Confirmed users, Administrators
5,526
edits
SecurityEngineering/mozpkix-testing: Difference between revisions
m
→What To Look For
| Line 45: | Line 45: | ||
* NSS LibPKIX Verification: https://mxr.mozilla.org/mozilla-central/source/security/nss/lib/libpkix/ | * NSS LibPKIX Verification: https://mxr.mozilla.org/mozilla-central/source/security/nss/lib/libpkix/ | ||
== What To | == What To Report == | ||
We are especially interested in finding errors that cause the following to happen: | We are especially interested in finding errors that cause the following to happen: | ||
# SSL connections succeed when they should fail, and they did fail in previous releases. | # SSL connections succeed when they should fail, and they did fail in previous releases. | ||
| Line 54: | Line 54: | ||
# SSL connections succeed when they should fail, and they did not fail in previous releases. Note that this could be due to not enforcing certain standards, and may be a policy decision. | # SSL connections succeed when they should fail, and they did not fail in previous releases. Note that this could be due to not enforcing certain standards, and may be a policy decision. | ||
# EV treatment is given when it should not be given and was being given in previous releases. Note that this could be due to not enforcing certain standards, and may be a policy decision. | # EV treatment is given when it should not be given and was being given in previous releases. Note that this could be due to not enforcing certain standards, and may be a policy decision. | ||
# Code Signing certificates do not work as expected. | # Code Signing certificates do not work as expected. | ||
== Mozilla::pkix Bug list == | == Mozilla::pkix Bug list == | ||