content/browser/ssl/ssl_policy.cc - Issue 7976036: net: make HSTS hosts use the normal SSL interstitials

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: content/browser/ssl/ssl_policy.cc

Issue 7976036: net: make HSTS hosts use the normal SSL interstitials (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: ... Created 9 years, 3 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

Index: content/browser/ssl/ssl_policy.cc

diff --git a/content/browser/ssl/ssl_policy.cc b/content/browser/ssl/ssl_policy.cc

index 1d7c981b6e62b5fc49b4d739a8366973be5b51df..b66b47c7ba1a719870206c406a0e97ff56470930 100644

--- a/content/browser/ssl/ssl_policy.cc

+++ b/content/browser/ssl/ssl_policy.cc

@@ -195,6 +195,11 @@ void SSLPolicy::OnCertErrorInternal(SSLCertErrorHandler* handler,

return;

}

+ // For HSTS hosts all certificate errors are fatal (the user cannot bypass).

+ // This is indicated by the |must_be_fatal()| flag.

+ if (handler->must_be_fatal())

+ overridable = false;

wtc 2011/09/23 00:04:51 I think it is better to move this code to the SSLP

Callback2<SSLCertErrorHandler*, bool>::Type* callback =

NewCallback(this, &SSLPolicy::OnAllowCertificate);

content::GetContentClient()->browser()->AllowCertificateError(