The default bug view has changed. See this FAQ.

Remove E-Guven root certificate from NSS

VERIFIED FIXED in 3.18.1

Status

NSS
CA Certificates
VERIFIED FIXED
2 years ago
2 years ago

People

(Reporter: Kathleen Wilson, Assigned: kaie)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

Attachments

(1 attachment, 1 obsolete attachment)

9.52 KB, patch
Ryan Sleevi
: review+
Robert Relyea
: review+
Details | Diff | Splinter Review
(Reporter)

Description

2 years ago
As per https://bugzilla.mozilla.org/show_bug.cgi?id=476428#c41 I have concerns about the audit statements for the E-Guven CA. In mozilla.dev.security.policy I proposed removing the E-Guven root certificate due to my concerns about their audits, and there was general consensus.

Therefore, please remove the following root certificate from NSS.

Issuer Field:
CN = e-Guven Kok Elektronik Sertifika Hizmet Saglayicisi
O = Elektronik Bilgi Guvenligi A.S.
C = TR

SHA-1 Fingerprint: DD:E1:D2:A9:01:80:2E:1D:87:5E:84:B3:80:7E:4B:B1:FD:99:41:34
(Assignee)

Updated

2 years ago
Target Milestone: --- → 3.18.1
(Assignee)

Comment 1

2 years ago
Created attachment 8580210 [details] [diff] [review]
patch v1
Assignee: nobody → kaie
Attachment #8580210 - Flags: review?(kwilson)
(Assignee)

Comment 2

2 years ago
Created attachment 8580212 [details] [diff] [review]
patch v2

This patch also updates the version number.
Attachment #8580210 - Attachment is obsolete: true
Attachment #8580210 - Flags: review?(kwilson)
Attachment #8580212 - Flags: review?(kwilson)

Comment 3

2 years ago
Comment on attachment 8580212 [details] [diff] [review]
patch v2

r+ rrelyea
Attachment #8580212 - Flags: review?(ryan.sleevi)
Attachment #8580212 - Flags: review?(kwilson)
Attachment #8580212 - Flags: review+

Comment 4

2 years ago
Note that the root will expire at the beginning of 2017 anyway.

Updated

2 years ago
Attachment #8580212 - Flags: review?(ryan.sleevi) → review+
(Assignee)

Comment 5

2 years ago
https://hg.mozilla.org/projects/nss/rev/e2b98ed12caa
Status: NEW → RESOLVED
Last Resolved: 2 years ago
Resolution: --- → FIXED
(Assignee)

Updated

2 years ago
Target Milestone: 3.18.1 → 3.19
(Assignee)

Comment 6

2 years ago
Landed into NSS_3_18_BRANCH
https://hg.mozilla.org/projects/nss/rev/3a41adab01a0
(Assignee)

Updated

2 years ago
Target Milestone: 3.19 → 3.18.1
Verified in Fx38.0b8. 

FYI, note that the following four sites will currently break due to this removal. 

https://portal.emu.edu.tr
https://pg.tejaratbank.net
https://ogr.rize.edu.tr
https://www.imzalagonder.com
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.