symantec: Invalid user notice

RESOLVED WORKSFORME

Status

RESOLVED WORKSFORME
2 years ago
a year ago

People

(Reporter: kurt, Assigned: rick_andrews)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

(Whiteboard: BR Compliance)

(Reporter)

Description

2 years ago
In https://crt.sh/?id=17379743 you have a policy extention with a user notice explicitText.  This is using a VisibleString which is not allowed by RFC 5280.  It should use an UTF8String, but may use IA5String.

I would suggest removing the explictText.
(Reporter)

Updated

2 years ago
Blocks: 1029147

Updated

2 years ago
Assignee: kwilson → rick_andrews
(Assignee)

Comment 1

2 years ago
Kurt, according to RFC 6818, which updates certain sections of RFC5280, “VisibleString or BMPString are acceptable but less preferred alternatives.”
(Reporter)

Comment 2

2 years ago
The BR only points to rfc 5280, so maybe someone should suggest adding rfc 6818.

I knew 6818 changed something related to some of those but didn't look close enough yet.  I'll update x509lint for that, so feel free to close this.

But I'm still suggesting that you remove the explictText.

Updated

2 years ago
Whiteboard: BR Compliance

Comment 3

2 years ago
Closing per:

> I'll update x509lint for that, so feel free to close this.
Status: UNCONFIRMED → RESOLVED
Last Resolved: 2 years ago
Resolution: --- → WORKSFORME

Updated

a year ago
Product: mozilla.org → NSS
You need to log in before you can comment on or make changes to this bug.