Root certificates are out of date
Yogu opened this issue · 3 comments
Version
v18.12.1
Platform
Linux NB-0000 5.10.16.3-microsoft-standard-WSL2 #1 SMP Fri Apr 2 22:23:49 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux
Subsystem
crypto
What steps will reproduce the bug?
No response
How often does it reproduce? Is there a required condition?
No response
What is the expected behavior?
No response
What do you see instead?
The root certificates have not been updated in the last year. The docs state that they should be updated after an NSS release. There have been several NSS releases within the last months. Specifically, there are new DigiCert G5 root certificates that are trusted by Firefox since Firefox 103.
Additional information
No response
Would you like to send a PR to fix that?
For trust reasons it'd be better if a long-time contributor does that.
I mean, you can and you're welcome to, but the reviewer has to run all the same steps to ensure they're really the right certificates.
If no one steps up I'll do it but I have to say @richardlau did a great job last time (hint, hint.)