Uploaded image for project: 'Core ReactOS'
  1. Core ReactOS
  2. CORE-14350

RAPPS Certificate pinning is broken

    XMLWordPrintable

Details

    Description

      Rapps Certificate 'pinning' is completely broken:

      1. We open a NEW connection to request the certificate
      2. The certificate is checked for ISSUER and SUBJECT INFO
      3. If a field we want to check is not present, we do not care
      4. Wrong types are used, cast to whatever we need

      Each of these points on their own is already enough to make it completely not work,
      and the second point is why we cannot download files with LE certificates.

      Attachments

        Issue Links

          relates to

          Task - A task that needs to be done. CORE-14351 2018-02-17 we broke compatibility to old rapps (we should condense planned compatibility breakers into a short timeframe to limit to a single compat-gap)

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              learn_more Mark Jansen
              learn_more Mark Jansen
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: