Closed Bug 306354 Opened 19 years ago Closed 19 years ago

xpi signature verification only looks in first chunk of data received

Categories

(Core Graveyard :: Installer: XPInstall Engine, defect)

Product:
Core Graveyard
Component:
Installer: XPInstall Engine
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: bryner, Assigned: bryner)

References

Details

(Keywords: fixed1.8)

Attachments

(1 file)

patch
604 bytes, patch
darin.moz
: review+
darin.moz
: superreview+
dveditz
: approval-aviary1.0.8-
cbeard
: approval1.8b4+
Details | Diff | Splinter Review 
XPInstall's CertReader is designed to buffer up to 32KB of data to look for 
the signature, but its OnDataAvailable always returns 
NS_ERROR_BINDING_ABORTED, which means that if the signature is not in the 
first chunk of data read off the network (which can be well under 1500 bytes 
for slower connections), the XPI is treated as unsigned.
Attached patch patchSplinter Review 

        Attachment #194209 -
        Flags: superreview?(darin)

        Attachment #194209 -
        Flags: review?(darin)

    
    

    
  
when will the signature not be in the first 32k?

    
    

    
  
(In reply to comment #2)
> when will the signature not be in the first 32k?

I think you misunderstood the bug.  The signature should always be in the 
first 32k.  The problem is that we may not have all the data we need for the 
signature in the first OnDataAvailable call.

    
    

    
  
ah.  got it.

sounds fine with me.  I would just hope that we don't read any more than the
smallest amount required to fit a cert.

    
    

    
  
Comment on attachment 194209 [details] [diff] [review]
patch

r+sr=darin

        Attachment #194209 -
        Flags: superreview?(darin)

        Attachment #194209 -
        Flags: superreview+

        Attachment #194209 -
        Flags: review?(darin)

        Attachment #194209 -
        Flags: review+

    
    

    
  
Comment on attachment 194209 [details] [diff] [review]
patch

Checked in on trunk... requesting approval for 1.8 branch, and I'd also like
this to be considered for the 1.0.7 release since it's a very safe fix and has
a high impact on extension authors who sign their XPIs.

        Attachment #194209 -
        Flags: approval1.8b4?

        Attachment #194209 -
        Flags: approval-aviary1.0.7?

    
  
Status: NEW → RESOLVED
Closed: 19 years ago
Resolution: --- → FIXED

    
  
Flags: blocking1.8b4?

    
  
Flags: blocking1.8b4?
Flags: blocking1.8b4+
Flags: blocking-aviary1.0.7?

    
    

    
  
Comment on attachment 194209 [details] [diff] [review]
patch

approved for 1.8b4

        Attachment #194209 -
        Flags: approval1.8b4? → approval1.8b4+

    
    

    
  
Fixed on MOZILLA_1_8_BRANCH
Keywords: fixed1.8

    
    

    
  
*** Bug 297518 has been marked as a duplicate of this bug. ***
Flags: blocking1.7.12?
Flags: blocking1.7.13?
Flags: blocking1.7.13-
Flags: blocking-aviary1.0.8?
Flags: blocking-aviary1.0.8-

    
    

    
  
Comment on attachment 194209 [details] [diff] [review]
patch

not killing anyone on the old branch

        Attachment #194209 -
        Flags: approval-aviary1.0.8? → approval-aviary1.0.8-
Product: Core → Core Graveyard

          You need to log in
          before you can comment on or make changes to this bug.
        






  

    
  







  

    

      
Attachment

      

      
      
      
      
    

    

      

        

          

            
General

            

              Creator: 



            

            
Created: 

            
Updated: 

            
Size: