mozilla
/
gecko-dev
зеркало из https://github.com/mozilla/gecko-dev.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
gecko-dev/security/certverifier
История
J.C. Jones 175c45e2dc Bug 1444440 - Ensure the correct error is emitted for policy distrusts r=keeler 
Bug 1441223 added MOZILLA_PKIX_ERROR_ADDITIONAL_POLICY_CONSTRAINT_FAILED to be
emitted when we hit certificates affected by the Symantec distrust.

Since some sites have multiple certificate trust paths possible, sometimes
SEC_ERROR_UNKNOWN_ISSUER is emitted instead of the more specific error.

This patch uses a flag to ensure that the specific error is emitted out of the
Cert Verifier.

--HG--
extra : rebase_source : a961d2e713ae342222d85dff6f83ed3bcaa8006b
 		2018-03-14 14:01:35 -07:00
..
tests/gtest Bug 1440029 - Add a test for TrustOverrideUtils.h r=keeler 2018-02-21 16:54:52 -05:00
BRNameMatchingPolicy.cpp
BRNameMatchingPolicy.h
BTInclusionProof.h Bug 1343202 - Utility function for decoding an InclusionProof structure; r=ckerschb,keeler 2017-08-18 09:50:49 +02:00
BTVerifier.cpp Bug 1343202 - Utility function for decoding an InclusionProof structure; r=ckerschb,keeler 2017-08-18 09:50:49 +02:00
BTVerifier.h Bug 1343202 - Utility function for decoding an InclusionProof structure; r=ckerschb,keeler 2017-08-18 09:50:49 +02:00
Buffer.cpp
Buffer.h
CTDiversityPolicy.cpp
CTDiversityPolicy.h
CTKnownLogs.h
CTLog.h
CTLogVerifier.cpp
CTLogVerifier.h
CTObjectsExtractor.cpp
CTObjectsExtractor.h
CTPolicyEnforcer.cpp
CTPolicyEnforcer.h
CTSerialization.cpp Bug 1343202 - Utility function for decoding an InclusionProof structure; r=ckerschb,keeler 2017-08-18 09:50:49 +02:00
CTSerialization.h
CTUtils.h Bug 1343202 - Utility function for decoding an InclusionProof structure; r=ckerschb,keeler 2017-08-18 09:50:49 +02:00
CTVerifyResult.cpp
CTVerifyResult.h
CertVerifier.cpp Bug 1444440 - Ensure the correct error is emitted for policy distrusts r=keeler 2018-03-14 14:01:35 -07:00
CertVerifier.h Bug 1437754 - Add a pref and disable the Symantec distrust algorithm r=keeler 2018-02-27 16:04:51 -07:00
ExtendedValidation.cpp bug 1410956 - enable SSL.com EV root certificates for EV in PSM r=fkiefer 2018-03-02 15:44:43 -08:00
ExtendedValidation.h bug 1421084 - part 4/4 - remove nsNSSShutDown.h and (hopefully) all references to it r=mt,ttaubert 2018-01-24 14:44:01 -08:00
MultiLogCTVerifier.cpp
MultiLogCTVerifier.h
NSSCertDBTrustDomain.cpp Bug 1444440 - Ensure the correct error is emitted for policy distrusts r=keeler 2018-03-14 14:01:35 -07:00
NSSCertDBTrustDomain.h Bug 1444440 - Ensure the correct error is emitted for policy distrusts r=keeler 2018-03-14 14:01:35 -07:00
OCSPCache.cpp
OCSPCache.h
OCSPRequestor.cpp Bug 870698 - Part 1: Replace Assign("") with AssignLiteral(""). r=erahm 2017-09-03 22:12:56 -07:00
OCSPRequestor.h
OCSPVerificationTrustDomain.cpp
OCSPVerificationTrustDomain.h
SignedCertificateTimestamp.cpp
SignedCertificateTimestamp.h
SignedTreeHead.h
TrustOverride-AppleGoogleDigiCertData.inc Bug 1434300 - Add the DigiCert whitelisted SPKIs r=keeler 2018-02-21 14:08:59 -05:00
TrustOverride-GlobalSignData.inc Bug 1409259 - Refactor "TrustOverrides" header for existing trust overrides r=keeler 2017-10-16 23:17:52 -07:00
TrustOverride-StartComAndWoSignData.inc Bug 1409259 - Refactor "TrustOverrides" header for existing trust overrides r=keeler 2017-10-16 23:17:52 -07:00
TrustOverride-SymantecData.inc Bug 1434300 - Add a utility to match certificates based on SPKI r=fkiefer,keeler 2018-02-21 14:08:44 -05:00
TrustOverride-TestImminentDistrustData.inc Bug 1439378 - Re-enable the imminent distrust browser-console test r=fkiefer,keeler 2018-02-26 15:55:35 -07:00
TrustOverrideUtils.h Bug 1434300 - Change Symantec Distrust Algorithm's whitelist to SPKI-matching r=fkiefer,keeler 2018-02-21 14:08:47 -05:00
moz.build Bug 785440 - Disable warning C4324 when building security/certverifier. r=keeler 2018-02-11 00:32:14 -05:00