Given that code signing certificate expirations are a problem for add-ons:
-
As a user, how do I view the list of code signing certificates my browser trusts for add-ons, with their expiration dates and trust chain?
-
As a user, how do I view and independently verify the signing certificate chain for each of my installed extensions?
-
As an extension developer, what do I need to do when a certificate that was used to sign my extension expires?
(If, for any of the above questions, the simple answer is “there is no UI in Firefox to do this”, then I want to know the complicated answer, namely, in which files/databases/etc these are stored, in which data formats, which algorithms are applied to what data when signing and verifying, and which existing third-party tools can be used for that. Links to existing documentation in MDN or elsewhere are welcome.)
(Basically, I’m not content with a “CHECK ENGINE” light. I want to look under the hood and I want a service manual.)