Closed Bug 1577428 Opened 3 months ago Closed 3 months ago

Not allow nsICertOverrideService to be implemented in js

Tracking

()

Status:

RESOLVED FIXED

Milestone:

mozilla71

Tracking Flags:

Tracking

Status

firefox71

---

fixed

People

(Reporter: kershaw, Assigned: kershaw)

References

Details

Attachments

(1 file)

Bug 1577428 - Not allow nsICertOverrideService to be implemented in js 3 months ago Kershaw Chang [:kershaw] 47 bytes, text/x-phabricator-request		Details \| Review

Kershaw Chang [:kershaw]

Assignee

Description

•

3 months ago

See https://phabricator.services.mozilla.com/D43790#1322561.

Kershaw Chang [:kershaw]

Assignee

Comment 1

•

3 months ago

Attached file Bug 1577428 - Not allow nsICertOverrideService to be implemented in js — Details

Andreas Tolfsen 「:ato」

Comment 2

•

3 months ago

Sorry, I’ve been on holiday. For the future, tagging r=#webdriver
will alert all the Marionette peers.

I missed an explanation in the commit message of why we’re disallowing
JS implementations of nsICertOverrideService, but the patch looks
good and I’m sure there are entirely reasonable arguments for making
this change.

Thanks!

Kershaw Chang [:kershaw]

Assignee

Comment 3

•

3 months ago

(In reply to Andreas Tolfsen 「:ato」 from comment #2)

Sorry, I’ve been on holiday. For the future, tagging r=#webdriver
will alert all the Marionette peers.

I missed an explanation in the commit message of why we’re disallowing
JS implementations of nsICertOverrideService, but the patch looks
good and I’m sure there are entirely reasonable arguments for making
this change.

Thanks!

Sorry for the lack of explanation.
The main reason why we need this patch is that we want to use nsICertOverrideService off main thread, so nsICertOverrideService can't be implemented in js.
For more details, please see https://phabricator.services.mozilla.com/D28741. We made some refactoring and decided to use nsICertOverrideService off main thread.

Andreas Tolfsen 「:ato」

Comment 4

•

3 months ago

Thanks for explaining! 👍🏻

Pulsebot

Comment 5

•

3 months ago

Pushed by kjang@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/2e0c2fea2799
Not allow nsICertOverrideService to be implemented in js r=keeler

Andreea Pavel [:apavel]

Comment 6

•

3 months ago

Backed out for linting doc failure

Push with failure: https://treeherder.mozilla.org/#/jobs?repo=autoland&group_state=expanded&resultStatus=testfailed%2Cbusted%2Cexception&revision=2e0c2fea279919e3174d61815302a4d197ae9de7&selectedJob=264750495

Failure log: https://treeherder.mozilla.org/logviewer.html#/jobs?job_id=264750495&repo=autoland&lineNumber=708

Backout: https://hg.mozilla.org/integration/autoland/rev/951e798d04687bd40b85bb71baf2355d119cd636

Flags: needinfo?(kershaw)

Kershaw Chang [:kershaw]

Assignee

Updated

•

3 months ago

Flags: needinfo?(kershaw)

Pulsebot

Comment 7

•

3 months ago

Pushed by kjang@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/a3db631b1bb1
Not allow nsICertOverrideService to be implemented in js r=keeler,ato

Bogdan Tara[:bogdan_tara]

Comment 8

•

3 months ago

bugherder

https://hg.mozilla.org/mozilla-central/rev/a3db631b1bb1

Status: NEW → RESOLVED

Closed: 3 months ago

status-firefox71: --- → fixed

Resolution: --- → FIXED

Target Milestone: --- → mozilla71

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Not allow nsICertOverrideService to be implemented in js

Categories

(Core :: Security: PSM, enhancement, P2)

Tracking

()

People

(Reporter: kershaw, Assigned: kershaw)

References

Details

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Comment 1

Comment 2

Comment 3

Comment 4

Comment 5

Comment 6

Updated

Comment 7

Comment 8