Reuse SRI code in NSec verification

RESOLVED WONTFIX

Status

()

RESOLVED WONTFIX
3 years ago
3 years ago

People

(Reporter: jhao, Assigned: jhao)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

(Assignee)

Description

3 years ago
SRI also deals with hash value check. We should reuse their code.
(Assignee)

Comment 1

3 years ago
SRI hash values has a prefix specifying hash type like sha256, sha512, etc.
Currently NSec packages' hashes don't, and I am going to fix that.

I thought we could reuse SRI's code, but it seems SRICheckDataVerifier needs a nsIChannel and nsIDocument, which we don't have in our context.

So, I'll probably process those hash prefix on my own.
(Assignee)

Comment 2

3 years ago
Closing this bug because New Security Model project was stopped.
Status: NEW → RESOLVED
Last Resolved: 3 years ago
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.