Closed
Bug 744945
Opened 13 years ago
Closed 12 years ago
Optionally allow Firefox to define its own SSL error behaviour (only if Firefox wants to override the default "prompts=never" and "logging=enabled")
Categories
(Firefox :: Security, enhancement)
Tracking
()
RESOLVED
WONTFIX
People
(Reporter: KaiE, Unassigned)
References
Details
Attachments
(1 file, 1 obsolete file)
(deleted),
patch
|
Details | Diff | Splinter Review |
The Mozilla platform code provides a fallback mechanism that will show an error notification prompt when an error on an SSL socket occurrs, and no error handling exists that suppresses the prompt.
But 682329 introduces a mechanism for an application to override the default fallback behaviour.
Firefox might want to explicitly define its own default strategy.
I understand the default strategy should be either
nsISSLErrorPromptFallback::BHV_DETECT_DOCSHELL
or
nsISSLErrorPromptFallback::BHV_PROMPT_SUPPRESS
This bug suggests that the Firefox product owner makes a decision
and provides an implementation of nsISSLErrorPromptFallback
for contract "@mozilla.org/nsSSLErrorPromptFallback;1".
Reporter | ||
Comment 1•13 years ago
|
||
Assignee: nobody → kaie
Attachment #614554 -
Flags: superreview?(bzbarsky)
Attachment #614554 -
Flags: review?(honzab.moz)
Comment 2•13 years ago
|
||
Comment on attachment 614554 [details] [diff] [review]
Patch
sr=me
Attachment #614554 -
Flags: superreview?(bzbarsky) → superreview+
Reporter | ||
Comment 3•13 years ago
|
||
This patch will become unnecessary, if Mozilla decides that the prompts will be disabled by default (as in the most recent propsal in bug 682329 patch v8).
Depends on: 682329
Comment 4•13 years ago
|
||
Comment on attachment 614554 [details] [diff] [review]
Patch
For now releasing the review, but still on my radar, we may use some modification of this patch.
Attachment #614554 -
Flags: review?(honzab.moz)
Reporter | ||
Updated•12 years ago
|
Status: NEW → RESOLVED
Closed: 12 years ago
Resolution: --- → INCOMPLETE
Reporter | ||
Comment 6•12 years ago
|
||
reopening
Reporter | ||
Updated•12 years ago
|
Summary: Define Firefox's default fallback behaviour for SSL error prompts → Always supporess all SSL error prompts in Firefox's
Reporter | ||
Updated•12 years ago
|
Summary: Always supporess all SSL error prompts in Firefox's → Always suppress all SSL error prompts in Firefox's
Comment 7•12 years ago
|
||
This already was resolved and the dispute about it went all the way up to Brendan. AFAICT, that's the end of the road.
Status: REOPENED → RESOLVED
Closed: 12 years ago → 12 years ago
Resolution: --- → INVALID
Reporter | ||
Comment 8•12 years ago
|
||
I'm the module owner, and the solution here is appropriate.
Status: RESOLVED → REOPENED
Resolution: INVALID → ---
Reporter | ||
Updated•12 years ago
|
Summary: Always suppress all SSL error prompts in Firefox's → Optionally allow Firefox to define its own SSL error behaviour (only if Firefox wants to override the default "prompts=never" and "logging=enabled")
Reporter | ||
Updated•12 years ago
|
Severity: major → enhancement
Target Milestone: Firefox 14 → ---
Version: 14 Branch → 17 Branch
Reporter | ||
Comment 9•12 years ago
|
||
completely optional patch for illustrative purposes
Attachment #614554 -
Attachment is obsolete: true
Reporter | ||
Updated•12 years ago
|
Assignee: kaie → nobody
Status: REOPENED → RESOLVED
Closed: 12 years ago → 12 years ago
Resolution: --- → WONTFIX
You need to log in
before you can comment on or make changes to this bug.
Description
•