Context Navigation

← Previous Changeset
Next Changeset →

Changeset 181317 in webkit

Timestamp:

Mar 10, 2015, 12:34:06 AM (10 years ago)

Author:

mitz@apple.com

Message:

Source/WebCore:
WebCore part of <rdar://problem/20086546> [Cocoa] Add an option to treat certificate chains with SHA1-signed certificates as insecure
https://bugs.webkit.org/show_bug.cgi?id=142461

Reviewed by Sam Weinig.

WebCore.xcodeproj/project.pbxproj: Added reference to SecuritySPI.h and sorted the

spi/cocoa group.

platform/network/cf/CertificateInfo.h: Declared new member function

containsNonRootSHA1SignedCertificate.

platform/network/mac/CertificateInfoMac.mm:

(WebCore::CertificateInfo::containsNonRootSHA1SignedCertificate): Added. Checks if any but
the last certificate in the chain uses SHA-1 as its signature hash algorithm.

platform/network/curl/CertificateInfo.h:

(WebCore::CertificateInfo::containsNonRootSHA1SignedCertificate): Added notImplemented
implementation.

platform/network/soup/CertificateInfo.h:

(WebCore::CertificateInfo::containsNonRootSHA1SignedCertificate): Ditto.

platform/spi/cocoa/SecuritySPI.h: Added.

Source/WebKit2:
WebKit2 part of <rdar://problem/20086546> [Cocoa] Add an option to treat certificate chains with SHA1-signed certificates as insecure
https://bugs.webkit.org/show_bug.cgi?id=142461

Reviewed by Sam Weinig.

UIProcess/API/Cocoa/WKWebView.mm:

(-[WKWebView initWithFrame:configuration:]): Initialize
webPageConfiguration.treatsSHA1SignedCertificatesAsInsecure from the WKWebViewConfiguration.

UIProcess/API/Cocoa/WKWebViewConfiguration.mm:

Added _treatsSHA1SignedCertificatesAsInsecure ivar.
(-[WKWebViewConfiguration copyWithZone:]): Copy _treatsSHA1SignedCertificatesAsInsecure.
(-[WKWebViewConfiguration _treatsSHA1SignedCertificatesAsInsecure]): Added this getter.
(-[WKWebViewConfiguration _setTreatsSHA1SignedCertificatesAsInsecure:]): Added this setter.

UIProcess/API/Cocoa/WKWebViewConfigurationPrivate.h: Declared new

_treatsSHA1SignedCertificatesAsInsecure property.

UIProcess/PageLoadState.cpp:

(WebKit::PageLoadState::didCommitLoad): Use new hasInsecureContent parameter to initialize
hasInsecureContent parameter in the uncommitted state.

UIProcess/PageLoadState.h:

UIProcess/WebPageProxy.cpp:

(WebKit::WebPageProxy::WebPageProxy): Initialize new m_treatsSHA1CertificatesAsInsecure
member variable from the WebPageConfiguration.
(WebKit::WebPageProxy::didCommitLoadForFrame): Pass true for the new hasInsecureContent to
PageLoadState::didCommitLoad if we are treating SHA1-signed certificates as insecure and
the certificate info contains a non-root SHA1-signed certificate.

UIProcess/WebPageProxy.h: Added m_treatsSHA1CertificatesAsInsecure member variable.

Location:

trunk/Source

Files:

: 1 added
: 14 edited

WebCore/ChangeLog (modified) (1 diff)
WebCore/WebCore.xcodeproj/project.pbxproj (modified) (5 diffs)
WebCore/platform/network/cf/CertificateInfo.h (modified) (1 diff)
WebCore/platform/network/curl/CertificateInfo.h (modified) (2 diffs)
WebCore/platform/network/mac/CertificateInfoMac.mm (modified) (2 diffs)
WebCore/platform/network/soup/CertificateInfo.h (modified) (2 diffs)
WebCore/platform/spi/cocoa/SecuritySPI.h (added)
WebKit2/ChangeLog (modified) (1 diff)
WebKit2/UIProcess/API/Cocoa/WKWebView.mm (modified) (2 diffs)
WebKit2/UIProcess/API/Cocoa/WKWebViewConfiguration.mm (modified) (4 diffs)
WebKit2/UIProcess/API/Cocoa/WKWebViewConfigurationPrivate.h (modified) (2 diffs)
WebKit2/UIProcess/PageLoadState.cpp (modified) (3 diffs)
WebKit2/UIProcess/PageLoadState.h (modified) (2 diffs)
WebKit2/UIProcess/WebPageProxy.cpp (modified) (2 diffs)
WebKit2/UIProcess/WebPageProxy.h (modified) (2 diffs)

Legend:

: Unmodified
: Added
: Removed

trunk/Source/WebCore/ChangeLog

-              r181310
+              r181317
+-03-10  Dan Bernstein  <mitz@apple.com>
+        WebCore part of <rdar://problem/20086546> [Cocoa] Add an option to treat certificate chains with SHA1-signed certificates as insecure
+        https://bugs.webkit.org/show_bug.cgi?id=142461
+        Reviewed by Sam Weinig.
+        * WebCore.xcodeproj/project.pbxproj: Added reference to SecuritySPI.h and sorted the
+        spi/cocoa group.
+        * platform/network/cf/CertificateInfo.h: Declared new member function
+        containsNonRootSHA1SignedCertificate.
+        * platform/network/mac/CertificateInfoMac.mm:
+        (WebCore::CertificateInfo::containsNonRootSHA1SignedCertificate): Added. Checks if any but
+        the last certificate in the chain uses SHA-1 as its signature hash algorithm.
+        * platform/network/curl/CertificateInfo.h:
+        (WebCore::CertificateInfo::containsNonRootSHA1SignedCertificate): Added notImplemented
+        implementation.
+        * platform/network/soup/CertificateInfo.h:
+        (WebCore::CertificateInfo::containsNonRootSHA1SignedCertificate): Ditto.
+        * platform/spi/cocoa/SecuritySPI.h: Added.
 -03-09  Chris Dumez  <cdumez@apple.com>

trunk/Source/WebCore/WebCore.xcodeproj/project.pbxproj

-              r181291
+              r181317
 D0212D131DB37B004091A8 /* CookieStorage.h in Headers */ = {isa = PBXBuildFile; fileRef = E13F01EA1270E10D00DFBA71 /* CookieStorage.h */; settings = {ATTRIBUTES = (Private, ); }; };
                 3571883EEF618793751E4089 /* RenderMathMLMenclose.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 3662F984047CEDBE5DDDAFAA /* RenderMathMLMenclose.cpp */; };
+                3717833A1AACDCF7000910E3 /* SecuritySPI.h in Headers */ = {isa = PBXBuildFile; fileRef = 371783391AACDCF7000910E3 /* SecuritySPI.h */; };
 D7E817ECC591003C276D /* extract-localizable-strings.pl in Copy Scripts */ = {isa = PBXBuildFile; fileRef = 3717D7E517ECC3A6003C276D /* extract-localizable-strings.pl */; };
 A67CB11C6C7DB00047B8B /* HyphenationCF.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 371A67CA11C6C7DB00047B8B /* HyphenationCF.cpp */; };
 …
 B5B62131DAA3200F48D02 /* CookiesStrategy.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = CookiesStrategy.h; sourceTree = "<group>"; };
 F984047CEDBE5DDDAFAA /* RenderMathMLMenclose.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; name = RenderMathMLMenclose.cpp; path = rendering/mathml/RenderMathMLMenclose.cpp; sourceTree = SOURCE_ROOT; };
+                371783391AACDCF7000910E3 /* SecuritySPI.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = SecuritySPI.h; sourceTree = "<group>"; };
 D7E517ECC3A6003C276D /* extract-localizable-strings.pl */ = {isa = PBXFileReference; lastKnownFileType = text.script.perl; path = "extract-localizable-strings.pl"; sourceTree = "<group>"; };
 A67CA11C6C7DB00047B8B /* HyphenationCF.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = HyphenationCF.cpp; sourceTree = "<group>"; };
 …
                         isa = PBXGroup;
                         children = (
+                                CD4097FF1A8C855F004C65E9 /* CFNSURLConnectionSPI.h */,
 C5E980F1A02CEFA002DB55F /* CoreTextSPI.h */,
                                 CE12524A1A16C79B00864480 /* DispatchSPI.h */,
 …
                                 CE1252521A1BEC0600864480 /* NSStringSPI.h */,
                                 CE1252541A1BEC0E00864480 /* NSURLDownloadSPI.h */,
-                                CD4097FF1A8C855F004C65E9 /* CFNSURLConnectionSPI.h */,
 EF83819A043AE0052202C /* NSURLFileTypeMappingsSPI.h */,
                                 CE12523C1A1676CD00864480 /* QuartzCoreSPI.h */,
+                                371783391AACDCF7000910E3 /* SecuritySPI.h */,
                                 CEC337AC1A46071F009B8523 /* ServersSPI.h */,
                                 A19D93451A9FEC7200B46C24 /* WebFilterEvaluatorSPI.h */,
 …
                                 E1FE137518402A6700892F13 /* CommonCryptoUtilities.h in Headers */,
 C236111097EE7700EF9F72 /* ComplexTextController.h in Headers */,
+                                3717833A1AACDCF7000910E3 /* SecuritySPI.h in Headers */,
 FE1160E6E1DA700BF6088 /* CompositeAnimation.h in Headers */,
 DDD099E64920056E581 /* CompositeEditCommand.h in Headers */,

trunk/Source/WebCore/platform/network/cf/CertificateInfo.h

r173423	r181317
41	41	CFArrayRef certificateChain() const { return m_certificateChain.get(); }
42	42
	43	WEBCORE_EXPORT bool containsNonRootSHA1SignedCertificate() const;
	44
43	45	#ifndef NDEBUG
44	46	void dump() const;

trunk/Source/WebCore/platform/network/curl/CertificateInfo.h

-              r173465
+              r181317
 #define CertificateInfo_h
+#include "NotImplemented.h"
 namespace WebCore {
 …
     CertificateInfo() { }
+    bool containsNonRootSHA1SignedCertificate() const { notImplemented(); return false; }
 };

trunk/Source/WebCore/platform/network/mac/CertificateInfoMac.mm

-              r173423
+              r181317
 /*
  * Copyright (C) 2010 Apple Inc. All rights reserved.
+ * Copyright (C) 2010, 2015 Apple Inc. All rights reserved.
+ *
  * Redistribution and use in source and binary forms, with or without
 …
 #import "CertificateInfo.h"
+#import "NotImplemented.h"
+#import "SecuritySPI.h"
 namespace WebCore {
+bool CertificateInfo::containsNonRootSHA1SignedCertificate() const
+{
+#if PLATFORM(IOS) && __IPHONE_OS_VERSION_MIN_REQUIRED >= 90000
+    for (CFIndex i = 0, size = CFArrayGetCount(m_certificateChain.get()) - 1; i < size; ++i) {
+        SecCertificateRef certificate = (SecCertificateRef)CFArrayGetValueAtIndex(m_certificateChain.get(), i);
+        if (SecCertificateGetSignatureHashAlgorithm(certificate) == kSecSignatureHashAlgorithmSHA1)
+            return true;
+    }
+    return false;
+#else
+    notImplemented();
+    return false;
+#endif
+}
 #ifndef NDEBUG

trunk/Source/WebCore/platform/network/soup/CertificateInfo.h

-              r160487
+              r181317
 #define CertificateInfo_h
+#include "NotImplemented.h"
 #include <libsoup/soup.h>
 #include <wtf/gobject/GRefPtr.h>
 …
     void setTLSErrors(GTlsCertificateFlags tlsErrors) { m_tlsErrors = tlsErrors; }
+    bool containsNonRootSHA1SignedCertificate() const { notImplemented(); return false; }
 private:
     GRefPtr<GTlsCertificate> m_certificate;

trunk/Source/WebKit2/ChangeLog

-              r181272
+              r181317
+-03-10  Dan Bernstein  <mitz@apple.com>
+        WebKit2 part of <rdar://problem/20086546> [Cocoa] Add an option to treat certificate chains with SHA1-signed certificates as insecure
+        https://bugs.webkit.org/show_bug.cgi?id=142461
+        Reviewed by Sam Weinig.
+        * UIProcess/API/Cocoa/WKWebView.mm:
+        (-[WKWebView initWithFrame:configuration:]): Initialize
+        webPageConfiguration.treatsSHA1SignedCertificatesAsInsecure from the WKWebViewConfiguration.
+        * UIProcess/API/Cocoa/WKWebViewConfiguration.mm:
+        Added _treatsSHA1SignedCertificatesAsInsecure ivar.
+        (-[WKWebViewConfiguration copyWithZone:]): Copy _treatsSHA1SignedCertificatesAsInsecure.
+        (-[WKWebViewConfiguration _treatsSHA1SignedCertificatesAsInsecure]): Added this getter.
+        (-[WKWebViewConfiguration _setTreatsSHA1SignedCertificatesAsInsecure:]): Added this setter.
+        * UIProcess/API/Cocoa/WKWebViewConfigurationPrivate.h: Declared new
+        _treatsSHA1SignedCertificatesAsInsecure property.
+        * UIProcess/PageLoadState.cpp:
+        (WebKit::PageLoadState::didCommitLoad): Use new hasInsecureContent parameter to initialize
+        hasInsecureContent parameter in the uncommitted state.
+        * UIProcess/PageLoadState.h:
+        * UIProcess/WebPageProxy.cpp:
+        (WebKit::WebPageProxy::WebPageProxy): Initialize new m_treatsSHA1CertificatesAsInsecure
+        member variable from the WebPageConfiguration.
+        (WebKit::WebPageProxy::didCommitLoadForFrame): Pass true for the new hasInsecureContent to
+        PageLoadState::didCommitLoad if we are treating SHA1-signed certificates as insecure and
+        the certificate info contains a non-root SHA1-signed certificate.
+        * UIProcess/WebPageProxy.h: Added m_treatsSHA1CertificatesAsInsecure member variable.
 -03-09  Geoffrey Garen  <ggaren@apple.com>

trunk/Source/WebKit2/UIProcess/API/Cocoa/WKWebView.mm

-              r180539
+              r181317
 /*
  * Copyright (C) 2014 Apple Inc. All rights reserved.
+ * Copyright (C) 2014, 2015 Apple Inc. All rights reserved.
+ *
  * Redistribution and use in source and binary forms, with or without
 …
     webPageConfiguration.websiteDataStore = &[_configuration _websiteDataStore]->_websiteDataStore->websiteDataStore();
     webPageConfiguration.sessionID = webPageConfiguration.websiteDataStore->sessionID();
+    webPageConfiguration.treatsSHA1SignedCertificatesAsInsecure = [_configuration _treatsSHA1SignedCertificatesAsInsecure];
     RefPtr<WebKit::WebPageGroup> pageGroup;

trunk/Source/WebKit2/UIProcess/API/Cocoa/WKWebViewConfiguration.mm

-              r178975
+              r181317
 /*
  * Copyright (C) 2014 Apple Inc. All rights reserved.
+ * Copyright (C) 2014, 2015 Apple Inc. All rights reserved.
+ *
  * Redistribution and use in source and binary forms, with or without
 …
     WebKit::WeakObjCPtr<WKWebView> _relatedWebView;
     WebKit::WeakObjCPtr<WKWebView> _alternateWebViewForNavigationGestures;
+    BOOL _treatsSHA1SignedCertificatesAsInsecure;
     RetainPtr<NSString> _groupIdentifier;
     LazyInitialized<RetainPtr<NSString>> _applicationNameForUserAgent;
 …
     configuration._relatedWebView = _relatedWebView.get().get();
     configuration._alternateWebViewForNavigationGestures = _alternateWebViewForNavigationGestures.get().get();
+    configuration->_treatsSHA1SignedCertificatesAsInsecure = _treatsSHA1SignedCertificatesAsInsecure;
 #if PLATFORM(IOS)
     configuration._contentProviderRegistry = self._contentProviderRegistry;
 …
+}
+- (BOOL)_treatsSHA1SignedCertificatesAsInsecure
+{
+    return _treatsSHA1SignedCertificatesAsInsecure;
+}
+- (void)_setTreatsSHA1SignedCertificatesAsInsecure:(BOOL)insecure
+{
+    _treatsSHA1SignedCertificatesAsInsecure = insecure;
+}
 #if PLATFORM(IOS)
 - (BOOL)_allowsAlternateFullscreen

trunk/Source/WebKit2/UIProcess/API/Cocoa/WKWebViewConfigurationPrivate.h

-              r178975
+              r181317
 /*
  * Copyright (C) 2014 Apple Inc. All rights reserved.
+ * Copyright (C) 2014, 2015 Apple Inc. All rights reserved.
+ *
  * Redistribution and use in source and binary forms, with or without
 …
 @property (nonatomic, weak, setter=_setAlternateWebViewForNavigationGestures:) WKWebView *_alternateWebViewForNavigationGestures;
+@property (nonatomic, setter=_setTreatsSHA1SignedCertificatesAsInsecure:) BOOL _treatsSHA1SignedCertificatesAsInsecure WK_AVAILABLE(NA, WK_IOS_TBA);
 #if TARGET_OS_IPHONE
 @property (nonatomic, setter=_setAllowsAlternateFullscreen:) BOOL _allowsAlternateFullscreen WK_AVAILABLE(NA, WK_IOS_TBA);

trunk/Source/WebKit2/UIProcess/PageLoadState.cpp

-              r179599
+              r181317
 /*
  * Copyright (C) 2013 Apple Inc. All rights reserved.
+ * Copyright (C) 2013-2015 Apple Inc. All rights reserved.
+ *
  * Redistribution and use in source and binary forms, with or without
 …
+}
 void PageLoadState::didCommitLoad(const Transaction::Token& token)
+void PageLoadState::didCommitLoad(const Transaction::Token& token, bool hasInsecureContent)
+{
     ASSERT_UNUSED(token, &token.m_pageLoadState == this);
 …
     m_uncommittedState.state = State::Committed;
     m_uncommittedState.hasInsecureContent = false;
+    m_uncommittedState.hasInsecureContent = hasInsecureContent;
     m_uncommittedState.url = m_uncommittedState.provisionalURL;

trunk/Source/WebKit2/UIProcess/PageLoadState.h

-              r170776
+              r181317
 /*
  * Copyright (C) 2013 Apple Inc. All rights reserved.
+ * Copyright (C) 2013-2015 Apple Inc. All rights reserved.
+ *
  * Redistribution and use in source and binary forms, with or without
 …
     void didFailProvisionalLoad(const Transaction::Token&);
     void didCommitLoad(const Transaction::Token&);
+    void didCommitLoad(const Transaction::Token&, bool hasInsecureContent);
     void didFinishLoad(const Transaction::Token&);
     void didFailLoad(const Transaction::Token&);

trunk/Source/WebKit2/UIProcess/WebPageProxy.cpp

-              r181023
+              r181317
     , m_mainFrame(nullptr)
     , m_userAgent(standardUserAgent())
+    , m_treatsSHA1CertificatesAsInsecure(configuration.treatsSHA1SignedCertificatesAsInsecure)
 #if PLATFORM(IOS)
     , m_hasReceivedLayerTreeTransactionAfterDidCommitLoad(true)
 …
     auto transaction = m_pageLoadState.transaction();
+    if (frame->isMainFrame())
+        m_pageLoadState.didCommitLoad(transaction);
+    if (frame->isMainFrame()) {
+        bool hasInsecureCertificateChain = m_treatsSHA1CertificatesAsInsecure && certificateInfo.containsNonRootSHA1SignedCertificate();
+        m_pageLoadState.didCommitLoad(transaction, hasInsecureCertificateChain);
+    }
 #if USE(APPKIT)

trunk/Source/WebKit2/UIProcess/WebPageProxy.h

-              r181023
+              r181317
     WebPageProxy* relatedPage = nullptr;
+    bool treatsSHA1SignedCertificatesAsInsecure = false;
     WebPreferencesStore::ValueMap preferenceValues;
 };
 …
     String m_customTextEncodingName;
+    bool m_treatsSHA1CertificatesAsInsecure;
     RefPtr<WebInspectorProxy> m_inspector;

Note: See TracChangeset for help on using the changeset viewer.

Context Navigation

Changeset 181317 in webkit

Legend:

Download in other formats: