Closed
Bug 582575
Opened 14 years ago
Closed 14 years ago
Add July 2010 batch of roots to NSS
Categories
(NSS :: CA Certificates Code, task, P2)
Tracking
(Not tracked)
RESOLVED
FIXED
3.12.8
People
(Reporter: KaiE, Assigned: KaiE)
References
Details
Attachments
(1 file, 2 obsolete files)
|
30.99 KB,
patch
|
nelson
:
review+
|
Details | Diff | Splinter Review |
Add July 2010 batch of roots to NSS See dependency list.
|
||
Comment 1•14 years ago
|
||
Some clarifications are needed due to bug 582531.
|
||
Comment 2•14 years ago
|
||
Kai, Given bug 582531, I think we should postpone 562395 for now, and remove it from this batch of changes.
|
Assignee | |
Comment 4•14 years ago
|
||
Enabling the roots from the bugs listed in the dependency list. Not yet requesting code review, pending test results from CAs.
|
|
Assignee | |
Comment 5•14 years ago
|
||
Removing Izpene root and bug from this batch.
No longer blocks: 578491
|
|
Assignee | |
Comment 6•14 years ago
|
||
We have confirmation based on test binaries from 4 CAs and their 5 new roots. I'll attach a new patch that no longer includes Izpene and request review.
|
|
Assignee | |
Comment 7•14 years ago
|
||
Nelson, would you be able to help to review this? Thanks a lot in advance for letting us know. (Note this patch excludes the automatically generated certdata.c but I indeed ran gmake generate to produce it and of course will check it in when landing this)
Attachment #462618 -
Attachment is obsolete: true
Attachment #463702 -
Flags: review?(nelson)
|
||
Comment 8•14 years ago
|
||
Should bug 582375 be held off due to problems mentioned in bug 507360, comment #23?
|
|
Assignee | |
Comment 9•14 years ago
|
||
Comment on attachment 463702 [details] [diff] [review] Patch v2 (In reply to comment #8) > Should bug 582375 be held off due to problems mentioned in bug 507360, comment > #23? I've filed bug 586414 and will remove the GlobalSign root from the current batch.
Attachment #463702 -
Attachment is obsolete: true
Attachment #463702 -
Flags: review?(nelson)
|
|
Assignee | |
Comment 10•14 years ago
|
||
This is a subset of the patch that was used for testing. It has GlobalSign removed, will be postponed to a future batch. All of these certificates look fine without any known issues. Nelson, can you please review? (as usual, certdata.c excluded)
Attachment #467418 -
Flags: review?(nelson)
|
|
Assignee | |
Comment 11•14 years ago
|
||
One more thing, given that we have agreed to keep the list of root CAs identical on NSS-Trunk and NSS-Stable-Branch, I propose to keep the version numbers identical, as long as we continue to have them in sync. (In particular, let's continue to use the roots-module version numbers dedicated to the 3.12 branch on both branch and trunk.)
|
|
Assignee | |
Comment 12•14 years ago
|
||
Bug 586414 has been marked as resolved fixed, so I'm including GlobalSign again.
|
|
Assignee | |
Updated•14 years ago
|
Attachment #467418 -
Attachment is obsolete: true
Attachment #467418 -
Flags: review?(nelson)
|
|
Assignee | |
Comment 13•14 years ago
|
||
Comment on attachment 463702 [details] [diff] [review] Patch v2 Marking patch v2 as active again. Sorry for going back and forth, I think we're now final for this batch. Nelson, could you please review?
Attachment #463702 -
Attachment is obsolete: false
Attachment #463702 -
Flags: review?(nelson)
|
||
Comment 14•14 years ago
|
||
will review attachment 463702 [details] [diff] [review].
|
|
Assignee | |
Comment 15•14 years ago
|
||
(In reply to comment #14) > will review attachment 463702 [details] [diff] [review]. Correct, thanks!
|
|
||
Comment 16•14 years ago
|
||
Comment on attachment 463702 [details] [diff] [review] Patch v2 r=nelson
Attachment #463702 -
Flags: review?(nelson) → review+
|
|
Assignee | |
Comment 17•14 years ago
|
||
Checked in to NSS trunk for future NSS 3.13 cvs commit: Examining . Checking in certdata.c; /cvsroot/mozilla/security/nss/lib/ckfw/builtins/certdata.c,v <-- certdata.c new revision: 1.68; previous revision: 1.67 done Checking in certdata.txt; /cvsroot/mozilla/security/nss/lib/ckfw/builtins/certdata.txt,v <-- certdata.txt new revision: 1.65; previous revision: 1.64 done Checking in nssckbi.h; /cvsroot/mozilla/security/nss/lib/ckfw/builtins/nssckbi.h,v <-- nssckbi.h new revision: 1.25; previous revision: 1.24 done
|
|
Assignee | |
Comment 18•14 years ago
|
||
Checked in to NSS 3.12 branch for 3.12.8 cvs commit: Examining . Checking in certdata.c; /cvsroot/mozilla/security/nss/lib/ckfw/builtins/certdata.c,v <-- certdata.c new revision: 1.67.2.1; previous revision: 1.67 done Checking in certdata.txt; /cvsroot/mozilla/security/nss/lib/ckfw/builtins/certdata.txt,v <-- certdata.txt new revision: 1.64.2.1; previous revision: 1.64 done Checking in nssckbi.h; /cvsroot/mozilla/security/nss/lib/ckfw/builtins/nssckbi.h,v <-- nssckbi.h new revision: 1.24.2.1; previous revision: 1.24 done fixed
Status: NEW → RESOLVED
Closed: 14 years ago
Resolution: --- → FIXED
|
|
||
Updated•14 years ago
|
Severity: normal → enhancement
Priority: -- → P2
You need to log in
before you can comment on or make changes to this bug.
Description
•