about summary refs log tree commit diff stats
path: root/marco.c
diff options
context:
space:
mode:
authorJosh Rickmar <jrick@devio.us>2013-05-14 10:20:01 -0400
committerJosh Rickmar <jrick@devio.us>2013-05-14 10:20:01 -0400
commit33e11b2d4e49691eead713c7488d12d4e9633729 (patch)
tree70cd411c9eef7237ca8325adbc18ad49c764124c /marco.c
parentcb6a647bd344c17777df561724fca2af62d5ad36 (diff)
downloadxombrero-33e11b2d4e49691eead713c7488d12d4e9633729.tar.gz
Use libsoup exclusively for retrieving remote certs
This removes the side channel for getting and verifying remote HTTPS
certificates.  As the http_proxy settings only affected messages
downloaded as part of the webkit soup session, this side channel would
create its own TCP connections which sidesteped the proxy, leaving a
privacy leak.

For simplicity, the remote certificate chain is now saved in pem
format as part of the tab structure, and converted to a gnutls
certificate chain when needed for viewing and displaying certs.

Most of the initial code done by dhill@ and marco@
Diffstat (limited to 'marco.c')
0 files changed, 0 insertions, 0 deletions
 

generated by cgit-pink 1.4.1-2-gfad0 (git 2.36.2.497.gbbea4dcf42) at 2024-11-25 14:51:18 +0000


 


e.cc?h=hlt&id=79eef536f5fc2c427e3601e0dcca705aad1d7023'>^



c4e143d6 ^


a17f9186 ^

















1f7e3c05 ^

08cf048f ^

a17f9186 ^





6808ff7d ^


a17f9186 ^


6808ff7d ^



08cf048f ^

6808ff7d ^

1f7e3c05 ^

6808ff7d ^





a17f9186 ^

6808ff7d ^


a17f9186 ^

6808ff7d ^


9cfd925a ^

1ead3562 ^

15f79a66 ^

6808ff7d ^

15f79a66 ^





acc4792d ^



1
2
3
4
5

6

7

8

9
10

11

12
13
14

15
16

17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33

34

35

36
37
38
39
40

41
42

43
44

45
46
47

48

49

50

51
52
53
54
55

56

57
58

59

60
61

62

63

64

65

66
67
68
69
70

71