From 57c31045df4ca7ca259dad72d2db20292f009704 Mon Sep 17 00:00:00 2001 From: Peter Hartmann Date: Wed, 23 Nov 2011 14:40:26 +0100 Subject: SSL certificate blacklist: reformat serial numbers to hexadecimal Since recently QSslCertificate::serialNumber() always returns the hexadecimal format, so we need to adapt to that when checking the serial numbers for the blacklisted certificates. Change-Id: I43bdb1be77faad7ad79a835c896fc39477452e75 Reviewed-by: Shane Kearns Reviewed-by: Richard J. Moore --- src/network/ssl/qsslcertificate.cpp | 20 ++++++++++---------- 1 file changed, 10 insertions(+), 10 deletions(-) (limited to 'src/network/ssl') diff --git a/src/network/ssl/qsslcertificate.cpp b/src/network/ssl/qsslcertificate.cpp index b902f451b8..d1624faaea 100644 --- a/src/network/ssl/qsslcertificate.cpp +++ b/src/network/ssl/qsslcertificate.cpp @@ -1136,22 +1136,22 @@ static const char *certificate_blacklist[] = { "a4:b6:ce:e3:2e:d3:35:46:26:3c:b3:55:3a:a8:92:21", "CertiID Enterprise Certificate Authority", // DigiNotar intermediate signed by "DigiNotar Root CA G2" "5b:d5:60:9c:64:17:68:cf:21:0e:35:fd:fb:05:ad:41", "DigiNotar Qualified CA", // DigiNotar intermediate signed by DigiNotar Root - "1184640176", "DigiNotar Services 1024 CA", // DigiNotar intermediate cross-signed by Entrust - "120000525", "DigiNotar Cyber CA", // DigiNotar intermediate cross-signed by CyberTrust - "120000505", "DigiNotar Cyber CA", // DigiNotar intermediate cross-signed by CyberTrust - "120000515", "DigiNotar Cyber CA", // DigiNotar intermediate cross-signed by CyberTrust - "20015536", "DigiNotar PKIoverheid CA Overheid en Bedrijven", // DigiNotar intermediate cross-signed by the Dutch government - "20001983", "DigiNotar PKIoverheid CA Organisatie - G2", // DigiNotar intermediate cross-signed by the Dutch government + "46:9c:2c:b0", "DigiNotar Services 1024 CA", // DigiNotar intermediate cross-signed by Entrust + "07:27:10:0d", "DigiNotar Cyber CA", // DigiNotar intermediate cross-signed by CyberTrust + "07:27:0f:f9", "DigiNotar Cyber CA", // DigiNotar intermediate cross-signed by CyberTrust + "07:27:10:03", "DigiNotar Cyber CA", // DigiNotar intermediate cross-signed by CyberTrust + "01:31:69:b0", "DigiNotar PKIoverheid CA Overheid en Bedrijven", // DigiNotar intermediate cross-signed by the Dutch government + "01:31:34:bf", "DigiNotar PKIoverheid CA Organisatie - G2", // DigiNotar intermediate cross-signed by the Dutch government "d6:d0:29:77:f1:49:fd:1a:83:f2:b9:ea:94:8c:5c:b4", "DigiNotar Extended Validation CA", // DigiNotar intermediate signed by DigiNotar EV Root "1e:7d:7a:53:3d:45:30:41:96:40:0f:71:48:1f:45:04", "DigiNotar Public CA 2025", // DigiNotar intermediate // "(has not been seen in the wild so far)", "DigiNotar Public CA - G2", // DigiNotar intermediate // "(has not been seen in the wild so far)", "Koninklijke Notariele Beroepsorganisatie CA", // compromised during DigiNotar breach // "(has not been seen in the wild so far)", "Stichting TTP Infos CA," // compromised during DigiNotar breach - "1184640175", "DigiNotar Root CA", // DigiNotar intermediate cross-signed by Entrust - "1184644297", "DigiNotar Root CA", // DigiNotar intermediate cross-signed by Entrust + "46:9c:2c:af", "DigiNotar Root CA", // DigiNotar intermediate cross-signed by Entrust + "46:9c:3c:c9", "DigiNotar Root CA", // DigiNotar intermediate cross-signed by Entrust - "120001705", "Digisign Server ID (Enrich)", // (Malaysian) Digicert Sdn. Bhd. cross-signed by Verizon CyberTrust - "1276011370", "Digisign Server ID - (Enrich)", // (Malaysian) Digicert Sdn. Bhd. cross-signed by Entrust + "07:27:14:a9", "Digisign Server ID (Enrich)", // (Malaysian) Digicert Sdn. Bhd. cross-signed by Verizon CyberTrust + "4c:0e:63:6a", "Digisign Server ID - (Enrich)", // (Malaysian) Digicert Sdn. Bhd. cross-signed by Entrust 0 }; -- cgit v1.2.3