|
91 | 91 |
|
92 | 92 | my @valid_mozilla_trust_levels = ( |
93 | 93 | "TRUSTED_DELEGATOR", # CAs |
94 | | - "NOT_TRUSTED", # Don't trust these certs. |
95 | | - "MUST_VERIFY_TRUST", # This explicitly tells us that it ISN'T a CA but is |
| 94 | + "NOT_TRUSTED", # Do not trust these certs. |
| 95 | + "MUST_VERIFY_TRUST", # This explicitly tells us that it IS NOT a CA but is |
96 | 96 | # otherwise ok. In other words, this should tell the |
97 | 97 | # app to ignore any other sources that claim this is |
98 | 98 | # a CA. |
|
154 | 154 | print " 2) Default to 'release', but more recent updates may be found in other trees\n"; |
155 | 155 | print " 3) certdata.txt file format may change, lag time to update this script\n"; |
156 | 156 | print " 4) Generally unwise to blindly trust CAs without manual review & verification\n"; |
157 | | - print " 5) Mozilla apps use additional security checks aren't represented in certdata\n"; |
| 157 | + print " 5) Mozilla apps use additional security checks are not represented in certdata\n"; |
158 | 158 | print " 6) Use of this script will make a security engineer grind his teeth and\n"; |
159 | 159 | print " swear at you. ;)\n"; |
160 | 160 | exit; |
@@ -241,7 +241,7 @@ ($$@) |
241 | 241 | sub sha256 { |
242 | 242 | my $result; |
243 | 243 | if($Digest::SHA::VERSION || $Digest::SHA::PurePerl::VERSION) { |
244 | | - open(FILE, $_[0]) or die "Can't open '$_[0]': $!"; |
| 244 | + open(FILE, $_[0]) or die "Could not open '$_[0]': $!"; |
245 | 245 | binmode(FILE); |
246 | 246 | $result = $MOD_SHA->new(256)->addfile(*FILE)->hexdigest; |
247 | 247 | close(FILE); |
|
401 | 401 |
|
402 | 402 | my $format = $opt_t ? "plain text and " : ""; |
403 | 403 | if($stdout) { |
404 | | - open(CRT, '> -') or die "Couldn't open STDOUT: $!\n"; |
| 404 | + open(CRT, '> -') or die "Could not open STDOUT: $!\n"; |
405 | 405 | } else { |
406 | | - open(CRT,">$crt.~") or die "Couldn't open $crt.~: $!\n"; |
| 406 | + open(CRT,">$crt.~") or die "Could not open $crt.~: $!\n"; |
407 | 407 | } |
408 | 408 | print CRT <<EOT; |
409 | 409 | ## |
|
442 | 442 | my $cka_value; |
443 | 443 | my $valid = 0; |
444 | 444 |
|
445 | | -open(TXT,"$txt") or die "Couldn't open $txt: $!\n"; |
| 445 | +open(TXT,"$txt") or die "Could not open $txt: $!\n"; |
446 | 446 | while(<TXT>) { |
447 | 447 | if(/\*\*\*\*\* BEGIN LICENSE BLOCK \*\*\*\*\*/) { |
448 | 448 | print CRT; |
@@ -629,34 +629,34 @@ (%) |
629 | 629 | $pipe = "|$openssl x509 -" . $hash . " -fingerprint -noout -inform PEM"; |
630 | 630 | if(!$stdout) { |
631 | 631 | $pipe .= " >> $crt.~"; |
632 | | - close(CRT) or die "Couldn't close $crt.~: $!"; |
| 632 | + close(CRT) or die "Could not close $crt.~: $!"; |
633 | 633 | } |
634 | | - open(TMP, $pipe) or die "Couldn't open openssl pipe: $!"; |
| 634 | + open(TMP, $pipe) or die "Could not open openssl pipe: $!"; |
635 | 635 | print TMP $pem; |
636 | | - close(TMP) or die "Couldn't close openssl pipe: $!"; |
| 636 | + close(TMP) or die "Could not close openssl pipe: $!"; |
637 | 637 | if(!$stdout) { |
638 | | - open(CRT, ">>$crt.~") or die "Couldn't open $crt.~: $!"; |
| 638 | + open(CRT, ">>$crt.~") or die "Could not open $crt.~: $!"; |
639 | 639 | } |
640 | 640 | } |
641 | 641 | $pipe = "|$openssl x509 -text -inform PEM"; |
642 | 642 | if(!$stdout) { |
643 | 643 | $pipe .= " >> $crt.~"; |
644 | | - close(CRT) or die "Couldn't close $crt.~: $!"; |
| 644 | + close(CRT) or die "Could not close $crt.~: $!"; |
645 | 645 | } |
646 | | - open(TMP, $pipe) or die "Couldn't open openssl pipe: $!"; |
| 646 | + open(TMP, $pipe) or die "Could not open openssl pipe: $!"; |
647 | 647 | print TMP $pem; |
648 | | - close(TMP) or die "Couldn't close openssl pipe: $!"; |
| 648 | + close(TMP) or die "Could not close openssl pipe: $!"; |
649 | 649 | if(!$stdout) { |
650 | | - open(CRT, ">>$crt.~") or die "Couldn't open $crt.~: $!"; |
| 650 | + open(CRT, ">>$crt.~") or die "Could not open $crt.~: $!"; |
651 | 651 | } |
652 | 652 | } |
653 | 653 | report "Processed: $caname" if($opt_v); |
654 | 654 | $certnum++; |
655 | 655 | } |
656 | 656 | } |
657 | 657 | } |
658 | | -close(TXT) or die "Couldn't close $txt: $!\n"; |
659 | | -close(CRT) or die "Couldn't close $crt.~: $!\n"; |
| 658 | +close(TXT) or die "Could not close $txt: $!\n"; |
| 659 | +close(CRT) or die "Could not close $crt.~: $!\n"; |
660 | 660 | unless($stdout) { |
661 | 661 | if($opt_b && -e $crt) { |
662 | 662 | my $bk = 1; |
|
![lwp-automation[bot]](https://avatars.githubusercontent.com/u/1450911?v=4&size=40){kind=avatar}
0 commit comments