Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(27)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 115803003: Add a check that we don't send a secure referrer to an insecure URL (Closed)

Created:
7 years ago by jochen (gone - plz use gerrit)
Modified:
7 years ago
Reviewers:
jamesr, mef
CC:
chromium-reviews, cbentzel+watch_chromium.org
Visibility:
Public.

Description

Add a check that we don't send a secure referrer to an insecure URL Unless one of the non-default referrer policies is set, this should never happen. BUG=none R=mef@chromium.org Committed: https://src.chromium.org/viewvc/chrome?view=rev&revision=241876

Patch Set 1 #

Patch Set 2 : updates #

Total comments: 2

Patch Set 3 : updates #

Patch Set 4 : updaets #

Unified diffs Side-by-side diffs Delta from patch set Stats (+12 lines, -0 lines) Patch
M net/url_request/url_request.cc View 1 2 3 2 chunks +12 lines, -0 lines 0 comments Download

Messages

Total messages: 14 (0 generated)
jochen (gone - plz use gerrit)
7 years ago (2013-12-16 10:38:59 UTC) #1
mef
Looks good. FWIW I've run try job with https://codereview.chromium.org/110893003/ and it didn't seem to trigger ...
7 years ago (2013-12-16 16:39:00 UTC) #2
jochen (gone - plz use gerrit)
https://codereview.chromium.org/115803003/diff/20001/net/url_request/url_request.cc File net/url_request/url_request.cc (right): https://codereview.chromium.org/115803003/diff/20001/net/url_request/url_request.cc#newcode692 net/url_request/url_request.cc:692: CLEAR_REFERRER_ON_TRANSITION_FROM_SECURE_TO_INSECURE); On 2013/12/16 16:39:01, mef wrote: > I'd keep ...
7 years ago (2013-12-16 19:25:50 UTC) #3
mef
On 2013/12/16 19:25:50, jochen wrote: > https://codereview.chromium.org/115803003/diff/20001/net/url_request/url_request.cc > File net/url_request/url_request.cc (right): > > https://codereview.chromium.org/115803003/diff/20001/net/url_request/url_request.cc#newcode692 > ...
7 years ago (2013-12-16 19:35:12 UTC) #4
jochen (gone - plz use gerrit)
ptal I moved DumpWithoutCrashing() to base, so I can use it from here. This will ...
7 years ago (2013-12-18 19:10:59 UTC) #5
mef
On 2013/12/18 19:10:59, jochen wrote: > ptal > > I moved DumpWithoutCrashing() to base, so ...
7 years ago (2013-12-18 20:41:41 UTC) #6
jochen (gone - plz use gerrit)
On 2013/12/18 20:41:41, mef wrote: > On 2013/12/18 19:10:59, jochen wrote: > > ptal > ...
7 years ago (2013-12-18 20:46:34 UTC) #7
jochen (gone - plz use gerrit)
PTAL
7 years ago (2013-12-19 08:16:34 UTC) #8
mef
lgtm
7 years ago (2013-12-19 15:41:43 UTC) #9
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-status.appspot.com/cq/jochen@chromium.org/115803003/60001
7 years ago (2013-12-19 15:45:58 UTC) #10
commit-bot: I haz the power
Change committed as 241876
7 years ago (2013-12-19 17:09:24 UTC) #11
jamesr
This is failing on the blink canary for browser_tests:ReferrerPolicyTest.History and content_browsertests:BrowserPluginHostTest.ReloadEmbedder. See http://build.chromium.org/p/chromium.webkit/builders/Win7%20%28dbg%29/builds/12993
7 years ago (2013-12-19 22:04:24 UTC) #12
jamesr
A revert of this CL has been created in https://codereview.chromium.org/106683004/ by jamesr@chromium.org. The reason for ...
7 years ago (2013-12-19 22:05:32 UTC) #13
brianderson
7 years ago (2013-12-19 22:09:25 UTC) #14
Message was sent while issue was closed. 
On 2013/12/19 22:04:24, jamesr wrote:
> This is failing on the blink canary for
browser_tests:ReferrerPolicyTest.History
> and content_browsertests:BrowserPluginHostTest.ReloadEmbedder.  See
> 
>
http://build.chromium.org/p/chromium.webkit/builders/Win7%2520%2528dbg%2529/b...

There weren't any notifications sent out, but this patch has been reverted.

Powered by Google App Engine
This is Rietveld 408576698