Closed
Bug 490495
Opened 15 years ago
Closed 15 years ago
Enable Object Signing Trust Bit in NSS for the StartCom Certification Authority
Categories
(NSS :: CA Certificates Code, task, P2)
NSS
CA Certificates Code
Tracking
(Not tracked)
RESOLVED
FIXED
3.12.4
People
(Reporter: kathleen.a.wilson, Assigned: nelson)
References
Details
(Whiteboard: [CA confirmed])
Per bug 451298 the request from StartCom has been approved to enable the Object/Code Signing Trust Bit for its StartCom Certification Authority root certificate. Please make the corresponding changes to NSS. The relevant information is as follows: Friendly name: "StartCom Certification Authority" SHA1 Fingerprint: 3E:2B:F7:F2:03:1B:96:F3:8C:E6:C4:D8:A8:5D:3E:2D:58:47:6A:0F Test URL: https://forum.startcom.org
Assignee | ||
Comment 1•15 years ago
|
||
I have attached a Windows .DLL file to bug 493660. I believe it contains the added roots requested in this bug, with the requested (or changed) trust flags, as requested in comment 0 of this bug. Please download that attachment from https://bugzilla.mozilla.org/attachment.cgi?id=378202 Check it for viruses, and then follow the instructions given in https://bugzilla.mozilla.org/show_bug.cgi?id=493660#c2 to test it out. Please report back HERE, in THIS bug, whether it contains the right cert, by the right name, with the right trust flags.
Assignee: kaie → nelson
Status: NEW → ASSIGNED
Priority: -- → P2
Whiteboard: [Awaiting test confirmation from CA]
Target Milestone: --- → 3.12.4
Comment 2•15 years ago
|
||
Can you add the patched certdata.c, nssckbi.h and certdata.txt (this one is most likely not needed) so I can produce a build for Linux in order to verify?
Assignee | ||
Comment 3•15 years ago
|
||
Eddy, The patch you seek is attached to bug 493660. Beware, that file has windows line endings, which you'll have to change before you apply the patch on Linux. The one line patch to enable your root CA is found at https://bugzilla.mozilla.org/attachment.cgi?action=diff&id=378197&collapsed=&headers=1&context=30#mozilla/security/nss/lib/ckfw/builtins/certdata.txt_sec1
Comment 4•15 years ago
|
||
The patch doesn't cleanly apply with the NSS version I have, that's why I asked for the modified files. :S
Comment 5•15 years ago
|
||
Wait, I'm fetching the latest versions...
Comment 6•15 years ago
|
||
Confirmed by applying the patch to the latest sources.
Assignee | ||
Updated•15 years ago
|
Whiteboard: [Awaiting test confirmation from CA] → [CA confirmed]
Assignee | ||
Comment 7•15 years ago
|
||
Fixed by checkin of patch for bug 493660. Will be in FF 3.5
Status: ASSIGNED → RESOLVED
Closed: 15 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•