Closed
Bug 1422811
Opened 7 years ago
Closed 7 years ago
Move reportTLS functionality for cert error pages into content.js
Categories
(Firefox :: Security, enhancement, P1)
Tracking
()
RESOLVED
FIXED
Firefox 59
Tracking | Status | |
---|---|---|
firefox59 | --- | fixed |
People
(Reporter: johannh, Assigned: johannh)
References
Details
Attachments
(1 file)
This would prevent the child from sending serialized certificate information to the parent process and reduce some complexity.
Flags: qe-verify-
Comment hidden (mozreview-request) |
Assignee | ||
Comment 2•7 years ago
|
||
Comment 3•7 years ago
|
||
mozreview-review |
Comment on attachment 8934169 [details]
Bug 1422811 - Move reportTLS functionality for cert error pages into content.js.
https://reviewboard.mozilla.org/r/205112/#review210614
::: browser/base/content/content.js:458
(Diff revision 1)
> + let {securityInfo} = docShell.failedChannel;
> + securityInfo.QueryInterface(Ci.nsITransportSecurityInfo);
> + let {host, port} = win.document.mozDocumentURIIfNotForErrorPages;
> + let errorReporter = Cc["@mozilla.org/securityreporter;1"]
> + .getService(Ci.nsISecurityReporter);
> + errorReporter.reportTLSError(securityInfo, host, port);
Can you verify that if we bail early from the reporter in content processes only, https://dxr.mozilla.org/mozilla-central/source/browser/base/content/test/general/browser_ssl_error_reports.js fails ? (Basically, I want to make sure the test coverage there actually verifies we send reports)
Attachment #8934169 -
Flags: review?(gijskruitbosch+bugs) → review+
Comment 4•7 years ago
|
||
mozreview-review |
Comment on attachment 8934169 [details]
Bug 1422811 - Move reportTLS functionality for cert error pages into content.js.
https://reviewboard.mozilla.org/r/205112/#review210634
Attachment #8934169 -
Flags: review?(mgoodwin) → review+
Assignee | ||
Comment 5•7 years ago
|
||
(In reply to :Gijs from comment #3)
> Comment on attachment 8934169 [details]
> Bug 1422811 - Move reportTLS functionality for cert error pages into
> content.js.
>
> https://reviewboard.mozilla.org/r/205112/#review210614
>
> ::: browser/base/content/content.js:458
> (Diff revision 1)
> > + let {securityInfo} = docShell.failedChannel;
> > + securityInfo.QueryInterface(Ci.nsITransportSecurityInfo);
> > + let {host, port} = win.document.mozDocumentURIIfNotForErrorPages;
> > + let errorReporter = Cc["@mozilla.org/securityreporter;1"]
> > + .getService(Ci.nsISecurityReporter);
> > + errorReporter.reportTLSError(securityInfo, host, port);
>
> Can you verify that if we bail early from the reporter in content processes
> only,
> https://dxr.mozilla.org/mozilla-central/source/browser/base/content/test/
> general/browser_ssl_error_reports.js fails ? (Basically, I want to make sure
> the test coverage there actually verifies we send reports)
Thanks, that's a good idea, I checked whether the test was passing but I didn't try to break it! I verified that it timeouts now.
Comment hidden (mozreview-request) |
Pushed by jhofmann@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/705d11b6aea6
Move reportTLS functionality for cert error pages into content.js. r=Gijs,mgoodwin
Comment 8•7 years ago
|
||
bugherder |
Status: ASSIGNED → RESOLVED
Closed: 7 years ago
status-firefox59:
--- → fixed
Resolution: --- → FIXED
Target Milestone: --- → Firefox 59
You need to log in
before you can comment on or make changes to this bug.
Description
•