Upgrade NSS on Moz 1.8 branch to pick up new root CA certs

VERIFIED FIXED

Status

()

VERIFIED FIXED
11 years ago
11 years ago

People

(Reporter: kaie, Assigned: kaie)

Tracking

({verified1.8.1.5})

Trunk
verified1.8.1.5
Points:
---

Firefox Tracking Flags

(Not tracked)

Details

(Whiteboard: [camino-1.5.1])

Attachments

(1 attachment)

(Assignee)

Description

11 years ago
As of today, MOZILLA_1_8_BRANCH uses NSS_3_11_5_RTM.

We recently created a new release of the builtin roots module included in NSS, version 1.64, which includes the new root CA certs checked in recently to the NSS 3.11 branch. The module was released independently of the rest of NSS.

A cvs tag got created that is a combination of NSS 3.11.5 with CKBI 1.64:
  NSS_3_11_5_WITH_CKBI_1_64_RTM

Mozilla 1.8 branch may upgrade to this new tag.
(Assignee)

Comment 1

11 years ago
Created attachment 269089 [details] [diff] [review]
Patch v1
Attachment #269089 - Flags: review?(nelson)
Attachment #269089 - Flags: approval1.8.1.5?
Wonderful :-) Background for drivers: the NSS team has agreed to support the code found at this tag. It is their approved method of upgrading the NSS root certificate store to include recently-added certs without upgrading the rest of NSS. Moving to this tag should not (correct me if I'm wrong, kai or nelson) affect the FIPS status (validated or otherwise) of Firefox.

Gerv

Comment on attachment 269089 [details] [diff] [review]
Patch v1

Look right to me. 
Thanks, Kai!
Attachment #269089 - Flags: review?(nelson) → review+
(In reply to comment #2)
> Moving to this tag should not [..] affect the FIPS status (validated or 
> otherwise) of Firefox.

Right.  That's the whole idea.
Comment on attachment 269089 [details] [diff] [review]
Patch v1

approved for 1.8.1.5, a=dveditz for release-drivers
Attachment #269089 - Flags: approval1.8.1.5? → approval1.8.1.5+
(Assignee)

Comment 6

11 years ago
fixed on branch only

(but trunk currently uses the same NSS snapshot)
Status: NEW → RESOLVED
Last Resolved: 11 years ago
Keywords: fixed1.8.1.5
Resolution: --- → FIXED
Verified that this is checked into the tree for branch.
Status: RESOLVED → VERIFIED
Keywords: fixed1.8.1.5 → verified1.8.1.5
Whiteboard: [camino-1.5.1]
You need to log in before you can comment on or make changes to this bug.