Google Git
Sign in
chromium / chromium / src / e307313959f1bd16db2ec150422e834e37323ea7
commite307313959f1bd16db2ec150422e834e37323ea7[log] [tgz]
authorDavid Benjamin <davidben@chromium.org>Tue Apr 30 00:53:13 2019
committerDavid Benjamin <davidben@chromium.org>Tue Apr 30 00:53:13 2019
tree1abfbcf0034615c179e5cded4869eeae5007bbe5
parent7606d59db96e6da6047afa1a603349dce3e02f64 [diff]
Merge to M74: Fix client certificate requests atop HTTP auth proxies.

(Done by hand. Minor merge conflict to tests in
http_network_transaction_unittest.cc, but fix had to be recreated as
ClientSocketPoolBaseHelper was not inlined at the time, and
SetAdditionalErrorState was still GetAdditionalErrorState in the other
direction.)

https://chromium-review.googlesource.com/c/chromium/src/+/1481900
reworked HTTP proxy auth to use pre-bound ConnectJob/Request pairs. In
doing so, it missed a handle->SetAdditionalErrorState(job) call (then
job->GetAdditionalErrorState(handle)). This call is used to pass the
SSLCertRequestInfo up the stack.

This meant that client-cert-requesting origin servers, combined with
HTTP-auth-using proxies would cause SSLCertRequestInfo to be null.
Depending on whether //net or //content was the first to use the
SSLCertRequestInfo, this would either crash the network service or the
browser process, though the latter is only possible due to a bug in the
network service (https://crbug.com/956304).

Fix this by adding the missing call. That requires tweaking
FindAndRemoveBoundRequestForConnectJob slightly so the ConnectJob isn't
destroyed so early.

(cherry picked from commit 2eb827f477c8f4b22d6c85601edefd06c3926ae5)

Bug: 946406
Change-Id: Ic7cab7d508cc680c114fe3b4cc0dc2d1d34487ce
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/1584745
Commit-Queue: David Benjamin <davidben@chromium.org>
Auto-Submit: David Benjamin <davidben@chromium.org>
Reviewed-by: Matt Menke <mmenke@chromium.org>
Cr-Original-Commit-Position: refs/heads/master@{#654932}
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/1589249
Reviewed-by: David Benjamin <davidben@chromium.org>
Cr-Commit-Position: refs/branch-heads/3729@{#953}
Cr-Branched-From: d4a8972e30b604f090aeda5dfff68386ae656267-refs/heads/master@{#638880}
5 files changed
tree: 1abfbcf0034615c179e5cded4869eeae5007bbe5
  1. .clang-format
  2. .eslintrc.js
  3. .git-blame-ignore-revs
  4. .gitattributes
  5. .gitignore
  6. .gn
  7. .vpython
  8. AUTHORS
  9. BUILD.gn
  10. CODE_OF_CONDUCT.md
  11. DEPS
  12. ENG_REVIEW_OWNERS
  13. LICENSE
  14. LICENSE.chromium_os
  15. OWNERS
  16. PRESUBMIT.py
  17. PRESUBMIT_test.py
  18. PRESUBMIT_test_mocks.py
  19. README.md
  20. WATCHLISTS
  21. android_webview/
  22. apps/
  23. ash/
  24. base/
  25. build/
  26. build_overrides/
  27. buildtools/
  28. cc/
  29. chrome/
  30. chrome_elf/
  31. chromecast/
  32. chromeos/
  33. cloud_print/
  34. codereview.settings
  35. components/
  36. content/
  37. courgette/
  38. crypto/
  39. dbus/
  40. device/
  41. docs/
  42. extensions/
  43. fuchsia/
  44. gin/
  45. google_apis/
  46. google_update/
  47. gpu/
  48. headless/
  49. infra/
  50. ios/
  51. ipc/
  52. jingle/
  53. media/
  54. mojo/
  55. native_client_sdk/
  56. net/
  57. pdf/
  58. ppapi/
  59. printing/
  60. remoting/
  61. rlz/
  62. sandbox/
  63. services/
  64. skia/
  65. sql/
  66. storage/
  67. styleguide/
  68. testing/
  69. third_party/
  70. tools/
  71. ui/
  72. url/
README.md

Logo Chromium

Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web.

The project's web site is https://www.chromium.org.

Documentation in the source is rooted in docs/README.md.

Learn how to Get Around the Chromium Source Code Directory Structure .