Closed Bug 1767489 Opened 2 years ago Closed 2 years ago

set pref to completely disable sha-1 in certificate signatures by default

Categories

(Core :: Security: PSM, task, P1)

Product:
Core
Component:
Security: PSM
Type:
task

Tracking

()

Status:
RESOLVED FIXED
Milestone:
102 Branch
Tracking Flags:
Tracking Status
firefox102 --- fixed

People

(Reporter: keeler, Assigned: keeler)

References

Details

Attachments

(1 file)

Bug 1767489 - disable sha-1 signatures in certificates by default r?jschanck
48 bytes, text/x-phabricator-request
Details | Review

Bug 1766687 will remove support for sha-1 in certificate signatures entirely (including for imported roots), but first we should disable this via pref by default, just in case.

Bug 1766687 will remove support for sha-1 signatures in certificates entirely.
This patch will disable sha-1 via the preference and ride the trains first, to
allow time for any organizations that somehow still use certificates with sha-1
signatures to re-sign them.

Pushed by dkeeler@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/6bf51adc0489
disable sha-1 signatures in certificates by default r=jschanck

https://hg.mozilla.org/mozilla-central/rev/6bf51adc0489

Status: NEW → RESOLVED
Closed: 2 years ago
status-firefox102: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 102 Branch
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: