Closed Bug 720777 Opened 12 years ago Closed 12 years ago

Please add a release MAR signing key to the database of known keys

Categories

(Toolkit :: Application Update, defect)

Product:
Toolkit
Component:
Application Update
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED

People

(Reporter: rail, Assigned: bbondy)

Details

Attachments

(2 files, 2 obsolete files)

release MAR signing public key
709 bytes, application/octet-stream
Details
second release public certificate
713 bytes, application/octet-stream
Details
Attached file release MAR signing public key (obsolete) — 
Attached is the public MAR signing key for release builds (betas and final ones). See bug 718804 for the details.
Is this bug relating to the work on my end? I.e. to make sure updater.exe knows about this key?
(In reply to Brian R. Bondy [:bbondy] from comment #1)
> Is this bug relating to the work on my end? I.e. to make sure updater.exe
> knows about this key?

yup, I was following https://bugzilla.mozilla.org/show_bug.cgi?id=701087#c1

BTW, it seems like the cert is valid only for 3 months. Let me know if I should regenerate it with different command line parameters.
I think it would be best to generate in the past that way nothing will change after 3 months. We do not use the expiry aspect of the cert.  CCing bsmith and catlee in case they disagree with what I proposed.
Attached file release MAR signing public key (obsolete) — 
(In reply to Brian R. Bondy [:bbondy] from comment #3)
> I think it would be best to generate in the past that way nothing will
> change after 3 months. We do not use the expiry aspect of the cert.  CCing
> bsmith and catlee in case they disagree with what I proposed.

Great idea. Attached is a public key generated 2011-09-24 (4 months ago).
Attachment #591197 - Attachment is obsolete: true
Comment on attachment 591258 [details]
release MAR signing public key

Typo in the subject, will regenerate. sorry for the nose.
Attachment #591258 - Attachment is obsolete: true
The correct one. I hope :)
Assignee: nobody → netzen
Thanks for the cert Rail, we need a secondary cert as well though.  The secondary cert won't be used initially, but it should be kept in a safe place in case we ever need to use it.  Please attach another for that.
I included the first cert in Bug 704285, I still the second one though.

    
    

    
  
I included these certs inside the patch in bug 704285. I'm going to mark this as resolved.
Status: NEW → RESOLVED
Closed: 12 years ago
Resolution: --- → FIXED

          You need to log in
          before you can comment on or make changes to this bug.
        






  

    
  







  

    

      
Attachment

      

      
      
      
      
    

    

      

        

          

            
General

            

              Creator: 



            

            
Created: 

            
Updated: 

            
Size: