Accessing nsHttpChannel from SSLServerCertVerification?

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--xdFm5CpWiIWMaMr7iBTcnJLwApM0iaFaa
From: Jeremy Rand <jeremyrand@airmail.cc>
To: dev-security@lists.mozilla.org
Message-ID: <3ae78cb1-b50b-a69c-88a9-d32546d49cd1@airmail.cc>
Subject: Accessing nsHttpChannel from SSLServerCertVerification?
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable

Hi,

Is there a way for the code in
https://dxr.mozilla.org/mozilla-central/source/security/manager/ssl/SSLSe=
rverCertVerification.cpp
to obtain the nsHttpChannel that triggered the TLS handshake?  I'm not
seeing an obvious way to do so, but I'm not particularly familiar with
this codebase.

I'm asking in the context of
https://bugzilla.mozilla.org/show_bug.cgi?id=3D1322748 ; I'd like to
trigger webRequest events so that WebExtensions can alter the
certificate validation result.  If there's a better way to provide
similar functionality, please feel free to suggest it -- I'm totally
open to a different approach, I'm just not an expert on the codebase and
this looked like a plausible approach.

Cheers,
--=20
-Jeremy Rand
Lead Application Engineer at Namecoin
Mobile email: jeremyrandmobile@airmail.cc
Mobile OpenPGP: 2158 0643 C13B B40F B0FD 5854 B007 A32D AB44 3D9C
Send non-security-critical things to my Mobile with OpenPGP.
Please don't send me unencrypted messages.
My business email jeremy@veclabs.net is having technical issues at the
moment.


--xdFm5CpWiIWMaMr7iBTcnJLwApM0iaFaa
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=4Pmx
-----END PGP SIGNATURE-----

--xdFm5CpWiIWMaMr7iBTcnJLwApM0iaFaa--
0
Jeremy
8/22/2017 8:45:16 PM
mozilla.dev.security 628 articles. 0 followers. Post Follow

0 Replies
38 Views

Similar Articles

[PageSpeed] 38

Reply: