Closed
Bug 1071308
Opened 10 years ago
Closed 10 years ago
remove the libpkix-style chain validation callback from CertVerifier
Categories
(Core :: Security: PSM, defect)
Core
Security: PSM
Tracking
()
RESOLVED
FIXED
mozilla35
People
(Reporter: keeler, Assigned: keeler)
Details
Attachments
(2 files, 1 obsolete file)
8.99 KB,
patch
|
cviecco
:
review+
|
Details | Diff | Splinter Review |
29.67 KB,
patch
|
keeler
:
review+
|
Details | Diff | Splinter Review |
Currently we use a CERTChainVerifyCallback structure to pass around information needed to implement pinning checks in CertVerifier/NSSCertDBTrustDomain. This is an unnecessary legacy setup we can get rid of to simplify the implementation.
Assignee | ||
Comment 1•10 years ago
|
||
Assignee | ||
Comment 2•10 years ago
|
||
Attachment #8493426 -
Flags: review?(cviecco)
Comment 3•10 years ago
|
||
Comment on attachment 8493426 [details] [diff] [review] patch 2/2: remove callback Review of attachment 8493426 [details] [diff] [review]: ----------------------------------------------------------------- ::: security/certverifier/CertVerifier.cpp @@ +81,5 @@ > return SECSuccess; > } > > +Result > +CertListContainsExpectedKeys(const CERTCertList* certList, my only complain is about this name. I would have called it doPinningChecks (as it it related only to pinning) btw dont you need to declare this in the ".h" so that NSSCertDBTrustDomain.cpp can access it?
Attachment #8493426 -
Flags: review?(cviecco) → review+
Updated•10 years ago
|
Attachment #8493424 -
Flags: review?(cviecco) → review+
Assignee | ||
Comment 4•10 years ago
|
||
Thanks for the reviews. I kept the name as-is since I think it describes that function's purpose better. https://tbpl.mozilla.org/?tree=Try&rev=f919d653e95a
Attachment #8493426 -
Attachment is obsolete: true
Attachment #8495417 -
Flags: review+
Assignee | ||
Comment 5•10 years ago
|
||
https://hg.mozilla.org/integration/mozilla-inbound/rev/9dc5491eb546 https://hg.mozilla.org/integration/mozilla-inbound/rev/4f90b7fb1918
Comment 6•10 years ago
|
||
https://hg.mozilla.org/mozilla-central/rev/9dc5491eb546 https://hg.mozilla.org/mozilla-central/rev/4f90b7fb1918
Status: ASSIGNED → RESOLVED
Closed: 10 years ago
Flags: in-testsuite+
Resolution: --- → FIXED
Target Milestone: --- → mozilla35
You need to log in
before you can comment on or make changes to this bug.
Description
•