add note about cert

2001-12-27 18:30:02 +00:00
parent 44ca7f4423
commit 93022365c9
1 changed files with 60 additions and 1 deletions
--- a/doc-jp/README.SSL
+++ b/doc-jp/README.SSL
@@ -2,6 +2,8 @@ SSL

                                                         (2000/11/07)  <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
                                                        okabek@guitar.ocn.ne.jp
+                                                         (2001/12/27)  <20><><EFBFBD><EFBFBD>ʸ<EFBFBD><CAB8>
+                                                              ukai@debian.or.jp

 <20><> SSLeay/OpenSSL <20>饤<EFBFBD>֥<EFBFBD><D6A5><EFBFBD><EFBFBD><EFBFBD><EFBFBD>̤<EFBFBD><CCA4><EFBFBD>, SSL <20>򥵥ݡ<F2A5B5A5><DDA1>Ȥ<EFBFBD><C8A4>Ƥ<EFBFBD><C6A4>ޤ<EFBFBD>.
    <20><><EFBFBD>餫<EFBFBD><E9A4AB><EFBFBD>ᥤ<EFBFBD>󥹥ȡ<F3A5B9A5><C8A1>뤷<EFBFBD>Ƥ<EFBFBD><C6A4><EFBFBD><EFBFBD>Ƥ<EFBFBD><C6A4><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>.
@@ -37,10 +39,67 @@ SSL

    <20>ޤ<EFBFBD><DEA4>ºݤ<C2BA>ǧ<EFBFBD>ڤ<EFBFBD><DAA4>Ԥ<EFBFBD><D4A4><EFBFBD><EFBFBD><EFBFBD>, ssl_ca_path<74>ޤ<EFBFBD><DEA4><EFBFBD>ssl_ca_file<6C><65>, <20><><EFBFBD><EFBFBD><EFBFBD>Фθ<D0A4><CEB8><EFBFBD>
    <20><>̾<EFBFBD><CCBE><EFBFBD>Ƥ<EFBFBD><C6A4><EFBFBD>ǧ<EFBFBD>ڶɤξ<C9A4><CEBE><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> (ssl_verify_server<65><72>ON/OFF<46>˴ط<CBB4>̵<EFBFBD><CCB5>) <20><><EFBFBD><EFBFBD>
-    <20><><EFBFBD>ʤ<EFBFBD><CAA4><EFBFBD>ǧ<EFBFBD>ڤ<EFBFBD><DAA4><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ʤ<EFBFBD><EFBFBD>褦<EFBFBD>Ǥ<EFBFBD>.
+    <20><><EFBFBD>ʤ<EFBFBD><CAA4>ȥ<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ǧ<EFBFBD>ڤ<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ޤ<EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
+
+    <20>̾<EFBFBD><CCBE>Ȥ<EFBFBD><C8A4><EFBFBD><EFBFBD>Ƥ<EFBFBD><C6A4><EFBFBD>ǧ<EFBFBD>ڶɤξ<C9A4><CEBE><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ϰʲ<CFB0><CAB2>ΤȤ<CEA4><C8A4><EFBFBD><EFBFBD>ʤɤ<CAA4><C9A4><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ǥ<EFBFBD><C7A4>ޤ<EFBFBD><DEA4><EFBFBD>
+
+    * mozilla<6C>Υ<EFBFBD><CEA5><EFBFBD><EFBFBD><EFBFBD><EFBFBD>˴ޤޤ<DEA4><DEA4>Ƥ<EFBFBD><C6A4><EFBFBD> 
+       mozilla/security/nss/lib/ckfw/builtins/certdata.txt
+      <20><><EFBFBD><EFBFBD>ź<EFBFBD>դ<EFBFBD> ruby script <20><> *.pem<65>ե<EFBFBD><D5A5><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ȥ<EFBFBD><C8A4>ƤȤ<C6A4><C8A4><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
+
+	% ruby certdata2pem.rb < certdata.txt
+
+      <20>ǥ<EFBFBD><C7A5><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ȥǥ<C8A5><C7A5>쥯<EFBFBD>ȥ<EFBFBD><C8A5><EFBFBD> *.pem<65>ե<EFBFBD><D5A5><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ȥ<EFBFBD><C8A4><EFBFBD><EFBFBD><EFBFBD>
+      openssl<73><6C> c_rehash <20><><EFBFBD>ޥ<EFBFBD><DEA5>ɤ<EFBFBD> hash symlink <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ޤ<EFBFBD><DEA4><EFBFBD>
+      <20><><EFBFBD>Υǥ<CEA5><C7A5>쥯<EFBFBD>ȥ<EFBFBD><C8A5><EFBFBD> ssl_ca_path <20><><EFBFBD><EFBFBD><EFBFBD>ꤹ<EFBFBD>뤳<EFBFBD>Ȥ<EFBFBD><C8A4>Ǥ<EFBFBD><C7A4>ޤ<EFBFBD><DEA4><EFBFBD>
+      <20>⤷<EFBFBD><E2A4B7><EFBFBD>ϡ<EFBFBD>*.pem <20><><EFBFBD>ޤȤ᤿<C8A4><E1A4BF><EFBFBD>ĤΥե<CEA5><D5A5><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ƥ<EFBFBD><C6A4><EFBFBD><EFBFBD><EFBFBD>
+      <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD> ssl_ca_file <20><><EFBFBD><EFBFBD><EFBFBD>ꤹ<EFBFBD>뤳<EFBFBD>Ȥ<EFBFBD><C8A4>Ǥ<EFBFBD><C7A4>ޤ<EFBFBD><DEA4><EFBFBD>
+
+   * mod_ssl<73>Υ<EFBFBD><CEA5><EFBFBD><EFBFBD><EFBFBD><EFBFBD>˴ޤޤ<DEA4><DEA4>Ƥ<EFBFBD><C6A4><EFBFBD> pkg.sslcfg/ca-bundle.crt
+      <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD> PEM<45>ʤΤǡ<CEA4><C7A1><EFBFBD><EFBFBD>Υե<CEA5><D5A5><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Υե<CEA5><D5A5>ѥ<EFBFBD>̾<EFBFBD><CCBE> ssl_ca_file <20><>
+      <20><><EFBFBD>ꤹ<EFBFBD>뤳<EFBFBD>Ȥ<EFBFBD><C8A4>Ǥ<EFBFBD><C7A4>ޤ<EFBFBD><DEA4><EFBFBD>

 <20><> <20>С<EFBFBD><D0A1><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> 0.9.5 <20>ʹߤ<CAB9> OpenSSL <20>饤<EFBFBD>֥<EFBFBD><D6A5><EFBFBD><EFBFBD><EFBFBD>, <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>뤿<EFBFBD><EBA4BF><EFBFBD>˴<EFBFBD><CBB4>Ĥ<EFBFBD>
    <20>Υ<EFBFBD><CEA5><EFBFBD><EFBFBD>ɤ<EFBFBD><C9A4><EFBFBD><EFBFBD>ꤹ<EFBFBD><EAA4B9>ɬ<EFBFBD>פ<EFBFBD><D7A4><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ޤ<EFBFBD>.
    <20>ǥե<C7A5><D5A5><EFBFBD><EFBFBD>ȤǤ<C8A4> /dev/urandom <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ф<EFBFBD><D0A4><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>Ѥ<EFBFBD><D1A4>ޤ<EFBFBD><DEA4><EFBFBD>, ̵<><CCB5><EFBFBD><EFBFBD><EFBFBD><EFBFBD> w3m <20><><EFBFBD><EFBFBD>
    <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ޤ<EFBFBD>. <20>⤷, EGD (Entropy Gathering Daemon) <20><><EFBFBD><EFBFBD><EFBFBD>ѤǤ<D1A4><C7A4><EFBFBD><EFBFBD>Ķ<EFBFBD><C4B6>Ǥ<EFBFBD><C7A4><EFBFBD>
    <20><><EFBFBD>Ȥ<EFBFBD><C8A4><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>, USE_EGD <20>ޥ<EFBFBD><DEA5><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>å<EFBFBD><C3A5><EFBFBD><EFBFBD>ƤߤƤ<DFA4><C6A4><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>.
+
+----------------------------------------------------------------
+#!/usr/bin/ruby
+# Copyright (c) 2001 Fumitoshi UKAI <ukai@debian.or.jp>
+#     All rights reserved.
+#     This is free software with ABSOLUTELY NO WARRANTY.
+#
+# You can redistribute it and/or modify it under the terms of 
+# the Ruby's licence.
+#
+# certdata2pem.rb
+
+while line = $stdin.gets
+  next if line =~ /^#/
+  next if line =~ /^\s*$/
+  line.chomp!
+  if line =~ /CKA_LABEL/
+    label,type,val = line.split(' ',3)
+    val.sub!(/^"/, "")
+    val.sub!(/"$/, "")
+    fname = val.gsub(/\//,"_").gsub(/\s+/, "_").gsub(/[()]/, "=") + ".pem"
+    next
+  end
+  if line =~ /CKA_VALUE MULTILINE_OCTAL/
+    data=''
+    while line = $stdin.gets
+      break if /^END/
+      line.chomp!
+      line.gsub(/\\([0-3][0-7][0-7])/) { data += $1.oct.chr }
+    end
+    open(fname, "w") do |fp|
+      fp.puts "-----BEGIN CERTIFICATE-----"
+      fp.puts [data].pack("m*")
+      fp.puts "-----END CERTIFICATE-----"
+    end
+    puts "Created #{fname}"
+  end
+end
+system("c_rehash", ".")