Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-11-02 07:05:24 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
bd69bce2db
gecko-dev/security/certverifier
History
David Keeler 113252b726 bug 1239455 - rework telemetry for SHA-1 certificates to reflect possible policy states r=Cykesiopka,mgoodwin,rbarnes 
Before this patch, we were measuring where SHA-1 was being used in TLS
certificates: nowhere, in end-entities, in intermediates, or in both. However,
the possible SHA-1 policies don't differentiate between end-entities and
intermediates and instead depended on whether or not each certificate has a
notBefore value after 2015 (i.e. >= 0:00:00 1 January 2016 UTC). We need to
gather telemetry on the possible policy configurations.

--HG--
extra : rebase_source : 301c821c8de16ffb924cd198dd0a4d3139536019
2016-01-13 12:50:42 -08:00
..
CertVerifier.cpp bug 1239455 - rework telemetry for SHA-1 certificates to reflect possible policy states r=Cykesiopka,mgoodwin,rbarnes 2016-01-13 12:50:42 -08:00
CertVerifier.h bug 1239455 - rework telemetry for SHA-1 certificates to reflect possible policy states r=Cykesiopka,mgoodwin,rbarnes 2016-01-13 12:50:42 -08:00
CNNICHashWhitelist.inc bug 1157873 - remove certificates from CNNIC whitelist that aren't in the Pilot Certificate Transparency log r=rbarnes 2015-04-21 16:07:33 -07:00
ExtendedValidation.cpp bug 1230994 - December 2015 batch of EV root CA changes r=mgoodwin 2015-12-14 14:44:44 -08:00
ExtendedValidation.h
moz.build Bug 1229587 part 1 - Disable C4464 warning newly added in VS2015u1. r=keeler 2015-12-03 09:29:42 +11:00
NSSCertDBTrustDomain.cpp bug 1239455 - rework telemetry for SHA-1 certificates to reflect possible policy states r=Cykesiopka,mgoodwin,rbarnes 2016-01-13 12:50:42 -08:00
NSSCertDBTrustDomain.h bug 1239455 - rework telemetry for SHA-1 certificates to reflect possible policy states r=Cykesiopka,mgoodwin,rbarnes 2016-01-13 12:50:42 -08:00
OCSPCache.cpp Bug 1237232 - Properly check the result of Vector append() calls in security/. r=keeler 2016-01-13 22:05:08 +01:00
OCSPCache.h Bug 1043041: Use mozilla::pkix::Time instead of PRTime, r=keeler 2014-08-02 08:49:12 -07:00
OCSPRequestor.cpp Bug 1165515 - Part 13-2: Replace usage of PRLogModuleLevel and PR_LOG_*. rs=froydnj 2015-06-03 15:25:57 -07:00
OCSPRequestor.h
OCSPVerificationTrustDomain.cpp Bug 942515 - Show Untrusted Connection Error for SHA-1-based SSL certificates with notBefore >= 2016-01-01 r=keeler 2015-09-11 14:52:30 -04:00
OCSPVerificationTrustDomain.h Bug 942515 - Show Untrusted Connection Error for SHA-1-based SSL certificates with notBefore >= 2016-01-01 r=keeler 2015-09-11 14:52:30 -04:00