gecko-dev

mirror of https://github.com/mozilla/gecko-dev.git synced 2024-10-19 00:05:36 +00:00

History

Johann Hofmann dda53de0ba Bug 1501991 - Add a sub-panel for Trackers in the control center. r=Ehsan,Jamie Differential Revision: https://phabricator.services.mozilla.com/D11611 --HG-- extra : rebase_source : eebb084d0fed7a66b0dc5bbe7bc5e06b040a0275 extra : amend_source : f8070e363841ad3d9b2418920e0f695c906de105		2018-11-06 20:29:10 +01:00
..
alternateroot.ca	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
alternateroot.ca.keyspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
alternateroot.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
bug413909cert.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
cert9.db	Bug 1501991 - Add a sub-panel for Trackers in the control center. r=Ehsan,Jamie	2018-11-06 20:29:10 +01:00
dynamicPinningBad.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
dynamicPinningBad.server.keyspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
dynamicPinningGood.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
escapeattack1.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
evintermediate.ca	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
evintermediate.ca.keyspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
evintermediate.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
expired.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
imminently_distrusted.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
key4.db	Bug 1501991 - Add a sub-panel for Trackers in the control center. r=Ehsan,Jamie	2018-11-06 20:29:10 +01:00
mochitest.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
mochitest.client	Bug 1501991 - Add a sub-panel for Trackers in the control center. r=Ehsan,Jamie	2018-11-06 20:29:10 +01:00
mochitest.client.keyspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
pgoca.ca	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
pgoca.ca.keyspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
pgoca.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
README	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
selfsigned.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
sha1_end_entity.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
sha256_end_entity.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
staticPinningBad.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
staticPinningBad.server.keyspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
unknown_ca.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
untrusted.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00
untrustedandexpired.certspec	Bug 1441338 - Change pgo certificates to use certspec/keyspec files r=keeler r=franziskus	2018-04-23 11:14:17 +02:00

README

The certificate authority and server certificates here are generated by
$topsrcdir/build/pgo/genpgocert.py.

You can regenerate the certificates by running: ./mach python
build/pgo/genpgocert.py

To add a new CA, add a ${cert_name}.ca.keyspec as well as a corresponding
${cert_name}.certspec to this folder.

To add new server certificates, add a ${cert_name}.certspec file to this folder.
If it needs a non-default private key, add a corresponding
${cert_name}.server.keyspec.

For new client certificates, add a ${cert_name}.client.keyspec and corresponding
${cert_name}.certspec.

The naming convention here is because the generated ".client" and ".ca" PEM
files need to be copied into this folder for Mochitests' runtests.py to import.

These commands will modify cert9.db and key4.db. The changes to these should be
committed.

Specific notes for certs:

  dynamicPinningGood: Changing this keyspec will require changing
  browser/base/content/test/general/pinning_headers.sjs . You can obtain a new
  valid pin via:

  certutil -L -d . -n dynamicPinningGood -r | openssl x509 -inform der -pubkey \
  -noout | openssl pkey -pubin -outform der | openssl dgst -sha256 -binary \
  | openssl enc -base64