Closed Bug 1422811 Opened 7 years ago Closed 7 years ago

Move reportTLS functionality for cert error pages into content.js

Categories

(Firefox :: Security, enhancement, P1)

58 Branch
enhancement

Tracking

()

RESOLVED FIXED
Firefox 59
Tracking Status
firefox59 --- fixed

People

(Reporter: johannh, Assigned: johannh)

References

Details

Attachments

(1 file)

This would prevent the child from sending serialized certificate information to the parent process and reduce some complexity.
Flags: qe-verify-
Blocks: 1297630
Comment on attachment 8934169 [details] Bug 1422811 - Move reportTLS functionality for cert error pages into content.js. https://reviewboard.mozilla.org/r/205112/#review210614 ::: browser/base/content/content.js:458 (Diff revision 1) > + let {securityInfo} = docShell.failedChannel; > + securityInfo.QueryInterface(Ci.nsITransportSecurityInfo); > + let {host, port} = win.document.mozDocumentURIIfNotForErrorPages; > + let errorReporter = Cc["@mozilla.org/securityreporter;1"] > + .getService(Ci.nsISecurityReporter); > + errorReporter.reportTLSError(securityInfo, host, port); Can you verify that if we bail early from the reporter in content processes only, https://dxr.mozilla.org/mozilla-central/source/browser/base/content/test/general/browser_ssl_error_reports.js fails ? (Basically, I want to make sure the test coverage there actually verifies we send reports)
Attachment #8934169 - Flags: review?(gijskruitbosch+bugs) → review+
Comment on attachment 8934169 [details] Bug 1422811 - Move reportTLS functionality for cert error pages into content.js. https://reviewboard.mozilla.org/r/205112/#review210634
Attachment #8934169 - Flags: review?(mgoodwin) → review+
(In reply to :Gijs from comment #3) > Comment on attachment 8934169 [details] > Bug 1422811 - Move reportTLS functionality for cert error pages into > content.js. > > https://reviewboard.mozilla.org/r/205112/#review210614 > > ::: browser/base/content/content.js:458 > (Diff revision 1) > > + let {securityInfo} = docShell.failedChannel; > > + securityInfo.QueryInterface(Ci.nsITransportSecurityInfo); > > + let {host, port} = win.document.mozDocumentURIIfNotForErrorPages; > > + let errorReporter = Cc["@mozilla.org/securityreporter;1"] > > + .getService(Ci.nsISecurityReporter); > > + errorReporter.reportTLSError(securityInfo, host, port); > > Can you verify that if we bail early from the reporter in content processes > only, > https://dxr.mozilla.org/mozilla-central/source/browser/base/content/test/ > general/browser_ssl_error_reports.js fails ? (Basically, I want to make sure > the test coverage there actually verifies we send reports) Thanks, that's a good idea, I checked whether the test was passing but I didn't try to break it! I verified that it timeouts now.
Pushed by jhofmann@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/705d11b6aea6 Move reportTLS functionality for cert error pages into content.js. r=Gijs,mgoodwin
Status: ASSIGNED → RESOLVED
Closed: 7 years ago
Resolution: --- → FIXED
Target Milestone: --- → Firefox 59
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Created:
Updated:
Size: