Implement XPI signing in Autograph

RESOLVED FIXED

Status

Cloud Services
Security
RESOLVED FIXED
a year ago
7 months ago

People

(Reporter: ulfr, Assigned: ulfr)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

Attachments

(1 attachment)

(Assignee)

Description

a year ago
Created attachment 8853418 [details] [review]
Autograph 2.0: XPI signing

The signing of all types of addons should be supported by the Autograph service. This requires implementing PKCS7 signature in Go [1] and refactoring autograph to support multiple types of signers [2].

[1] https://github.com/mozilla-services/pkcs7
[2] https://github.com/mozilla-services/autograph/pull/46
(Assignee)

Updated

a year ago
Depends on: 1352435
(Assignee)

Updated

a year ago
Blocks: 1352439
(Assignee)

Updated

7 months ago
Status: NEW → RESOLVED
Last Resolved: 7 months ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.