Open
Bug 1415311
Opened 7 years ago
Updated 8 months ago
Make OCSP responses available to the certificate error page.
Categories
(Core :: Security: PSM, enhancement, P2)
Core
Security: PSM
Tracking
()
NEW
Future
Tracking | Status | |
---|---|---|
firefox58 | --- | affected |
People
(Reporter: jcj, Unassigned)
References
(Blocks 1 open bug)
Details
In order to give the error analysis code the same context as Mozilla::PKIX, we need to also provide the OCSP response that was used when determining the error. One place to put that response might be nsISSLStatus, where the certificate chain is stored. [1] http://searchfox.org/mozilla-central/source/security/manager/ssl/nsISSLStatus.idl
Updated•5 years ago
|
Blocks: better-cert-errors
Comment 1•5 years ago
|
||
:jcj
nsISSLStatus.idl doesn't exist.
http://searchfox.org/mozilla-central/source/security/manager/ssl/
nsISSLStatus.idl
Flags: needinfo?(jjones)
Reporter | ||
Comment 2•5 years ago
|
||
Apologies, Manish. In Bug 1468222 we consolidated nsISSLStatus info nsITransportSecurityInfo.
https://searchfox.org/mozilla-central/source/netwerk/socket/nsITransportSecurityInfo.idl
So now the idea would be to put the OCSP status there for better error pages. Thanks for the ping!
Flags: needinfo?(jjones)
Updated•2 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•