Closed
Bug 1341396
Opened 7 years ago
Closed 11 months ago
Generate transparency metadata for Firefox releases
Categories
(Firefox :: Security, defect, P3)
Firefox
Security
Tracking
()
RESOLVED
INCOMPLETE
People
(Reporter: rbarnes, Unassigned)
References
(Blocks 1 open bug)
Details
Attachments
(3 files, 1 obsolete file)
Including: * Merkle tree head for a release (over SHA256SUMS) * Inclusion proofs to that tree head for each file in the release * Certificate covering that tree head * Proof of log inclusion (Signed Certificate Timestamp or inclusion proof)
Reporter | ||
Updated•7 years ago
|
Blocks: BinaryTransparency
Reporter | ||
Comment 1•7 years ago
|
||
Produced by release automation for 53.0b2. Not present in the release because of a failure to upload; recovered from logs instead.
Reporter | ||
Comment 2•7 years ago
|
||
Generated by Let's Encrypt, via a draft script to create certificates from SHA256SUMMARY files.
Reporter | ||
Comment 3•7 years ago
|
||
Generated by Let's Encrypt via a draft script for creating certificates from summary files.
Attachment #8847693 -
Attachment is obsolete: true
Reporter | ||
Comment 4•7 years ago
|
||
Generated by the Google Pilot log, via a draft script to submit transparency certs to logs and get SCTs.
Reporter | ||
Comment 5•7 years ago
|
||
With the three attachments I just posted, you should be able to verify that binaries in the 53.0b2 release have been publicly committed: - Verify the inclusion proof for the file with the indicated tree head - Verify that the tree head is in the certificate - Verify that the SCT covers the certificate
Updated•7 years ago
|
Assignee: nobody → btang
Comment 6•7 years ago
|
||
Brandon Tang is going to start looking into this for us! :D
Comment 7•7 years ago
|
||
And now it passes to me. In addition to the steps in comment #0 we need to submit data into the update server.
Assignee: btang → nthomas
Updated•7 years ago
|
Priority: -- → P3
Updated•6 years ago
|
Assignee: nthomas → nobody
Depends on: 1503352
Updated•2 years ago
|
Severity: normal → S3
Comment 8•11 months ago
|
||
As far as I can tell this effort died down some years ago; closing.
Status: NEW → RESOLVED
Closed: 11 months ago
Resolution: --- → INCOMPLETE
You need to log in
before you can comment on or make changes to this bug.
Description
•