1CLEANFILES+= certdata.txt 2 3SUBDIR+= trusted 4SUBDIR+= untrusted 5 6.include <bsd.obj.mk> 7 8# To be used by secteam@ to update the trusted certificates 9fetchcerts: .PHONY 10 fetch --no-sslv3 --no-tlsv1 -o certdata.txt 'https://raw.githubusercontent.com/mozilla-firefox/firefox/refs/heads/release/security/nss/lib/ckfw/builtins/certdata.txt' 11 12cleancerts: .PHONY 13 @${MAKE} -C ${.CURDIR}/trusted ${.TARGET} 14 15updatecerts: .PHONY cleancerts fetchcerts 16 perl ${.CURDIR}/ca-extract.pl -i certdata.txt \ 17 -t ${.CURDIR}/trusted -u ${.CURDIR}/untrusted 18