Closed Bug 1790152 Opened 2 years ago Closed 2 years ago

avoid unnecessary string serializations when adding certificate error overrides

Tracking

()

Status:

RESOLVED FIXED

Milestone:

106 Branch

Tracking Flags:

Tracking

Status

firefox106

---

fixed

People

(Reporter: keeler, Assigned: keeler)

References

Details

Attachments

(2 files)

Bug 1790152 - avoid serializing nsITransportSecurityInfo in the certificate error page r?gijs 2 years ago Dana Keeler (she/her) (use needinfo) [:keeler] (on leave) 48 bytes, text/x-phabricator-request		Details \| Review
Bug 1790152 - use nsIX509Cert directly in IPC in AddCertException r?nika 2 years ago Dana Keeler (she/her) (use needinfo) [:keeler] (on leave) 48 bytes, text/x-phabricator-request		Details \| Review

Dana Keeler (she/her) (use needinfo) [:keeler] (on leave)

Assignee

Description

•

2 years ago

The way certificate error overrides are added involves serializing security information back and forth between processes. Currently, much of that information is first serialized to a string and then sent across IPC, which is inefficient and unnecessary.

Dana Keeler (she/her) (use needinfo) [:keeler] (on leave)

Assignee

Comment 1

•

2 years ago

Attached file Bug 1790152 - avoid serializing nsITransportSecurityInfo in the certificate error page r?gijs — Details

Only the bytes of the failed certificate chain are used, so that's all we need
to send across, rather than the entire nsITransportSecurityInfo.

Dana Keeler (she/her) (use needinfo) [:keeler] (on leave)

Assignee

Comment 2

•

2 years ago

Attached file Bug 1790152 - use nsIX509Cert directly in IPC in AddCertException r?nika — Details

This avoids unnecessarily serializing the certificate to a string before
sending it over IPC.

Depends on D157007

BugBot [:suhaib / :marco/ :calixte]

Comment 3

•

2 years ago

The Bugbug bot thinks this bug should belong to the 'Core::Security: PSM' component, and is moving the bug to that component. Please correct in case you think the bot is wrong.

Component: General → Security: PSM

Product: Firefox → Core

Dana Keeler (she/her) (use needinfo) [:keeler] (on leave)

Assignee

Updated

•

2 years ago

Component: Security: PSM → Security

Product: Core → Firefox

Pulsebot

Comment 4

•

2 years ago

Pushed by dkeeler@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/03f88676f2a2
avoid serializing nsITransportSecurityInfo in the certificate error page r=Gijs
https://hg.mozilla.org/integration/autoland/rev/a6538d4b9ac5
use nsIX509Cert directly in IPC in AddCertException r=nika

Andreea Pavel [:apavel]

Comment 5

•

2 years ago

bugherder

https://hg.mozilla.org/mozilla-central/rev/03f88676f2a2
https://hg.mozilla.org/mozilla-central/rev/a6538d4b9ac5

Status: NEW → RESOLVED

Closed: 2 years ago

status-firefox106: --- → fixed

Resolution: --- → FIXED

Target Milestone: --- → 106 Branch

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

avoid unnecessary string serializations when adding certificate error overrides

Categories

(Firefox :: Security, task)

Tracking

()

People

(Reporter: keeler, Assigned: keeler)

References

Details

Crash Data

Security

(public)

User Story

Attachments

(2 files)

Description

Comment 1

Comment 2

Comment 3

Updated

Comment 4

Comment 5

Attachment

General

Description

File Name

Content Type