Closed Bug 1693173 Opened 4 years ago Closed 4 years ago

Add GlobalSign R45, E45, R46, and E46 root certs to NSS

Categories

(NSS :: CA Certificates Code, task, P1)

Product:
NSS
Component:
CA Certificates Code
Type:
task

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: kathleen.a.wilson, Assigned: beurdouche)

References

Details

(Whiteboard: March 2021 Batch of Root Changes)

Attachments

(5 files)

GlobalSignSecureMailRootE45.crt
798 bytes, application/x-x509-ca-cert
Details
GlobalSignSecureMailRootR45.crt
1.90 KB, application/x-x509-ca-cert
Details
GlobalSignRootE46.crt
769 bytes, application/x-x509-ca-cert
Details
GlobalSignRootR46.crt
1.87 KB, application/x-x509-ca-cert
Details
Bug 1693173 - Add GlobalSign R45, E45, R46, and E46 root certs to NSS. r=KathleenWilson
48 bytes, text/x-phabricator-request
Details | Review

This bug requests inclusion in the NSS root store of the following root certificates owned by GlobalSign nv-sa.

Friendly Name: GlobalSign Secure Mail Root R45
Cert Location: https://secure.globalsign.com/cacert/smimerootr45.crt
SHA-1 Fingerprint: 7618D1F380243D5240C6116AAD5777097D8130A0
SHA-256 Fingerprint: 319AF0A7729E6F89269C131EA6A3A16FCD86389FDCAB3C47A4A675C161A3F974
Trust Flags: Email

Friendly Name: GlobalSign Secure Mail Root E45
Cert Location: https://secure.globalsign.com/cacert/smimeroote45.crt
SHA-1 Fingerprint: 182E1F324F89DFBEFE8889F093C2C4A02B677521
SHA-256 Fingerprint: 5CBF6FB81FD417EA4128CD6F8172A3C9402094F74AB2ED3A06B4405D04F30B19
Trust Flags: Email

Friendly Name: GlobalSign Root R46
Cert Location: https://secure.globalsign.com/cacert/rootr46.crt
SHA-1 Fingerprint: 53A2B04BCA6BD645E6398A8EC40DD2BF77C3A290
SHA-256 Fingerprint: 4FA3126D8D3A11D1C4855A4F807CBAD6CF919D3A5A88B03BEA2C6372D93C40C9
Trust Flags: Websites
Test URL: https://valid.r46.roots.globalsign.com

Friendly Name: GlobalSign Root E46
Cert Location: https://secure.globalsign.com/cacert/roote46.crt
SHA-1 Fingerprint: 39B46CD5FE8006EBE22F4ABB0833A0AFDBB9DD84
SHA-256 Fingerprint: CBB9C44D84B8043E1050EA31A69F514955D7BFD2E2C6B49301019AD61D9F5058
Trust Flags: Websites
Test URL: https://valid.e46.roots.globalsign.com

This CA has been assessed in accordance with the Mozilla project guidelines, and the certificates approved for inclusion in bug #1637269 and in bug #1570724

The next steps are as follows:

  1. A representative of the CA must confirm that all the data in this bug is correct, and that the correct certificates have been attached.
  2. A Mozilla representative creates a patch with the new certificates.
  3. The Mozilla representative requests that another Mozilla representative review the patch.
  4. The Mozilla representative adds (commits) the patch to NSS, then closes this bug as RESOLVED FIXED.
  5. At some time after that, various Mozilla products will move to using a version of NSS which contains the certificate. This process is mostly under the control of the release drivers for those products.
Attached file GlobalSignRootE46.crt
Attached file GlobalSignRootR46.crt

Julie, Please see step #1 above.

Flags: needinfo?(julie.olson)
Blocks: 1693175
Depends on: 1693217

Hi Kathleen, I have confirmed the information for the roots listed above is correct.

Thank you!

Flags: needinfo?(julie.olson)
Assignee: nobody → bbeurdouche
Severity: -- → S1
Status: NEW → ASSIGNED
Type: enhancement → task
Priority: -- → P1
Target Milestone: --- → 3.63

https://hg.mozilla.org/projects/nss/rev/bcf5e159d4546fc620ff874ec3330550292bb214

Status: ASSIGNED → RESOLVED
Closed: 4 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: