Throwing serverCertificateHashes related errors #489
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -702,7 +702,7 @@ agent MUST run the following steps: | |
| 1. Let |serverCertificateHashes| be {{WebTransport/constructor(url, options)/options}}'s | ||
| {{WebTransportOptions/serverCertificateHashes}} if it exists, and null otherwise. | ||
| 1. If |dedicated| is false and |serverCertificateHashes| is non-null, then [=throw=] a | ||
| {{NotSupportedError}} exception. | ||
| 1. Let |requireUnreliable| be {{WebTransport/constructor(url, options)/options}}'s | ||
| {{WebTransportOptions/requireUnreliable}}. | ||
| 1. Let |congestionControl| be {{WebTransport/constructor(url, options)/options}}'s | ||
|
|
@@ -758,15 +758,16 @@ agent MUST run the following steps: | |
| [=ReadableStream/set up/pullAlgorithm=] set to |pullUnidirectionalStreamAlgorithm|, and | ||
| [=ReadableStream/set up/highWaterMark=] set to 0. | ||
| 1. [=Initialize WebTransport over HTTP=] with |transport|, |parsedURL|, |dedicated|, | ||
| |requireUnreliable|, |congestionControl|, and |serverCertificateHashes|. | ||
| 1. Return |transport|. | ||
|
|
||
| </div> | ||
|
|
||
| <div algorithm> | ||
| To <dfn>initialize WebTransport over HTTP</dfn>, given a {{WebTransport}} object | ||
| <var>transport</var>, a [=URL record=] |url|, a boolean |dedicated|, a boolean | ||
| |http3Only|, a {{WebTransportCongestionControl}} |congestionControl|, and a | ||
| sequence<{{WebTransportHash}}> |serverCertificateHashes|, run these steps. | ||
|
|
||
| 1. Let |client| be |transport|'s [=relevant settings object=]. | ||
| 1. Let |origin| be |client|'s [=environment settings object/origin=]. | ||
|
|
@@ -790,7 +791,12 @@ To <dfn>initialize WebTransport over HTTP</dfn>, given a {{WebTransport}} object | |
| 1. Let |connection| be the result of [=obtain a connection|obtaining a connection=] with | ||
| |networkPartitionKey|, |url|, false, |newConnection|, and |http3Only|. If the user agent | ||
| supports more than one congestion control algorithm, choose one appropriate for | ||
| |congestionControl| for sending of data on this |connection|. When obtaining a connection, if | ||
| |serverCertificateHashes| is specified, instead of using the default certificate verification | ||
| algorithm, consider the certificate valid if it meets the [=custom certificate | ||
| requirements=] and if [=verify a certificate hash|verifying the certificate hash=] against | ||
| |serverCertificateHashes| returns true. If either condition is not met, let |connection| be | ||
| failure. | ||
| 1. If |connection| is failure, then abort the remaining steps and [=queue a network task=] with | ||
|
There was a problem hiding this comment. The phrasing here is a bit odd. Maybe There was a problem hiding this comment. "Obtain a connection" actually returns "failure" if the connection fails, which is what this step is checking. There was a problem hiding this comment. Ah, I see what you are doing. This is like a Rust The problem I have is that - while this fine if you are writing code, this is terribly stilted prose. It reads as a grammatical error. There was a problem hiding this comment. Yes, while I agree that it sounds odd, I think this is a fairly standard pattern throughout the spec ecosystem. For example, step 2 of https://url.spec.whatwg.org/#concept-url-parser and step 2 of https://encoding.spec.whatwg.org/#dom-textdecoder have similar text saying "if x is failure". There's also an open issue about clarifying what "failure" is at whatwg/infra#545, so perhaps when that is fixed, we can update it in the WebTransport spec. |
||
| |transport| to run these steps: | ||
| 1. If |transport|.{{[[State]]}} is `"closed"` or `"failed"`, then abort these steps. | ||
|
|
@@ -1175,22 +1181,22 @@ that determine how WebTransport connection is established and used. | |
| </div> | ||
|
|
||
| <div algorithm> | ||
| To <dfn>compute a certificate hash</dfn>, given a |certificate|, perform the following steps: | ||
| 1. Let |cert| be |certificate|, represented as a DER encoding of | ||
| Certificate message defined in [[!RFC5280]]. | ||
| 1. Compute the SHA-256 hash of |cert| and return the computed value. | ||
|
|
||
| </div> | ||
|
|
||
| <div algorithm> | ||
| To <dfn>verify a certificate hash</dfn>, given a |certificate| and an array of hashes |hashes|, | ||
| perform the following steps: | ||
| 1. Let |referenceHash| be the result of [=computing a certificate hash=] with |certificate|. | ||
| 1. For every hash |hash| in |hashes|: | ||
| 1. If |hash|.{{WebTransportHash/value}} is not null and |hash|.{{WebTransportHash/algorithm}} | ||
| is an [=ASCII case-insensitive=] match with "sha-256": | ||
| 1. Let |hashValue| be the byte sequence which |hash|.{{WebTransportHash/value}} represents. | ||
| 1. If |hashValue| is equal to |referenceHash|, return true. | ||
| 1. Return false. | ||
|
|
||
| </div> | ||
|
|
||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This bit about
serverCertificateHashesmight be better as a substep:There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I actually initially had this as substeps in earlier commits, but based on #489 (comment), I changed it to be part of the same step. Since these steps are a modification of the "obtain a connection" step in Fetch, I think we should keep this part of the same step so as to make it clear that these checks happen during the "obtain a connection" step, as opposed to after.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I don't think that conceptualizing these as part of "obtain a connection" helps. It is cleaner if you regard these as checks that occur after a connection was successfully obtained.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I slightly prefer keeping it part of the same step, but either seems workable, so I'll update it to whatever seems best to you and @vasilvv.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I'm not sure I understand why this would be a separate check, since presumably you would want to perform it at the place you would normally perform certificate validation (as soon as you receive a certificate), which is in the middle of obtaining a connection (e.g. there might be steps after, like sending H/3 settings; also from error handling perspective, that means that a failure against certificate hash list is equivalent to failure against Web PKI in terms of how it's reported to the application).
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It does seem like it ends up in a different subsystem and is something that is done during connection configuration at setup.
In other words, in code, this isn't something that we check afterwards, but rather something that we configure as part of setting up a connection object and starting it. We don't really want to connect somewhere and then decide "nevermind" because we didn't like the certificate presented during the handshake.