On 4/13/15 1:15 PM, Brian Smith wrote:
Kathleen Wilson <kwil...@mozilla.com> wrote:
ACTION #4
Workarounds were implemented to allow mozilla::pkix to handle the things
listed here:
https://wiki.mozilla.org/SecurityEngineering/mozpkix-testing#Things_for_CAs_to_Fix
Hi Kathleen,
Thanks for including this in the CA communication.
That list of workarounds is out of date. I think it would be useful to
re-triage the fixed and still-open bugs in the PSM component related
to certificate verification and look for ones that were fixed by
implementing a workaround for a certificate with malformed or
deprecated content.
Thanks, Brian!
I've updated the wiki page, please let me know if you think of any
others that should be added.
https://wiki.mozilla.org/SecurityEngineering/mozpkix-testing#Things_for_CAs_to_Fix
Thanks,
Kathleen
_______________________________________________
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy
