Paths

Table of Contentst

Differential D16090

Introduce PhutilHTTPEngineExtension, for flexibly compromising SSL
ClosedPublic
Actions

Authored by epriestley on Jun 9 2016, 6:45 PM.

Tags

None

Referenced Files

	Unknown Object (File)
	Tue, Nov 19, 12:04 AM

	Unknown Object (File)
	Oct 21 2024, 3:06 PM

	Unknown Object (File)
	Oct 17 2024, 3:40 AM

	Unknown Object (File)
	Oct 15 2024, 8:53 AM

	Unknown Object (File)
	Oct 15 2024, 1:19 AM

	Unknown Object (File)
	Sep 26 2024, 3:51 PM

	Unknown Object (File)
	Sep 12 2024, 8:32 AM

	Unknown Object (File)
	Sep 5 2024, 8:40 PM

Subscribers

None

Details

Reviewers

Maniphest Tasks

T10227: Provide an extension point for HTTP behaviors (proxies, SSL trust)

Commits

rPHU01d14978d08e: Introduce PhutilHTTPEngineExtension, for flexibly compromising SSL

Summary

Ref T10227. Currently, we have a weird one-off thing in arc for blindly trusting domains, since this was easier than dealing with all the users using self-signed certificates.

Convert this into a modular extension and extend it to support certificates with bad hostnames (maybe plausibly legitimate when connecting to a machine via different interfaces? I guess?) and proxies.

This is the first of three changes which bring support to all of libphutil, arcanist, and Phabricator.

Test Plan

Defined a "trust authority" extension, saw it trust/not trust authority.
Defined a "proxy" extension, saw requests go through a proxy.
Used --trace, saw proxy in trace.

Diff Detail

Repository

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

epriestley updated this revision to Diff 38712.Jun 9 2016, 6:45 PM

epriestley retitled this revision from to Introduce PhutilHTTPEngineExtension, for flexibly compromising SSL.

epriestley updated this object.

epriestley edited the test plan for this revision. (Show Details)

epriestley added a reviewer: chad.

epriestley added a task: T10227: Provide an extension point for HTTP behaviors (proxies, SSL trust).

epriestley mentioned this in D16091: Use an HTTPEngineExtension to implement "https.blindly-trust-domains" in Arcanist.Jun 9 2016, 6:47 PM

chad accepted this revision.Jun 9 2016, 6:57 PM

chad edited edge metadata.

This revision is now accepted and ready to land.Jun 9 2016, 6:57 PM

Closed by commit rPHU01d14978d08e: Introduce PhutilHTTPEngineExtension, for flexibly compromising SSL (authored by epriestley, committed by epriestley). · Explain WhyJun 9 2016, 7:01 PM

This revision was automatically updated to reflect the committed changes.

epriestley mentioned this in rARCc13e5a629535: Use an HTTPEngineExtension to implement "https.blindly-trust-domains" in….

Revision Contents
Changeset List

Path

Size

src/

__phutil_library_map__.php

2 lines

future/

http/

HTTPSFuture.php

39 lines

PhutilHTTPEngineExtension.php

141 lines

serviceprofiler/

PhutilServiceProfiler.php

15 lines

Diff 38715

src/__phutil_library_map__.php

Loading...

src/future/http/HTTPSFuture.php

Loading...

src/future/http/PhutilHTTPEngineExtension.php

Loading...

src/serviceprofiler/PhutilServiceProfiler.php

Loading...