Ticket #27220: 0001-Bug-27220-Don-t-verify-signatures-for-tb-tl-and-http.2.patch

File 0001-Bug-27220-Don-t-verify-signatures-for-tb-tl-and-http.2.patch, 996 bytes (added by igt0, 8 months ago)

r=1

  • toolkit/mozapps/extensions/internal/XPIInstall.jsm

    From f145133ca00cc574d37ddfc6912494d18b54815d Mon Sep 17 00:00:00 2001
    From: Igor Oliveira <igt0@torproject.org>
    Date: Mon, 20 Aug 2018 16:33:16 -0300
    Subject: [PATCH] Bug 27220 - Don't verify signature for Tor Button
    
    Tor Browser for Desktop has a similar logic.
    ---
     toolkit/mozapps/extensions/internal/XPIInstall.jsm | 4 ++++
     1 file changed, 4 insertions(+)
    
    diff --git a/toolkit/mozapps/extensions/internal/XPIInstall.jsm b/toolkit/mozapps/extensions/internal/XPIInstall.jsm
    index 659d97616dc6..17fa45514063 100644
    a b function getSignedStatus(aRv, aCert, aAddonID) { 
    10291029}
    10301030
    10311031function shouldVerifySignedState(aAddon) {
     1032  if (aAddon.id === "torbutton@torproject.org") {
     1033    return false;
     1034  }
     1035
    10321036  // Updated system add-ons should always have their signature checked
    10331037  if (aAddon._installLocation.name == KEY_APP_SYSTEM_ADDONS)
    10341038    return true;