diff options
author | André Fabian Silva Delgado <emulatorman@parabola.nu> | 2014-09-05 17:25:13 -0300 |
---|---|---|
committer | André Fabian Silva Delgado <emulatorman@parabola.nu> | 2014-09-05 17:25:13 -0300 |
commit | 666e704c7a41fb403db7001427cedcf0e03c7d6e (patch) | |
tree | 93db9bf42583c4251555d9fe3609c700a2220bdf /libre/iceweasel/rhbz-966424.patch | |
parent | c73d37b588b25652112594d81db37d7f156d2cbb (diff) |
iceweasel-1:32.0.deb1-1: updating version
Diffstat (limited to 'libre/iceweasel/rhbz-966424.patch')
-rw-r--r-- | libre/iceweasel/rhbz-966424.patch | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/libre/iceweasel/rhbz-966424.patch b/libre/iceweasel/rhbz-966424.patch new file mode 100644 index 000000000..c4c332e9e --- /dev/null +++ b/libre/iceweasel/rhbz-966424.patch @@ -0,0 +1,23 @@ +--- a/toolkit/modules/CertUtils.jsm ++++ b/toolkit/modules/CertUtils.jsm +@@ -170,17 +170,19 @@ this.checkCert = + issuerCert = issuerCert.QueryInterface(Ci.nsIX509Cert3); + var tokenNames = issuerCert.getAllTokenNames({}); + + if (!tokenNames || !tokenNames.some(isBuiltinToken)) + throw new Ce(certNotBuiltInErr, Cr.NS_ERROR_ABORT); + } + + function isBuiltinToken(tokenName) { +- return tokenName == "Builtin Object Token"; ++ return tokenName == "Builtin Object Token" || ++ tokenName == "Default Trust" || ++ tokenName == "System Trust"; + } + + /** + * This class implements nsIBadCertListener. Its job is to prevent "bad cert" + * security dialogs from being shown to the user. It is better to simply fail + * if the certificate is bad. See bug 304286. + * + * @param aAllowNonBuiltInCerts (optional) |