[tbb-bugs] #13926 [Tor Browser]: No certificate hierarchy
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Feb 19 17:59:18 UTC 2016
#13926: No certificate hierarchy
-------------------------------------+--------------------------
Reporter: cypherpunks | Owner: tbb-team
Type: defect | Status: reopened
Priority: Medium | Milestone:
Component: Tor Browser | Version:
Severity: Normal | Resolution:
Keywords: tbb-usability, ff38-esr | Actual Points:
Parent ID: | Points:
Sponsor: |
-------------------------------------+--------------------------
Changes (by bugzilla):
* severity: => Normal
Comment:
> if security.nocertdb=false (not the default), then the intermediate CA
is found in the permanent / built-in certificate store even after it has
been purged
temporary (SSL context) certificate store has been purged (?)
For https://github.com/
{{{TypeError: cert is null}}} in
chrome://pippki/content/viewCertDetails.js : 270:4
{{{ asn1Tree.loadASN1Structure(cert.ASN1Structure);}}}
from the beginning.
{{{nocertdb}}} means "not to store certs" by its name. (But who knows what
Mozilla thought...)
So, no cert db - is not the resolution.
cert db must be permanent / session, isolated, in-memory, purgable. SSL
context - isolated, in-memory.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/13926#comment:7>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tbb-bugs
mailing list