Closed Bug 1102589 Opened 10 years ago Closed 5 years ago

refactor the relationship between nsSiteSecurityService and PublicKeyPinningService

Tracking

()

Status:

RESOLVED WORKSFORME

People

(Reporter: keeler, Unassigned)

References

Details

(Whiteboard: [psm-cleanup])

Dana Keeler (she/her) (use needinfo) [:keeler]

Reporter

Description

•

10 years ago

nsSiteSecurityService calls into PublicKeyPinningService to determine the validity of new HPKP (i.e. dynamic) pins. PublicKeyPinningService calls into nsSiteSecurityService when verifying certificate chains to see if a site has any dynamic pins. We should sort out this circular dependency. My thinking at the moment is that it makes the most sense to put all of the functionality in nsSiteSecurityService and have that be a single entry-point for any external uses of it.

Dana Keeler (she/her) (use needinfo) [:keeler]

Reporter

Updated

•

9 years ago

Whiteboard: [psm-cleanup]

Dana Keeler (she/her) (use needinfo) [:keeler]

Reporter

Updated

•

7 years ago

Priority: -- → P5

Dana Keeler (she/her) (use needinfo) [:keeler]

Reporter

Updated

•

5 years ago

Depends on: 1630038

Dana Keeler (she/her) (use needinfo) [:keeler]

Reporter

Comment 1

•

5 years ago

As of bug 1630038 the relationship between these two is less intricate.

Status: NEW → RESOLVED

Closed: 5 years ago

Resolution: --- → WORKSFORME

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

refactor the relationship between nsSiteSecurityService and PublicKeyPinningService

Categories

(Core :: Security: PSM, defect, P5)

Tracking

()

People

(Reporter: keeler, Unassigned)

References

Details

(Whiteboard: [psm-cleanup])

Crash Data

Security

(public)

User Story

Description

Updated

Updated

Updated

Comment 1