Open Bug 696976 Opened 10 years ago Updated 5 months ago

Client certificate UI blocks the SSL thread / socket transport thread

Categories

(Core :: Security: PSM, defect, P2)

defect

Tracking

()

People

(Reporter: briansmith, Unassigned)

References

(Depends on 1 open bug, Blocks 2 open bugs)

Details

(Whiteboard: [psm-backlog][psm-blocked])

We present the client authentication UI and wait for the user to dismiss it synchronously in our client auth data hook (nsNSS_SSLGetClientAuthData in nsNSSIOLayer.cpp). Instead, we should dispatch an event to launch the UI and then return SECWouldBlock. libssl will wait for us to restart the handshake after the user has chosen his/her certificate.

This depends on one or more bugs in libssl being fixed.
Priority: P3 → P2
Whiteboard: [psm-backlog] → [psm-backlog][psm-blocked]
Duplicate of this bug: 1659119
You need to log in before you can comment on or make changes to this bug.