Bug 124569 - [curl] Improve ssl certificate storage and check
Summary: [curl] Improve ssl certificate storage and check
Status: RESOLVED FIXED
Alias: None
Product: WebKit
Classification: Unclassified
Component: WebCore Misc. (show other bugs)
Version: 528+ (Nightly build)
Hardware: Unspecified Unspecified
: P2 Normal
Assignee: Nobody
URL:
Keywords:
Depends on: 119436
Blocks: 117300
  Show dependency treegraph
 
Reported: 2013-11-19 01:08 PST by sipka
Modified: 2013-11-21 09:40 PST (History)
4 users (show)

See Also:

Attachments
proposed patch (3.79 KB, patch)
2013-11-19 01:08 PST, sipka 		no flags Details | Formatted Diff | Diff
proposed patch (3.84 KB, patch)
2013-11-21 01:48 PST, sipka 		no flags Details | Formatted Diff | Diff
proposed patch (4.65 KB, patch)
2013-11-21 02:04 PST, sipka 		no flags Details | Formatted Diff | Diff
Show Obsolete (2) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description sipka 2013-11-19 01:08:18 PST 
Created attachment 217277 [details]
proposed patch

Storage and check the whole certificate chain, not just the root certificate.
Comment 1 Brent Fulgham 2013-11-19 16:53:02 PST 
Comment on attachment 217277 [details]
proposed patch

View in context: https://bugs.webkit.org/attachment.cgi?id=217277&action=review

Looks good overall.  I have some concern about the BIO_get_mem_data call (though I realize this wasn't code you added).  Can you review and let me know what you think?

> Source/WebCore/platform/network/curl/SSLHandle.cpp:146
> +        unsigned char *certificateData;

unsigned char* certificateData;

> Source/WebCore/platform/network/curl/SSLHandle.cpp:147
> +        long len = BIO_get_mem_data(bio, &certificateData);

The BIO_get_mem_data documentation is pretty weak.  Does it ever return a negative value?  If not, why is the return value signed?  If it is negative, then the following code will do bad things.
Comment 2 sipka 2013-11-21 01:47:39 PST 
(In reply to comment #1)
> (From update of attachment 217277 [details])
> View in context: https://bugs.webkit.org/attachment.cgi?id=217277&action=review
> 
Thanks for the detailed review. 

> Looks good overall.  I have some concern about the BIO_get_mem_data call (though I realize this wasn't code you added).  Can you review and let me know what you think?
> 
BIO_get_mem_data() sets pp to a pointer to the start of the memory BIOs data and returns the total amount of data available. 
length = BIO_get_mem_data(bio, &certificateData);
// here - certificateData is a pointer to encoded data, length - length of data.

> > Source/WebCore/platform/network/curl/SSLHandle.cpp:146
> > +        unsigned char *certificateData;
> 
> unsigned char* certificateData;
>
I changed this. 
 
> > Source/WebCore/platform/network/curl/SSLHandle.cpp:147
> > +        long len = BIO_get_mem_data(bio, &certificateData);
> 
> The BIO_get_mem_data documentation is pretty weak.  Does it ever return a negative value?  If not, why is the return value signed?  If it is negative, then the following code will do bad things.
Yes, I made the change what is necessary to avoid unexpected behaviors in Bug119436 which this bug depends on.
Comment 3 sipka 2013-11-21 01:48:36 PST 
Created attachment 217534 [details]
proposed patch
Comment 4 sipka 2013-11-21 02:04:28 PST 
Created attachment 217537 [details]
proposed patch

Add missing ChangeLog
Comment 5 Brent Fulgham 2013-11-21 09:14:07 PST 
Comment on attachment 217537 [details]
proposed patch

r=me.
Comment 6 WebKit Commit Bot 2013-11-21 09:40:42 PST 
Comment on attachment 217537 [details]
proposed patch

Clearing flags on attachment: 217537

Committed r159632: <http://trac.webkit.org/changeset/159632>
Comment 7 WebKit Commit Bot 2013-11-21 09:40:45 PST 
All reviewed patches have been landed.  Closing bug.