Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(11)

Issue 46094: Fix our handling of mixed SSL / non-SSL content.... (Closed)

Created:
11 years, 9 months ago by abarth-chromium
Modified:
9 years, 7 months ago
Reviewers:
jcampan
CC:
chromium-reviews_googlegroups.com
Visibility:
Public.

Description

Fix our handling of mixed SSL / non-SSL content. Now we keep state per origin and propagate the state to the correct security indicators, taking origin propagation into account. BUG=8706

Patch Set 1 #

Patch Set 2 : '' #

Patch Set 3 : '' #

Total comments: 8
Unified diffs Side-by-side diffs Delta from patch set Stats (+700 lines, -600 lines) Patch
M chrome/browser/browser.cc View 3 chunks +3 lines, -3 lines 0 comments Download
M chrome/browser/load_from_memory_cache_details.h View 1 chunk +15 lines, -4 lines 0 comments Download
M chrome/browser/renderer_host/render_view_host.h View 1 chunk +2 lines, -0 lines 0 comments Download
M chrome/browser/renderer_host/render_view_host.cc View 1 chunk +4 lines, -1 line 0 comments Download
M chrome/browser/renderer_host/render_view_host_delegate.h View 1 chunk +4 lines, -1 line 0 comments Download
M chrome/browser/renderer_host/resource_dispatcher_host.h View 5 chunks +10 lines, -10 lines 0 comments Download
M chrome/browser/renderer_host/resource_dispatcher_host.cc View 1 7 chunks +16 lines, -15 lines 0 comments Download
M chrome/browser/renderer_host/resource_request_details.h View 3 chunks +7 lines, -0 lines 0 comments Download
M chrome/browser/ssl/ssl_blocking_page.cc View 1 chunk +1 line, -1 line 0 comments Download
M chrome/browser/ssl/ssl_host_state.h View 1 1 chunk +16 lines, -9 lines 0 comments Download
M chrome/browser/ssl/ssl_host_state.cc View 1 3 chunks +39 lines, -5 lines 0 comments Download
M chrome/browser/ssl/ssl_manager.h View 1 13 chunks +104 lines, -50 lines 0 comments Download
M chrome/browser/ssl/ssl_manager.cc View 1 14 chunks +136 lines, -82 lines 2 comments Download
M chrome/browser/ssl/ssl_policy.h View 1 2 chunks +22 lines, -26 lines 0 comments Download
M chrome/browser/ssl/ssl_policy.cc View 1 5 chunks +179 lines, -322 lines 2 comments Download
M chrome/browser/tab_contents/web_contents.h View 1 chunk +5 lines, -2 lines 0 comments Download
M chrome/browser/tab_contents/web_contents.cc View 2 chunks +4 lines, -1 line 0 comments Download
M chrome/common/notification_type.h View 1 chunk +17 lines, -6 lines 0 comments Download
M chrome/common/render_messages.h View 5 chunks +16 lines, -8 lines 0 comments Download
M chrome/common/render_messages_internal.h View 1 chunk +3 lines, -1 line 0 comments Download
M chrome/common/resource_dispatcher.h View 3 chunks +4 lines, -7 lines 0 comments Download
M chrome/common/resource_dispatcher.cc View 6 chunks +16 lines, -15 lines 0 comments Download
M chrome/plugin/chrome_plugin_host.cc View 1 chunk +2 lines, -1 line 0 comments Download
M chrome/renderer/render_view.h View 1 chunk +7 lines, -4 lines 0 comments Download
M chrome/renderer/render_view.cc View 1 chunk +9 lines, -5 lines 0 comments Download
M chrome/renderer/renderer_glue.cc View 2 chunks +7 lines, -5 lines 0 comments Download
M net/base/x509_certificate.h View 1 chunk +6 lines, -0 lines 2 comments Download
M net/base/x509_certificate.cc View 1 chunk +8 lines, -0 lines 0 comments Download
M webkit/glue/glue_util.h View 2 chunks +4 lines, -0 lines 0 comments Download
M webkit/glue/glue_util.cc View 2 chunks +9 lines, -0 lines 0 comments Download
M webkit/glue/resource_handle_impl.cc View 3 chunks +8 lines, -6 lines 0 comments Download
M webkit/glue/resource_loader_bridge.h View 2 chunks +3 lines, -5 lines 0 comments Download
M webkit/glue/webframeloaderclient_impl.cc View 1 chunk +7 lines, -1 line 0 comments Download
M webkit/glue/webview_delegate.h View 1 chunk +7 lines, -4 lines 2 comments Download

Messages

Total messages: 2 (0 generated)
jcampan
Great change! I like the clean-up of the SSLPolicy. Few comments. http://codereview.chromium.org/46094/diff/2001/2002 File chrome/browser/ssl/ssl_manager.cc (right): ...
11 years, 9 months ago (2009-03-16 18:43:54 UTC) #1
abarth-chromium
11 years, 9 months ago (2009-03-16 21:34:21 UTC) #2
Thanks the comments!  I'm going to try to break this change up in to some
smaller pieces to it's easier to review.

http://codereview.chromium.org/46094/diff/2001/2002
File chrome/browser/ssl/ssl_manager.cc (right):

http://codereview.chromium.org/46094/diff/2001/2002#newcode493
Line 493: SSLPolicy::IsMixedContent(request->url(),
Yes.  :)

http://codereview.chromium.org/46094/diff/2001/2005
File chrome/browser/ssl/ssl_policy.cc (right):

http://codereview.chromium.org/46094/diff/2001/2005#newcode119
Line 119: SECURITY_STYLE_AUTHENTICATED : SECURITY_STYLE_UNAUTHENTICATED;
Fixed.

http://codereview.chromium.org/46094/diff/2001/2024
File net/base/x509_certificate.h (right):

http://codereview.chromium.org/46094/diff/2001/2024#newcode116
Line 116: // Returns true if this policy has allowed at least one certificate.
Done.

http://codereview.chromium.org/46094/diff/2001/2022
File webkit/glue/webview_delegate.h (right):

http://codereview.chromium.org/46094/diff/2001/2022#newcode353
Line 353: const std::string& frame_origin,
I'm not sure that makes sense.  It's not really a property of the response. 
It's a property of the context that's receiving the response.  Maybe we should
add it to WebFrame?

Powered by Google App Engine
This is Rietveld 408576698