Closed Bug 601718 Opened 15 years ago Closed 15 years ago

Add renewed Firmaprofesional root certificate to NSS

Categories

(NSS :: CA Certificates Code, task)

Product:
NSS
Component:
CA Certificates Code
Type:
task
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: kathleen.a.wilson, Assigned: KaiE)

References

Details

Attachments

(1 file)

Renewed Firmaprofesional Root Cert
1.52 KB, application/octet-stream
Details
This bug requests inclusion in the NSS root certificate store of the following certificate, owned by Firmaprofesional. Friendly name: Autoridad de Certificacion Firmaprofesional CIF A62634068 Certificate location: http://crl.firmaprofesional.com/caroot.crt SHA1 Fingerprint: AE:C5:FB:3F:C8:E1:BF:C4:E5:4F:03:07:5A:9A:E8:00:B7:F7:B6:FA Trust flags: Websites, Email, Code Signing Test URL: https://www.firmaprofesional.com This CA has been assessed in accordance with the Mozilla project guidelines, and the certificate approved for inclusion in bug #521439. The next steps are as follows: 1) A representative of the CA must confirm that all the data in this bug is correct, and that the correct certificate(s) have been attached. They must also specify what OS they would like to use to perform the verification below. 2) A Mozilla representative creates a test build of NSS with the new certificate(s), and attaches nssckbi.dll to this bug. A representative of the CA must download this, drop it into a copy of Firefox and/or Thunderbird on the OS in question and confirm (by adding a comment here) that the certificate(s) have been correctly imported and that websites work correctly. 3) The Mozilla representative checks the certificate(s) into the NSS store, and marks the bug RESOLVED FIXED. 4) At some time after that, various Mozilla products will move to using a version of NSS which contains the certificate. This process is mostly under the control of the release drivers for those products.
Chema, Please see step #1 above.
Yes. I do confirm that the data in the bug, specially the attached certificates are correct. I will perform the check on a Microsoft Windows XP Professional SP3. Thanks in advance, Chema. (In reply to comment #1) > Chema, Please see step #1 above.
Chema, Thanks for confirming that the data in this bug is correct. Root inclusions are usually grouped and done as a batch when there is either a large enough set of changes or about every 3 months. At some point in the next 3 months a test build will be provided and this bug will be updated to request that you test it. Since you are cc'd on this bug, you will get notification via email when that happens.
Assignee: nobody → kaie
Depends on: 613394
Current test builds (Mozilla experimental) for various platforms can be found at http://stage.mozilla.org/pub/mozilla.org/firefox/tryserver-builds/kaie@kuix.de-b725b0fd279e/ Please note the builds at above location will be automatically deleted after two weeks, so please make copies if you need them. Please test and confirm that your roots have been added correctly, with the correct trust flags (use certificate manager, find your cert, click "view" to see the trust flags). (Please note, if you have asked for enabling EV, that's not yet done, and will be a separate step.)
Dear Kai, The link above seems to be broken barely a week after you notified me. How can I get the test builds? Tx,
Oops. Looks like they've changed policy and builds now get cleaned up after 4 days. https://groups.google.com/group/mozilla.dev.builds/browse_thread/thread/1ba36eeb135aa9eb?hl=bn I'll do a new build and upload it to a stable location before announcing it.
I made a new testbuild. http://hg.mozilla.org/try/pushloghtml?changeset=c73f0117a36e http://ftp.mozilla.org/pub/mozilla.org/firefox/tryserver-builds/kaie@kuix.de-c73f0117a36e/ I've learned that tryserver builds are automatically deleted quickly, after 4 days. I've mirrored the most important files here: http://kuix.de/mozilla/tryserver-roots-20101125/
Here is my request to the CA, Firmaprofesional, according with first comment in this bug, section (2): Please download a test build from comment 7. Please confirm that your root certificate(s) are correctly added to the NSS root store. In particular, please make sure that the certificate have the correct trust flags. You can use Firefox preferences / advanced / encryption / certificates / edit-trust to look at the trust flags. Once you have confirmed, we are ready to add your certs to NSS.
Both root certificate and trust flags are correct. Is there any estimated date to distribute this new NSS version? Thanks in advance,
Fixed by bug 613394
Status: NEW → RESOLVED
Closed: 15 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: