J.C. Jones db950df22f Bug 1461373 - Set BRNameMatchingPolicy to "Enforce" for Nightly r=keeler ... Summary: Change the security.pki.name_matching_mode pref to 3 for Enforce on Nightly. BR_9_2_1_SUBJECT_ALT_NAMES show that ~99.98% of encountered certificates have an acceptable SAN, so our compatibility risk is about 0.02%. BR_9_2_2_SUBJECT_COMMON_NAME also shows, 99.89% of certificate common names are present in a subject alternative name extension, giving a worst-case of 0.11% risk, though BR_9_2_1_SUBJECT_ALT_NAMES is more what we're affecting here. Test Plan: none Reviewers: keeler Tags: #secure-revision Bug #: 1461373 Differential Revision: https://phabricator.services.mozilla.com/D1277 --HG-- extra : transplant_source : %BF%7D%DEi%C7%9BhE%D0%C2d%9D0%AC%F8%9EM%E0%60U		2018-05-14 09:55:15 -07:00
..
apps	Bug 1385057: Remove most code for handling unpacked side-loaded extensions. r=aswan,keeler	2018-05-09 16:04:04 -07:00
certverifier	Bug 1441914 - Fix Windows build on a CLOSED TREE r=me	2018-05-10 17:15:22 -07:00
manager	Bug 1461373 - Set BRNameMatchingPolicy to "Enforce" for Nightly r=keeler	2018-05-14 09:55:15 -07:00
nss	Bug 1445731 - land NSS NSS_3_37_RTM UPGRADE_NSS_RELEASE, r=me	2018-05-04 10:42:48 -07:00
pkix	Backed out 4 changesets (bug 525063) on request from Andi. a=backout	2018-04-13 16:01:28 +03:00
sandbox	Bug 1458553 - Return of Google Maps all black map with updated Nvidia web driver on Mac r=Alex_Gaynor	2018-05-02 09:26:55 -07:00
.eslintrc.js	Bug 1392119 - Enable the ESLint no-caller rule across mozilla-central r=standard8	2017-08-23 13:38:24 +01:00
generate_certdata.py	Bug 1402012 - Update buildconfig.py to use PartialConfigEnvironment; r=glandium	2017-08-24 22:52:01 -04:00
generate_mapfile.py	Bug 1350362 Fix NSS Build System for MinGW r=ted	2017-05-12 11:39:00 -05:00
moz.build	Bug 1445763 - Update moz.build meta data with "Firefox Build System". r=froydnj	2018-03-14 21:44:46 +01:00
nss.symbols	Bug 1429148 - Add nsIPK11Token.isInternalKeyToken. r=keeler,MattN	2018-02-20 20:43:41 -03:00