gecko-dev/security/apps
Dana Keeler 3d9ab91ab0 Bug 1605273 - only run CRLite on certificates with a CT SCT available r=jcj
Because CAs can back-date a certificate (i.e. set the "notBefore" field to
earlier than when a certificate actually existed), the "notBefore" field can't
be relied on when determining when CRLite information is recent enough to check
a certificate with. To that end, this patch instead uses the earliest timestamp
from the embedded SCTs in the certificate being checked.

Differential Revision: https://phabricator.services.mozilla.com/D90599
2020-09-24 18:10:05 +00:00
..
addons-public-intermediate.crt
addons-public.crt
addons-stage.crt
AppSignatureVerification.cpp Bug 1650145 - Replace all value uses of Empty[C]String by 0-length _ns literals. r=froydnj,geckoview-reviewers,agi 2020-09-23 15:17:15 +00:00
AppTrustDomain.cpp Bug 1605273 - only run CRLite on certificates with a CT SCT available r=jcj 2020-09-24 18:10:05 +00:00
AppTrustDomain.h Bug 1605273 - only run CRLite on certificates with a CT SCT available r=jcj 2020-09-24 18:10:05 +00:00
gen_cert_header.py Bug 1620449 - Convert gen_cert_header.py to py3; r=firefox-build-system-reviewers,rstewart 2020-03-06 17:31:15 +00:00
moz.build Bug 1620449 - Convert gen_cert_header.py to py3; r=firefox-build-system-reviewers,rstewart 2020-03-06 17:31:15 +00:00