Closed
Bug 517242
Opened 15 years ago
Closed 15 years ago
Add GeoTrust Primary Certificate Authority - G2 root certificate to NSS
Categories
(NSS :: CA Certificates Code, task, P2)
NSS
CA Certificates Code
Tracking
(Not tracked)
RESOLVED
FIXED
3.12.5
People
(Reporter: kathleen.a.wilson, Assigned: KaiE)
References
Details
Attachments
(1 file)
|
1006 bytes,
application/x-x509-ca-cert
|
Details |
This bug requests inclusion in the NSS root certificate store of the following certificate, owned by GeoTrust.
Friendly name:
GeoTrust Primary Certificate Authority - G2
Certificate location:
https://bugzilla.mozilla.org/attachment.cgi?id=294057
(will also attach to this bug)
SHA1 Fingerprint:
8D:17:84:D5:37:F3:03:7D:EC:70:FE:57:8B:51:9A:99:E6:10:D7:B0
Trust flags: web sites, email, code signing
Test URL: https://ecc-test-valid.geotrust.com
This CA has been assessed in accordance with the Mozilla project guidelines,
and the root certificate has been approved for inclusion in bug 409236.
The next steps are as follows:
1) A representative of the CA must confirm that all the data in this bug is
correct, and that the correct certificate(s) have been attached. They must also
specify what OS they would like to use to perform the verification below.
2) A Mozilla representative creates a test build of NSS with the new
certificate(s), and attaches nssckbi.dll to this bug. A representative of the
CA must download this, drop it into a copy of Firefox and/or Thunderbird on the
OS in question and confirm (by adding a comment here) that the certificate(s)
have been correctly imported and that websites work correctly.
3) The Mozilla representative checks the certificate(s) into the NSS store, and
marks the bug RESOLVED FIXED.
4) At some time after that, various Mozilla products will move to using a
version of NSS which contains the certificate. This process is mostly under the
control of the release drivers for those products.
|
Reporter | |
Comment 1•15 years ago
|
||
|
|
Reporter | |
Comment 2•15 years ago
|
||
Jay, Please see step #1 above.
|
||
Comment 3•15 years ago
|
||
taking.
Assignee: kaie → nelson
Priority: -- → P2
Target Milestone: --- → 3.12.5
|
||
Comment 4•15 years ago
|
||
(In reply to comment #0)
> This bug requests inclusion in the NSS root certificate store of the following
> certificate, owned by GeoTrust.
> Friendly name:
> GeoTrust Primary Certificate Authority - G2
> Certificate location:
> https://bugzilla.mozilla.org/attachment.cgi?id=294057
> (will also attach to this bug)
> SHA1 Fingerprint:
> 8D:17:84:D5:37:F3:03:7D:EC:70:FE:57:8B:51:9A:99:E6:10:D7:B0
> Trust flags: web sites, email, code signing
> Test URL: https://ecc-test-valid.geotrust.com
> This CA has been assessed in accordance with the Mozilla project guidelines,
> and the root certificate has been approved for inclusion in bug 409236.
> The next steps are as follows:
> 1) A representative of the CA must confirm that all the data in this bug is
> correct, and that the correct certificate(s) have been attached. They must also
> specify what OS they would like to use to perform the verification below.
> 2) A Mozilla representative creates a test build of NSS with the new
> certificate(s), and attaches nssckbi.dll to this bug. A representative of the
> CA must download this, drop it into a copy of Firefox and/or Thunderbird on the
> OS in question and confirm (by adding a comment here) that the certificate(s)
> have been correctly imported and that websites work correctly.
> 3) The Mozilla representative checks the certificate(s) into the NSS store, and
> marks the bug RESOLVED FIXED.
> 4) At some time after that, various Mozilla products will move to using a
> version of NSS which contains the certificate. This process is mostly under the
> control of the release drivers for those products.
This is to confirm the data in the bug looks correct and that the correct certificate is attached. For the OS to do the verification, we will use Window XP Pro SP2.
|
Assignee | |
Updated•15 years ago
|
Assignee: nelson → kaie
|
|
Assignee | |
Comment 5•15 years ago
|
||
Please perform the test (3) mentioned in the initial comment in this bug.
Instead of using a separate nssckbi.dll, I've produced a full test firefox
build, please download from:
https://build.mozilla.org/tryserver-builds/kaie@kuix.de-bug527759-11/
We'll wait for you to confirm your root(s) have been added correctly to this
test build (cert listed in cert manager, trust flags as expected, you can
connect to your test site as expected).
|
|
||
Comment 6•15 years ago
|
||
We checked the test build above and confirmed the GeoTrust Primary Certificate
Authority-G2 root is added to the build and we could successfully access the
test site listed above using a cert issued from this root. The Websites
(SSL/TLS) and Email (SMIME) that we requested, were enabled.
|
|
Assignee | |
Comment 7•15 years ago
|
||
Resolved fixed by Bug 527759
Status: NEW → RESOLVED
Closed: 15 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•