Remove nsIX509CertList from getCerts and loadCertsFromCache
Categories
(Core :: Security: PSM, enhancement, P1)
Tracking
()
Tracking | Status | |
---|---|---|
firefox71 | --- | affected |
People
(Reporter: sefeng, Assigned: sefeng)
References
Details
(Whiteboard: [psm-assigned])
Attachments
(2 files, 6 obsolete files)
nsNSSCertList/ nsIX509CertList is redundant as it can be replaced by Array<nsIX509Cert>. Constructing nsNSSCertList is expensive as it required the raw cert to be decoded.
Assignee | ||
Comment 1•5 years ago
|
||
This patch removes nsIX509CertList for LoadCertsFromCache,
GetCerts and AsPKCS7Blob.
Assignee | ||
Comment 2•5 years ago
|
||
This is a helper function that is used t compare two Array of
nsIX509Cert.
Depends on D44239
Assignee | ||
Comment 3•5 years ago
|
||
Since we are removing nsIX509CertList, some of the helper functions
need to be duplicated with small modifications to adapt the new
certList format.
Depends on D44240
Assignee | ||
Comment 4•5 years ago
|
||
Depends on D44241
Assignee | ||
Comment 5•5 years ago
|
||
Depends on D44243
Assignee | ||
Comment 6•5 years ago
|
||
nsNSSCertList/nsIX509CertList are redundant, and also contructing
them are expensive. so it is replaced by Array<nsIX509Cert>
Depends on D44244
Updated•5 years ago
|
Assignee | ||
Comment 7•5 years ago
|
||
Depends on D44239
Updated•5 years ago
|
Updated•5 years ago
|
Updated•5 years ago
|
Updated•5 years ago
|
Updated•5 years ago
|
Updated•5 years ago
|
Assignee | ||
Comment 8•5 years ago
|
||
The signatureInfo that has been used in ExternalHelperAppService and
ReputationService has been stored Array of nsIX509CertList, which
isn't necessary because only the raw bytes of the certs are required.
This patch intends to remove the usage of nsIX509CertList and store
the raw bytes directly.
Updated•5 years ago
|
Comment 10•5 years ago
|
||
bugherder |
Assignee | ||
Comment 11•5 years ago
|
||
Reopen the bug as only the first patch got landed.
Updated•5 years ago
|
Updated•5 years ago
|
Updated•5 years ago
|
Updated•5 years ago
|
Assignee | ||
Updated•5 years ago
|
Comment 13•5 years ago
|
||
Comment on attachment 9090131 [details]
Bug 1577836 - Remove nsIX509CertList from asPKCS7Blob r=keeler
Revision D44516 was moved to bug 1580313. Setting attachment 9090131 [details] to obsolete.
Comment 14•5 years ago
|
||
Comment on attachment 9089496 [details]
Bug 1577836 - Duplicate some helper functions from nsIX509CertList r=keeler
Revision D44241 was moved to bug 1580315. Setting attachment 9089496 [details] to obsolete.
Comment 15•5 years ago
|
||
Comment on attachment 9089497 [details]
Bug 1577836 - Remove nsIX509CertList from TransportSecurityInfo r=keeler
Revision D44242 was moved to bug 1580315. Setting attachment 9089497 [details] to obsolete.
Comment 16•5 years ago
|
||
Comment on attachment 9090395 [details]
Bug 1577836 - Update signatureInfo to Array of Array of nsIX509Cert(in raw bytes) r=keeler
Revision D44243 was moved to bug 1580316. Setting attachment 9090395 [details] to obsolete.
Comment 17•5 years ago
|
||
Comment on attachment 9089499 [details]
Bug 1577836 - Remove nsIX509CertList from verifyCertFinished r=keeler
Revision D44244 was moved to bug 1580318. Setting attachment 9089499 [details] to obsolete.
Comment 18•5 years ago
|
||
Comment on attachment 9089500 [details]
Bug 1577836 - Remove nsNSSCertList/nsIX509CertList r=keeler
Revision D44245 was moved to bug 1580304. Setting attachment 9089500 [details] to obsolete.
Assignee | ||
Comment 19•5 years ago
|
||
I re-purposed this bug to only for the patch that is landed, the rest of the patches got moved to other bugs. Resolving this bug as the patch landed.
Description
•