Skip to content
This repository has been archived by the owner on Dec 11, 2019. It is now read-only.

Symantec certs will soon stop being valid due to net::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED #6106

Closed
diracdeltas opened this issue Dec 9, 2016 · 0 comments
Closed

Symantec certs will soon stop being valid due to net::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED #6106

diracdeltas opened this issue Dec 9, 2016 · 0 comments
Assignees
@darkdh
Labels
QA/checked-Linux QA/checked-macOS QA/checked-Win32 QA/checked-Win64
Milestone
0.12.14

Comments

@diracdeltas
Copy link
Member

diracdeltas commented Dec 9, 2016
edited
Loading

Brave 0.12.13 will begin failing cert validation for Symantec certs starting on 12/12, which is 70 days after the libchromiumcontent build date.
Brave 0.13.x will begin failing 70 days after its build date also, but that is much later.

crbug: https://bugs.chromium.org/p/chromium/issues/detail?id=664177

Solution: apply the patch from https://chromium.googlesource.com/chromium/src/+/ec8e431e9a0f80ace76368ce7edce006f3d409f2 and/or rebuild libchromiumcontent to defer the time bomb.

Test plan:

  1. Set your system clock 3 months in the future
  2. Restart Brave and visit https://symbeta.symantec.com/welcome/
  3. It should show the lock icon in the urlbar instead of a certificate error page
@diracdeltas diracdeltas added this to the 0.13.0 milestone Dec 9, 2016
@darkdh darkdh self-assigned this Dec 9, 2016
darkdh added a commit to darkdh/libchromiumcontent that referenced this issue Dec 9, 2016
@darkdh
Defang the CT Timebomb
bf4d3a3 
https://codereview.chromium.org/2495583002

fix brave/browser-laptop#6106

Auditor: @diracdeltas, @bridiver
@darkdh darkdh mentioned this issue Dec 9, 2016
Merged
@bbondy bbondy modified the milestones: 0.12.14, 0.13.0 Dec 9, 2016
This was referenced Dec 9, 2016
Closed
Closed
Closed
Closed
@srirambv srirambv assigned darkdh and unassigned darkdh Dec 9, 2016
@cndouglas cndouglas mentioned this issue Dec 13, 2016
Closed
@jimfenton jimfenton mentioned this issue Dec 14, 2016
Closed
@diracdeltas diracdeltas mentioned this issue Dec 15, 2016
Closed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@darkdh darkdh

Labels
QA/checked-Linux QA/checked-macOS QA/checked-Win32 QA/checked-Win64
Projects
None yet
Milestone
0.12.14
Development

No branches or pull requests
5 participants
@diracdeltas @bbondy @alexwykoff @darkdh @srirambv