blob: 6a38a86ca980e07e75dfbd6dde0ba3d2aea4e296 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
|
#!/bin/sh
# Chromium no longer trusts the system certificate store. Instead, it uses the
# user's local NSS database, located at ~/.pki.
#
# This script adds our local root CA to the NSS DB, so that Chrome will trust it.
cert_name="$(hostname -d) Root CA"
cert_path=/usr/local/etc/ssl/certs/ca.crt
nss_db_path="${HOME}/.pki/nssdb"
mkdir -p "$nss_db_path"
if ! certutil -d "sql:${nss_db_path}" -L -n "$cert_name" > /dev/null 2>&1; then
certutil -d "sql:${nss_db_path}" -A -t 'C,,' -n "$cert_name" -i "$cert_path"
fi
|
