Closed Bug 1586081 Opened 3 years ago Closed 3 years ago

Remove special EV treatment from GlobalSign Extended Validation CA - SHA256 - G2

Categories

(Core :: Security: PSM, enhancement, P1)

enhancement

Tracking

()

RESOLVED FIXED
mozilla72
Tracking Status
firefox72 --- fixed

People

(Reporter: kwilson, Assigned: marcus.apb)

Details

Attachments

(1 file)

The "GlobalSign Extended Validation CA - SHA256 - G2" cert has been revoked, so we should remove the special case code that was implemented to continue EV treatment for this intermediate cert.

References:
https://bugzilla.mozilla.org/show_bug.cgi?id=1349762#c4
https://bugzilla.mozilla.org/show_bug.cgi?id=1347882#c14

Summary: Removed special EV treatment from GlobalSign Extended Validation CA - SHA256 - G2 → Remove special EV treatment from GlobalSign Extended Validation CA - SHA256 - G2
Assignee: nobody → marcus.apb
Status: NEW → ASSIGNED
Priority: -- → P1

Kathleen, do we still want to give EV treatment to certificates where the trust anchor is GlobalSign Root CA - R2?

Flags: needinfo?(kwilson)

(In reply to Dana Keeler (she/her) (use needinfo) (:keeler for reviews) from comment #2)

Kathleen, do we still want to give EV treatment to certificates where the trust anchor is GlobalSign Root CA - R2?

No. The GlobalSign Root CA - R2 root should not have EV treatment.

Flags: needinfo?(kwilson)

Ok. Patch updated.

Flags: needinfo?(kwilson)

(In reply to Marcus Burghardt from comment #4)

Ok. Patch updated.

Looks good to me. Thanks!

Flags: needinfo?(kwilson)
Keywords: checkin-needed

Pushed by rmaries@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/6f4eedc9e6bc
Remove special EV treatment from GlobalSign Extended Validation CA - SHA256 - G2. r=keeler

Keywords: checkin-needed
Status: ASSIGNED → RESOLVED
Closed: 3 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla72
You need to log in before you can comment on or make changes to this bug.