Closed Bug 1406854 Opened 7 years ago Closed 2 years ago

Modify users of nsIX509SSLStatus.idl to utilize the complete nsICertList

Categories

(Core :: Security: PSM, enhancement, P2)

enhancement

Tracking

()

RESOLVED WORKSFORME

People

(Reporter: mgoodwin, Unassigned)

References

(Blocks 1 open bug)

Details

(Whiteboard: [psm-backlog])

We currently get full certificate chain information for failed connections (via failedCertChain on TransportSecurityInfo.idl) but there's no such ability for successful connections.

Currently, when we want cert chain info, we have to re-build the chain.

We need to fix this; not least because we need cert chain information for some things we'd like to warn users of.
Depends on: 1406856
What's the difference between this bug and bug 1406856?
Flags: needinfo?(mgoodwin)
I'll change the title here; Bug 1406856 is to change the IDL and populate the new field. This bug is to change all the downstream consumers of the IDL to use the whole chain when appropriate.
Flags: needinfo?(mgoodwin)
Summary: Modify nsIX509SSLStatus.idl to provide access to the whole nsICertList for a connection. → Modify users of nsIX509SSLStatus.idl to utilize the complete nsICertList
Ok - thanks!
Priority: -- → P2
Whiteboard: [psm-backlog]
Severity: normal → S3

I believe nothing is re-building a certificate chain like this any longer.

Status: NEW → RESOLVED
Closed: 2 years ago
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.