-
Notifications
You must be signed in to change notification settings - Fork 3.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Segfault when using additional_trust_anchors #5279
Comments
Also crashes on Linux x86_64 (nwjs-sdk-v0.17.3-linux-x64)
|
Tested latest SDK build (0.17.4) but bug is still here. |
This is fixed in git and will be available in the next nightly build. |
reopen since the fix has issue in windows. |
@fancycode would you mind look into this? The patch in net/cert/cert_verify_proc_win.cc is broken with latest Chromium. |
@fancycode I just updated net/cert/cert_verify_proc_win.cc in nw17 branch. Please review: https://github.com/nwjs/chromium.src/blob/nw17/net/cert/cert_verify_proc_win.cc#L1081 And I'm not sure about the usage with your original patch: in windows the certification passed with package.json seems to be compared with the server certificate byte by byte so I have to put the server certification in our test case, while on other platforms using the CA certificate is the correct way... |
Hmm, it's been a long time since I was working on this and I currently don't have a Windows dev environment to test locally. From what I remember, the verification code stopped at the first unknown certificate, which I think was the CA certificate (assuming the server sends the complete certificate chain). This certificate is then compared against the additional trust anchor list. |
fixed in git and will be released with upcoming 0.17.5. |
OS: Windows 10 (x64)
Build: 0.17.0 SDK Win64
When
additional_trust_anchors
is used inpackage.json
app wont start. Starting from terminal gives me Segmentation Fault error. Without this parameter application starts normally.This issue may be somehow related to: #4210
The text was updated successfully, but these errors were encountered: