[Webkit-unassigned] [Bug 208806] [Curl] WKCertificateInfoGetVerificationError function doesn't return an error code when the browser accesses https://wrong.host.badssl.com
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon Mar 9 07:09:35 PDT 2020
https://bugs.webkit.org/show_bug.cgi?id=208806
--- Comment #2 from Takashi Komori <Takashi.Komori at sony.com> ---
(In reply to Takashi Komori from comment #1)
> Created attachment 393025 [details]
> Fix the return code WKCertificateInfoGetVerificationError function returns.
This patch fixes the bug by checking the result of the result of validation on curl layer using curl_easy_getinfo.
Unfortunately we couldn't make tests for this change.
We think tests for the patch should be added to API tests (TestWebKitAPI/Tests/WebKit/curl/Certificates.cpp), but the reproduction of this bug is difficult in API tests because it only occurs accessing sites which have wrong certs.
We added some code which shows return code of WKCertificateInfoGetVerificationError function on Server Trust Evaluation Request Dialog.
For now, checking non-zero return code on the dialog is the only way to check the patch is working.
If there is some good way to test the patch, please teach us.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20200309/d8967989/attachment.htm>
More information about the webkit-unassigned
mailing list