author Mark Goodwin <>
Mon, 18 Apr 2016 14:55:56 +0100
changeset 354216 b5067fcc151a4cd322e46ebe2cc799abaece9095
parent 350992 8206ecdf17e8c08cf6127d1b2bcc572c83f40bbe
child 387694 d4aea6d5d2f8271d272969832603fc86e982f5f2
permissions -rw-r--r--
Bug 1265085 - Replace verification source with a SAN in the content signature verifier interface. r?Cykesiopka,r?fkiefer This change replaces the hardcoded 'sourceis' in nsIContentSignatureVerifier and ContentSignatureVerifier.cpp with a string parameter which allows the caller to specify which hostname the signing certificate must be valid for. This allows us to create and use new signing certificates without having to wait for new sources to ride the trains. MozReview-Commit-ID: KGpOVOuJrk3

# -*- Mode: python; c-basic-offset: 4; indent-tabs-mode: nil; tab-width: 40 -*-
# vim: set filetype=python:
# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this
# file, You can obtain one at

# Temporarily disabled. See bug 1256495.
#test_certificates = (
#    'content_signing_root.pem',
#    'content_signing_int.pem',
#    'content_signing_onecrl_ee.pem',
#    'content_signing_onecrl_no_SAN_ee.pem',
#    'content_signing_onecrl_wrong_key_ee.pem',
#    'content_signing_remote_newtab_ee.pem',
#for test_certificate in test_certificates:
#    GeneratedTestCertificate(test_certificate)