Security/Features/Application Reputation Design Doc: Difference between revisions

(Created page with "== Goal == Document application reputation implementation decisions so that other people than the author can debug it. == Background == Google has offered an application repu...")
 
Line 21: Line 21:


== Metadata extraction ==
== Metadata extraction ==
In Firefox, SHA-256 hash computation is performed in BackgroundFileSaver via DigestOutputStream as the temporary file is written to disk [http://mxr.mozilla.org/mozilla-central/source/netwerk/base/src/BackgroundFileSaver.cpp]. After the download is complete, BackgroundFileSaver computes the signature verification of the downloaded file in ExtractSignatureInfo on Windows only [http://mxr.mozilla.org/mozilla-central/ident?i=ExtractSignatureInfo]. Both of these operations happen on a worker thread.
Extraction of the redirect chain will hopefully happen via exposing mRedirectedCacheKeys from HttpBaseChannel.


== Local lists ==
== Local lists ==
Confirmed users
238

edits