Recognize Android TLS certificates by default

author Po Lu <luangruo@yahoo.com>

Wed, 10 Apr 2024 04:12:33 +0000 (12:12 +0800)

committer Eshel Yaron <me@eshelyaron.com>

Wed, 10 Apr 2024 20:30:37 +0000 (22:30 +0200)
author Po Lu <luangruo@yahoo.com>
Wed, 10 Apr 2024 04:12:33 +0000 (12:12 +0800)
committer Eshel Yaron <me@eshelyaron.com>
Wed, 10 Apr 2024 20:30:37 +0000 (22:30 +0200)
diff --git a/lisp/net/gnutls.el b/lisp/net/gnutls.el

index b0c3dcb9a7061fe83f3100387f08cb8be75ae76d..b5fb4d47d5754f3aec8539dea267e18e69141aa2 100644 (file)
--- a/lisp/net/gnutls.el
+++ b/lisp/net/gnutls.el
@@ -111,6 +111,10 @@ Security'."
      "/usr/local/share/certs/ca-root-nss.crt" ; FreeBSD
      "/etc/ssl/cert.pem"                      ; macOS, Dragora, Parabola
      "/etc/certs/ca-certificates.crt"         ; OpenIndiana
+    "/system/etc/security/cacerts/*"        ; Android system
+    "/system/etc/security/cacerts_supl/*"    ; Android, supplementary
+    "/system/etc/security/cacerts_google/*"  ; Android, Google
+    "/data/misc/user/0/cacerts-added/*"             ; Android, user-specified (?)
      )
    "List of CA bundle location filenames or a function returning said list.
  If a file path contains glob wildcards, they will be expanded.
author	Po Lu <luangruo@yahoo.com>
	Wed, 10 Apr 2024 04:12:33 +0000 (12:12 +0800)
committer	Eshel Yaron <me@eshelyaron.com>
	Wed, 10 Apr 2024 20:30:37 +0000 (22:30 +0200)