Closed
Bug 1550544
Opened 5 years ago
Closed 5 years ago
Untrusted modules telemetry should mark any binary with non-trusted certs as untrusted
Categories
(External Software Affecting Firefox :: Telemetry, defect, P1)
Tracking
(firefox68 fixed)
RESOLVED
FIXED
Tracking | Status | |
---|---|---|
firefox68 | --- | fixed |
People
(Reporter: bugzilla, Assigned: bugzilla)
References
(Blocks 1 open bug)
Details
(Whiteboard: inj+)
Attachments
(1 file)
If a binary has signature, but it is neither signed by Microsoft nor by us, that should automatically disqualify the binary as being trusted.
Assignee | ||
Updated•5 years ago
|
Assignee: nobody → aklotz
Status: NEW → ASSIGNED
Priority: P3 → P1
Assignee | ||
Comment 1•5 years ago
|
||
This patch takes care of two things:
-
It changes the module evaluator such that, if a binary is signed but the
cert is neither Microsoft's nor ours, the binary is automatically
disqualified. -
General cleanup. Use nsIFile::Contains instead of StringBeginsWith for
checking path containment. Better OO.
Assignee | ||
Comment 2•5 years ago
|
||
https://treeherder.mozilla.org/#/jobs?repo=try&revision=ace67b39cce7ccf1f7039337bc90fc2519e229ee
Pushed by aklotz@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/50170a11ab58 Clean up untrusted module evaluator; r=agashlin
Comment 4•5 years ago
|
||
bugherder |
You need to log in
before you can comment on or make changes to this bug.
Description
•