Closed
Bug 389816
Opened 17 years ago
Closed 17 years ago
Port badCertHandler to xpinstall
Categories
(Core Graveyard :: Installer: XPInstall Engine, defect)
Core Graveyard
Installer: XPInstall Engine
Tracking
(Not tracked)
RESOLVED
FIXED
mozilla1.9alpha8
People
(Reporter: mossop, Assigned: mossop)
References
Details
Attachments
(1 file)
|
(deleted),
patch
|
dveditz
:
review+
bzbarsky
:
approval1.9+
|
Details | Diff | Splinter Review |
To ensure the security of updates (and chrome triggered installs) xpinstall should drop xpis that come from invalid ssl sites. This should happen on the install-from-chrome and install-with-hashes entry points. Installs from web clicks should still quiz the user about invalid certificates.
|
Assignee | |
Comment 1•17 years ago
|
||
This is a straight port of http://mxr.mozilla.org/seamonkey/source/toolkit/mozapps/shared/src/badCertHandler.js except that we only do the certificate checks if the request came from chrome.
In the event that a chrome initiated download comes from an invalid certificate, the download fails with error -228.
|
|
Assignee | |
Updated•17 years ago
|
Attachment #274596 -
Attachment is patch: true
Attachment #274596 -
Attachment mime type: application/octet-stream → text/plain
Attachment #274596 -
Flags: review?(dveditz)
|
|
Assignee | |
Comment 2•17 years ago
|
||
The patch requires the minor fix from bug 390143
Depends on: 390143
|
|
Assignee | |
Updated•17 years ago
|
Status: NEW → ASSIGNED
|
|
Assignee | |
Updated•17 years ago
|
Target Milestone: --- → mozilla1.9 M8
|
||
Comment 3•17 years ago
|
||
Comment on attachment 274596 [details] [diff] [review]
patch rev 1
Looks good, r=dveditz
Attachment #274596 -
Flags: review?(dveditz) → review+
|
|
Assignee | |
Comment 4•17 years ago
|
||
Comment on attachment 274596 [details] [diff] [review]
patch rev 1
This is required for the work in bug 378216 which is blocking-firefox3
Attachment #274596 -
Flags: approval1.9?
|
||
Comment 5•17 years ago
|
||
Comment on attachment 274596 [details] [diff] [review]
patch rev 1
a=bzbarsky
Attachment #274596 -
Flags: approval1.9? → approval1.9+
|
|
Assignee | |
Comment 6•17 years ago
|
||
Checking in xpinstall/src/Makefile.in;
/cvsroot/mozilla/xpinstall/src/Makefile.in,v <-- Makefile.in
new revision: 1.98; previous revision: 1.97
done
Checking in xpinstall/src/nsXPInstallManager.cpp;
/cvsroot/mozilla/xpinstall/src/nsXPInstallManager.cpp,v <-- nsXPInstallManager.cpp
new revision: 1.150; previous revision: 1.149
done
Checking in xpinstall/src/nsXPInstallManager.h;
/cvsroot/mozilla/xpinstall/src/nsXPInstallManager.h,v <-- nsXPInstallManager.h
new revision: 1.42; previous revision: 1.41
done
Status: ASSIGNED → RESOLVED
Closed: 17 years ago
Resolution: --- → FIXED
|
||
Updated•9 years ago
|
Product: Core → Core Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•