5e3c261ad8
SEC_ERROR_REVOKED_CERTIFICATE is a certificate error, not a TLS protocol error. This patch updates the categorization of this error while maintaining the property that it cannot be overridden. This has the benefit of making it possible to show more diagnostic information in the error page, which this patch also adds. Differential Revision: https://phabricator.services.mozilla.com/D239220
34 lines
1.0 KiB
Plaintext
34 lines
1.0 KiB
Plaintext
/* -*- Mode: IDL; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
|
|
/* This Source Code Form is subject to the terms of the Mozilla Public
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this file,
|
|
* You can obtain one at http://mozilla.org/MPL/2.0/.
|
|
*/
|
|
|
|
/**
|
|
* This dictionary is used for exposing failed channel certificate information
|
|
* to about:certerror to display information.
|
|
*/
|
|
|
|
enum OverridableErrorCategory {
|
|
"unset",
|
|
"trust-error",
|
|
"domain-mismatch",
|
|
"expired-or-not-yet-valid",
|
|
};
|
|
|
|
dictionary FailedCertSecurityInfo {
|
|
DOMString errorCodeString = "";
|
|
boolean errorIsOverridable = false;
|
|
unsigned long channelStatus = 0;
|
|
OverridableErrorCategory overridableErrorCategory = "unset";
|
|
DOMTimeStamp validNotBefore = 0;
|
|
DOMTimeStamp validNotAfter = 0;
|
|
DOMString issuerCommonName = "";
|
|
DOMTimeStamp certValidityRangeNotAfter = 0;
|
|
DOMTimeStamp certValidityRangeNotBefore = 0;
|
|
DOMString errorMessage = "";
|
|
boolean hasHSTS = true;
|
|
boolean hasHPKP = true;
|
|
sequence<DOMString> certChainStrings;
|
|
};
|