Closed
Bug 1338701
Opened 7 years ago
Closed 7 years ago
PublicKeyPinningService should never have a non-const handle on any preloaded pinning information
Categories
(Core :: Security: PSM, defect, P1)
Core
Security: PSM
Tracking
()
RESOLVED
FIXED
mozilla54
| Tracking | Status | |
|---|---|---|
| firefox54 | --- | fixed |
People
(Reporter: keeler, Assigned: keeler)
Details
(Whiteboard: [psm-assigned])
Attachments
(1 file)
This line casts a const TransportSecurityPreload to a non-const one: https://dxr.mozilla.org/mozilla-central/rev/511093a0d82882d4b20f91b0287ad4b610c5225f/security/manager/ssl/PublicKeyPinningService.cpp#197 We're just lucky all of its fields are (currently - see bug 1335294) const and that we didn't try to change any of them. There should be no non-const TransportSecurityPreloads around anywhere.
| Comment hidden (mozreview-request) |
|
Assignee | |
Updated•7 years ago
|
Assignee: nobody → dkeeler
Priority: P2 → P1
Whiteboard: [psm-backlog] → [psm-assigned]
|
|
||
Comment 2•7 years ago
|
||
| mozreview-review | ||
Comment on attachment 8836272 [details] bug 1338701 - constify all TransportSecurityPreloads, use mozilla::BinarySearch over bsearch https://reviewboard.mozilla.org/r/111750/#review113116 More const and less casting is always nice to see. ::: security/manager/ssl/PublicKeyPinningService.cpp:144 (Diff revision 1) > -*/ > -static int > -TransportSecurityPreloadCompare(const void* key, const void* entry) { > - auto keyStr = static_cast<const char*>(key); > - auto preloadEntry = static_cast<const TransportSecurityPreload*>(entry); > - > +public: > + explicit TransportSecurityPreloadBinarySearchComparator( > + const char* aTargetHost) > + : mTargetHost(aTargetHost) {} > + > + int operator()(const TransportSecurityPreload& val) const { Nit: I believe our style guide says the opening brace should go on the next time. ::: security/manager/ssl/PublicKeyPinningService.cpp:204 (Diff revision 1) > return NS_OK; > } > > - foundEntry = (TransportSecurityPreload *)bsearch(evalHost, > - kPublicKeyPinningPreloadList, > - sizeof(kPublicKeyPinningPreloadList) / sizeof(TransportSecurityPreload), > + size_t foundEntryIndex; > + if (BinarySearchIf(kPublicKeyPinningPreloadList, 0, > + ArrayLength(kPublicKeyPinningPreloadList), This should have a corresponding `#include "mozilla/ArrayUtils.h"`.
Attachment #8836272 -
Flags: review?(cykesiopka.bmo) → review+
|
|
Assignee | |
Comment 3•7 years ago
|
||
| mozreview-review-reply | ||
Comment on attachment 8836272 [details] bug 1338701 - constify all TransportSecurityPreloads, use mozilla::BinarySearch over bsearch https://reviewboard.mozilla.org/r/111750/#review113116 Thanks! > Nit: I believe our style guide says the opening brace should go on the next time. Ah, right. > This should have a corresponding `#include "mozilla/ArrayUtils.h"`. Good catch.
| Comment hidden (mozreview-request) |
Pushed by dkeeler@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/c09eb845f9be constify all TransportSecurityPreloads, use mozilla::BinarySearch over bsearch r=Cykesiopka
|
||
Comment 6•7 years ago
|
||
| bugherder | ||
https://hg.mozilla.org/mozilla-central/rev/c09eb845f9be
Status: NEW → RESOLVED
Closed: 7 years ago
status-firefox54:
--- → fixed
Resolution: --- → FIXED
Target Milestone: --- → mozilla54
You need to log in
before you can comment on or make changes to this bug.
Description
•