Closed Bug 1330010 Opened 7 years ago Closed 5 months ago

Stop using an expiring PayPal certificate in the test suite, create an equivalent certificate during test execution.

Categories

(NSS :: Test, defect, P5)

3.28

Tracking

(Not tracked)

RESOLVED WONTFIX

People

(Reporter: KaiE, Unassigned)

Details

In the past, when support for certificate policies was added to the NSS certificate validation, it had been decided that for testing, a "real world certificate" should be used for test execution.

For that purpose, the TLS server certificate was copied into the NSS source tree, and is used for verification tests.

This has the disadvantage that every once in a while (around once a year), that certificate expires, and the test suite fails.

That test suite failure is problematic on stable branches of NSS, which shouldn't be touched.

The suggestion is to keep the existing tests, but use a dynamically created certificate, which has the equivalent properties that those tests require.
Severity: normal → S3
Severity: S3 → S4
Status: NEW → RESOLVED
Closed: 5 months ago
Priority: -- → P5
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.