Open
Bug 989051
Opened 10 years ago
Updated 2 years ago
mozilla::pkix does not process the id-ce-inhibitAnyPolicy extension correctly.
Categories
(Core :: Security: PSM, defect, P3)
Tracking
()
NEW
People
(Reporter: cviecco, Unassigned)
References
Details
(Whiteboard: [psm-backlog])
Since we allow anyPolicy for EV validation, we should also handle the case where inhibitanypolicyoid is found.
Reporter | ||
Updated•10 years ago
|
Blocks: mozilla::pkix
Comment 1•10 years ago
|
||
Is this the right link? http://tools.ietf.org/html/rfc5280#section-4.2.1.14
Yep.
Updated•10 years ago
|
Comment 3•10 years ago
|
||
cviecco says that this extension rarely to never shows up in the wild, and the fallback is to not show the EV indicator so the current behavior is both safe and low-priority to fix.
Reporter | ||
Updated•10 years ago
|
Blocks: mozilla::pkix-next
Reporter | ||
Updated•10 years ago
|
No longer blocks: mozilla::pkix-beta
Updated•10 years ago
|
Summary: (mozilla::pkix) Should handle the Inhibit anyPolicy x509 extensions → mozilla::pkix does not process the id-ce-inhibitAnyPolicy extension correctly.
Whiteboard: [psm-backlog]
Priority: -- → P3
Updated•2 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•