net/data/ssl/certificates/README - Issue 20628006: Reject certificates that are valid for too long.

Side by Side Diff

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Side by Side Diff: net/data/ssl/certificates/README

Issue 20628006: Reject certificates that are valid for too long. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: "Manual rebase" due to age. Created 6 years, 1 month ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch | Annotate | Revision Log

OLD	NEW
1 This directory contains various certificates for use with SSL-related	1 This directory contains various certificates for use with SSL-related

2 unit tests.	2 unit tests.

3	3

4 ===== Real-world certificates that need manual updating	4 ===== Real-world certificates that need manual updating

5 - google.binary.p7b	5 - google.binary.p7b

6 - google.chain.pem	6 - google.chain.pem

7 - google.pem_cert.p7b	7 - google.pem_cert.p7b

8 - google.pem_pkcs7.p7b	8 - google.pem_pkcs7.p7b

9 - google.pkcs7.p7b	9 - google.pkcs7.p7b

10 - google.single.der	10 - google.single.der

(...skipping 235 matching lines...) Expand 10 before \| Expand all \| Expand 10 after Loading...
246 - aia-cert.pem	246 - aia-cert.pem

247 - aia-intermediate.der	247 - aia-intermediate.der

248 - aia-root.pem	248 - aia-root.pem

249 A certificate chain which we use to ensure AIA fetching works correctly	249 A certificate chain which we use to ensure AIA fetching works correctly

250 when using NSS to verify certificates (which uses our HTTP stack).	250 when using NSS to verify certificates (which uses our HTTP stack).

251 aia-cert.pem has a caIssuers that points to "aia-test.invalid" as the URL	251 aia-cert.pem has a caIssuers that points to "aia-test.invalid" as the URL

252 containing the intermediate, which can be served via a URLRequestFilter.	252 containing the intermediate, which can be served via a URLRequestFilter.

253 aia-intermediate.der is stored in DER form for convenience, since that is	253 aia-intermediate.der is stored in DER form for convenience, since that is

254 the form expected of certificates discovered via AIA.	254 the form expected of certificates discovered via AIA.

255	255

256	256 - br-compliant-validity.pem

	257 TODO(palmer): Encapsulate this in a script, like the others.
	Ryan Sleevi 2014/10/29 22:22:07 generate-test-certs.sh is where these free-standin generate-test-certs.sh is where these free-standing ones go. palmer 2014/10/30 01:23:16 Done. Show quoted text On 2014/10/29 22:22:07, Ryan Sleevi wrote: > generate-test-certs.sh is where these free-standing ones go. Done.
	258 Used in testing CertVerifyProc::HasTooLongValidity. Generated by the

	259 command

	260 "openssl req -x509 -days 1000 -sha1 -config ../scripts/ee.cnf \

	261 -newkey rsa:2048 -text -out br-compliant-validity.pem"

OLD	NEW

« net/cert/cert_verify_proc.cc ('K') | « net/cert/cert_verify_proc_unittest.cc ('k') | net/data/ssl/certificates/br-compliant-validity.pem » ('j') | no next file with comments »