Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(177)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 333033: X509CertificateNSS::Verify should honor the VERIFY_REV_CHECKING_ENABLED... (Closed)

Created:
11 years, 1 month ago by wtc
Modified:
9 years, 7 months ago
Reviewers:
ukai
CC:
chromium-reviews_googlegroups.com, darin (slow to review), Paweł Hajdan Jr.
Visibility:
Public.

Description

X509Certificate::Verify should honor the VERIFY_REV_CHECKING_ENABLED flag. This allows us to enable part of the X509CertificateTest.PaypalNullCertParsing test for Linux because the test disables revocation checking, thereby avoiding the overly strict assertion in nss_ocsp.cc. Enable cert_pi_useAIACertFetch to fetch missing intermediate CA certificates. Handle a non-certificate error reported by PKIXVerifyCert. R=ukai BUG=none TEST=none Committed: http://src.chromium.org/viewvc/chrome?view=rev&revision=30585

Patch Set 1 #

Total comments: 3

Patch Set 2 : Handle a non-certificate error returned by PKIXVerifyCert #

Patch Set 3 : Upload before checkin #

Unified diffs Side-by-side diffs Delta from patch set Stats (+28 lines, -13 lines) Patch
M net/base/x509_certificate_nss.cc View 1 2 6 chunks +25 lines, -8 lines 0 comments Download
M net/base/x509_certificate_unittest.cc View 2 chunks +3 lines, -5 lines 0 comments Download

Messages

Total messages: 4 (0 generated)
wtc
http://codereview.chromium.org/333033/diff/1/3 File net/base/x509_certificate_nss.cc (right): http://codereview.chromium.org/333033/diff/1/3#newcode405 Line 405: The cert_pi_useAIACertFetch change here is independent of the ...
11 years, 1 month ago (2009-10-26 23:43:12 UTC) #1
ukai
http://codereview.chromium.org/333033/diff/1/3 File net/base/x509_certificate_nss.cc (right): http://codereview.chromium.org/333033/diff/1/3#newcode412 Line 412: cvin[cvin_index].type = cert_pi_useAIACertFetch; build failure? we might need ...
11 years, 1 month ago (2009-10-27 09:26:06 UTC) #2
wtc
Thanks for the review and for checking the try build results. I won't check in ...
11 years, 1 month ago (2009-10-27 23:08:25 UTC) #3
ukai
11 years, 1 month ago (2009-10-28 08:34:48 UTC) #4 
LGTM

Powered by Google App Engine
This is Rietveld 408576698