rpms / firefox

Clone
Source Code
GIT

Blame SOURCES/rhbz-966424.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c7-plus c8 c8-beta c8-containeronly-stream-flatpak c8-init-modify c8-init-modify2 c8s c9 c9-beta c9-containeronly-stream-flatpak
  1.   acfdf5aa50d95a86883c8b8069932f207771e812
  2.   SOURCES
  3.   rhbz-966424.patch
Blob History Raw
29a772 
--- a/toolkit/modules/CertUtils.jsm
29a772 
+++ b/toolkit/modules/CertUtils.jsm
29a772 
@@ -170,17 +170,19 @@ this.checkCert =
29a772 
   issuerCert = issuerCert.QueryInterface(Ci.nsIX509Cert3);
29a772 
   var tokenNames = issuerCert.getAllTokenNames({});
29a772
29a772 
   if (!tokenNames || !tokenNames.some(isBuiltinToken))
29a772 
     throw new Ce(certNotBuiltInErr, Cr.NS_ERROR_ABORT);
29a772 
 }
29a772
29a772 
 function isBuiltinToken(tokenName) {
29a772 
-  return tokenName == "Builtin Object Token";
29a772 
+  return tokenName == "Builtin Object Token" ||
29a772 
+         tokenName == "Default Trust" ||
29a772 
+         tokenName == "System Trust";
29a772 
 }
29a772
29a772 
 /**
29a772 
  * This class implements nsIBadCertListener.  Its job is to prevent "bad cert"
29a772 
  * security dialogs from being shown to the user.  It is better to simply fail
29a772 
  * if the certificate is bad. See bug 304286.
29a772 
  *
29a772 
  * @param  aAllowNonBuiltInCerts (optional)

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation