gecko-dev

История

Dana Keeler e0531b8283 Bug 1667829 - CRLite: allow taking the log merge delay into account r=jcj This patch adds the preference "security.pki.crlite_ct_merge_delay_seconds" that adds a configurable delay between the earliest certificate timestamp and the filter creation date. This allows the implementation to take into account CT log merge delays (i.e. when an SCT exists for a certificate but that certificate hasn't yet been merged into the log). The default value is 28 hours in seconds. The minimum value is 0 seconds, and the maximum value is one year in seconds. Differential Revision: https://phabricator.services.mozilla.com/D92295		2020-10-07 00:16:49 +00:00
..
tests/gtest	…
BRNameMatchingPolicy.cpp	…
BRNameMatchingPolicy.h	…
CertVerifier.cpp	Bug 1667829 - CRLite: allow taking the log merge delay into account r=jcj	2020-10-07 00:16:49 +00:00
CertVerifier.h	Bug 1667829 - CRLite: allow taking the log merge delay into account r=jcj	2020-10-07 00:16:49 +00:00
ExtendedValidation.cpp	Bug 1645192 - Enable EV Treatment for "certSIGN Root CA G2" root certificate r=keeler	2020-06-26 07:15:41 +00:00
ExtendedValidation.h	…
NSSCertDBTrustDomain.cpp	Bug 1667829 - CRLite: allow taking the log merge delay into account r=jcj	2020-10-07 00:16:49 +00:00
NSSCertDBTrustDomain.h	Bug 1667829 - CRLite: allow taking the log merge delay into account r=jcj	2020-10-07 00:16:49 +00:00
OCSPCache.cpp	…
OCSPCache.h	…
OCSPVerificationTrustDomain.cpp	Bug 1605273 - only run CRLite on certificates with a CT SCT available r=jcj	2020-09-24 18:10:05 +00:00
OCSPVerificationTrustDomain.h	Bug 1605273 - only run CRLite on certificates with a CT SCT available r=jcj	2020-09-24 18:10:05 +00:00
TrustOverride-AppleGoogleDigiCertData.inc	…
TrustOverride-StartComAndWoSignData.inc	…
TrustOverride-SymantecData.inc	…
TrustOverride-TestImminentDistrustData.inc	…
TrustOverrideUtils.h	Bug 1664011 - avoid CERTCertificate in nsIX509CertValidity implementation r=rmf	2020-09-11 17:20:25 +00:00
moz.build	…