Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(130)

Issue 1566055: Add testing root certs to an nssdb on the rootfs. (Closed)

Created:
10 years, 8 months ago by Chris Masone
Modified:
9 years, 7 months ago
Reviewers:
Will Drewry, sosa
CC:
chromium-os-reviews_chromium.org
Visibility:
Public.

Description

Add testing root certs to an nssdb on the rootfs. After discussing with drewry, we can't come up with a better way to inject these root certs. We considered putting them on the stateful partition, but that opens up an avenue of attack (if you can get a root cert into the magic directory, then you can MITM login). Thus, we put it on the rootfs instead. The script that sets up the hashes for vboot will verify that this directory is not present in production images. That work is tracked here: http://code.google.com/p/chromium-os/issues/detail?id=2693

Patch Set 1 #

Unified diffs Side-by-side diffs Delta from patch set Stats (+10 lines, -2 lines) Patch
M src/scripts/mod_for_test_scripts/710enableAuthTesting View 1 chunk +10 lines, -2 lines 0 comments Download

Messages

Total messages: 2 (0 generated)
Chris Masone
10 years, 8 months ago (2010-04-19 20:27:08 UTC) #1
sosa
10 years, 8 months ago (2010-04-19 20:54:28 UTC) #2
lgtm

Powered by Google App Engine
This is Rietveld 408576698