-
Notifications
You must be signed in to change notification settings - Fork 1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[etc] Chromium root store #2601
Comments
Ah, cool. That makes matters easier than I thought. How does one retrieve the raw file? The android root CAs you mentioned above contain only 36 certificates |
In theory the txt format link in footer should work: (ah yea it'd probably need base64decoding tho: google/gitiles#106 ;D) |
Truth is I got a bit lost in the Android roots, as the current repo seems rather complicated (and the individual certs stored as separate files at
E.g. some refs/releases include the
|
Neither Android nor Chrome trust store is included in etc exports, noting:
However, Chromium no longer relies on the underlying OS, as quoted from the link:
So taking the table from chromium/src/[~]/ssl/chrome_root_store/faq.md it maps to:
There are two sources, one we used for years to map as "Android" roots: https://pki.goog/roots.pem and also now the chromium reference to its src: https://chromium.googlesource.com/chromium/src/+/main/net/data/ssl/chrome_root_store/root_store.md
(Not sure how these map to Mozilla/NSS or Microsoft/SChannel exports as compared to just CCADB that all of these are a member of anyways…)
The text was updated successfully, but these errors were encountered: