.0-20190620200207-3b0461eec859.zip
GO_MODULE_FILES+= golang.org/x/sync/@v/v0.0.0-20190423024810-112230192c58.zip
GO_MODULE_FILES+= golang.org/x/xerrors/@v/v0.0.0-20190717185122-a985d3407aa7.zip
GO_MODULE_FILES+= golang.org/x/crypto/@v/v0.0.0-20190510104115-cbcb75029529.zip
GO_MODULE_FILES+= golang.org/x/sys/@v/v0.0.0-20190412213103-97732733099d.zip
GO_MODULE_FILES+= golang.org/x/text/@v/v0.3.0.zip
GO_MODULE_FILES+= golang.org/x/mod/@v/v0.0.0-20190513183733-4bf6d317e70e.zip
GO_MODULE_FILES+= howett.net/plist/@v/v0.0.0-20181124034731-591f970eefbb.zip
GO_MODULE_FILES+= honnef.co/go/tools/@v/v0.0.0-20191107024926-a9480a3ec3bc.zip
GO_MODULE_FILES+= github.com/kisielk/gotool/@v/v1.0.0.zip
GO_MODULE_FILES+= github.com/google/renameio/@v/v0.1.0.zip
GO_MODULE_FILES+= github.com/rogpeppe/go-internal/@v/v1.3.0.zip
GO_MODULE_FILES+= github.com/!burnt!sushi/toml/@v/v0.3.1.zip
GO_MODULE_FILES+= github.com/kr/pretty/@v/v0.1.0.zip
GO_MODULE_FILES+= github.com/kr/text/@v/v0.1.0.zip
GO_MODULE_FILES+= github.com/kr/pty/@v/v1.1.1.zip
GO_MODULE_FILES+= github.com/jessevdk/go-flags/@v/v1.4.0.zip
GO_MODULE_FILES+= gopkg.in/yaml.v2/@v/v2.2.1.zip
GO_MODULE_FILES+= gopkg.in/check.v1/@v/v1.0.0-20180628173108-788fd7840127.zip
GO_MODULE_FILES+= gopkg.in/errgo.v2/@v/v2.1.0.zip

post-patch:
cd ${WRKSRC} && cp truststore_linux.go truststore_netbsd.go

do-install:
${INSTALL_PROGRAM} ${WRKDIR}/bin/mkcert ${DESTDIR}${PREFIX}/bin
${INSTALL_PROGRAM} ${WRKDIR}/.gopath/bin/mkcert ${DESTDIR}${PREFIX}/bin

.include "../../lang/go/go-package.mk"
.include "../../lang/go/go-module.mk"
.include "../../mk/bsd.pkg.mk"

Loading

0 comments on commit 6bd86d5

Please sign in to comment.