Closed Bug 606049 Opened 14 years ago Closed 14 years ago

Add the SSL peer's CA certificates to ss->ssl3.peerCertChain in the correct order.

Tracking

(Not tracked)

Status:

RESOLVED FIXED

Milestone:

3.13

People

(Reporter: wtc, Assigned: wtc)

Details

Attachments

(1 file)

Proposed patch 14 years ago Wan-Teh Chang 1.51 KB, patch	nelson : review+	Details \| Diff \| Splinter Review

Wan-Teh Chang

Assignee

Description

•

14 years ago

Attached patch Proposed patch — Details — Splinter Review

ss->ssl3.peerCertChain is a linked list of ssl3CertNode's.

Right now the SSL peer's CA certificates are added to
ss->ssl3.peerCertChain in the opposite order in which they
are received.

The order doesn't matter today, but I plan to add a new
SSL_PeerCertificates (or SSL_PeerCertificateChain) function
that returns all the certificates in the Certificate message,
so I'll need to preserve that order.  This patch is a
prerequisite.

Attachment #484917 - Flags: review?(nelson)

Nelson Bolyard (seldom reads bugmail)

Comment 1

•

14 years ago

Comment on attachment 484917 [details] [diff] [review]
Proposed patch

r=nelson

Attachment #484917 - Flags: review?(nelson) → review+

Wan-Teh Chang

Assignee

Comment 2

•

14 years ago

Patch checked in on the NSS trunk (NSS 3.13).

Checking in ssl3con.c;
/cvsroot/mozilla/security/nss/lib/ssl/ssl3con.c,v  <--  ssl3con.c
new revision: 1.149; previous revision: 1.148
done

Status: ASSIGNED → RESOLVED

Closed: 14 years ago

Resolution: --- → FIXED

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

Add the SSL peer's CA certificates to ss->ssl3.peerCertChain in the correct order.

Categories

(NSS :: Libraries, enhancement, P2)

Tracking

(Not tracked)

People

(Reporter: wtc, Assigned: wtc)

References

Details

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Comment 1

Comment 2

Attachment

General

Description

File Name

Content Type