Update for 20180411

Remove WoSign from blacklist since the certs themselves are gone.

Update certdata.txt from NSS upstream.

Update VERSION file for new release.

1 files changed, 0 insertions, 19 deletions

diff --git a/blacklist.txt b/blacklist.txt
index 6ea1732..9401d41 100644
--- a/blacklist.txt
+++ b/blacklist.txt
@@ -1,23 +1,4 @@
 # One blacklist entry per line, corresponding to the label in certdata.txt.
 
-# MD5 Collision Proof of Concept CA
-"MD5 Collisions Forged Rogue CA 25c3"
-
 # DigiNotar Root CA (see debbug#639744)
 "DigiNotar Root CA"
-
-# StartCom and WoSign certificates are now untrusted by the major browser
-# vendors[0]. See [1] for discussion. The list was generated by:
-#
-#   $ egrep 'WoSign|StartCom' mozilla/certdata.txt \
-#         | grep UTF | sed 's/CKA_LABEL UTF8 //' | uniq
-#
-# [0] https://blog.mozilla.org/security/2016/10/24/distrusting-new-wosign-and-startcom-certificates/
-# [1] https://bugs.debian.org/858539
-#
-"StartCom Certification Authority"
-"StartCom Certification Authority G2"
-"WoSign"
-"WoSign China"
-"Certification Authority of WoSign G2"
-"CA WoSign ECC Root"