Downgrade page security if an inline has invalid certificate.

content/browser/web_contents/web_contents_impl.cc

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "content/browser/web_contents/web_contents_impl.h"
 
 #include <utility>
 
 #include "base/command_line.h"
 #include "base/debug/trace_event.h"
@@ skipping 162 matching lines @@
 
 const char kDotGoogleDotCom[] = ".google.com";
 
 #if defined(OS_ANDROID)
 const char kWebContentsAndroidKey[] = "web_contents_android";
 #endif  // OS_ANDROID
 
 base::LazyInstance<std::vector<WebContentsImpl::CreatedCallback> >
 g_created_callbacks = LAZY_INSTANCE_INITIALIZER;
 
+bool HasInsecureContent(const net::CertStatus status) {
+  return net::IsCertStatusError(status) && !net::IsCertStatusMinorError(status);
+}
+
 static int StartDownload(RenderFrameHost* rfh,
                          const GURL& url,
                          bool is_favicon,
                          uint32_t max_bitmap_size) {
   static int g_next_image_download_id = 0;
   rfh->Send(new ImageMsg_DownloadImage(rfh->GetRoutingID(),
                                        ++g_next_image_download_id,
                                        url,
                                        is_favicon,
                                        max_bitmap_size));
@@ skipping 2040 matching lines @@
   if (browser_plugin_embedder_.get())
     browser_plugin_embedder_->DragSourceEndedAt(client_x, client_y,
         screen_x, screen_y, operation);
   if (GetRenderViewHost())
     GetRenderViewHostImpl()->DragSourceEndedAt(client_x, client_y,
         screen_x, screen_y, operation);
 }
 
 void WebContentsImpl::DidGetResourceResponseStart(
   const ResourceRequestDetails& details) {
+
+  // If inline resource has invalid certificate, set the insecure content flag.
+  // For all the intended notifications to be sent, we need to call
+  // SSLManager::NotifySSLInternalStateChanged() after setting the flag.
+  // In "standard" insecure content scenario (i.e. http resource in https
+  // context) the flag is set and SSLManager gets notified in
+  // OnDidDisplayInsecureContent() (Webkit notification handler).
+  // When, however, the certificate for the inline is invalid, Webkit will not
+  // tell us about it and we need to set the flag & notify SSLManager manually.
+  // Note: the call to SSLManager::NotifySSLInternalStateChanged() will be done
+  // from SSLManager::DidStartResourceResponse().
+  if (details.resource_type != RESOURCE_TYPE_FAVICON &&
+      HasInsecureContent(details.ssl_cert_status))
+    displayed_insecure_content_ = true;
+
   controller_.ssl_manager()->DidStartResourceResponse(details);
 
   FOR_EACH_OBSERVER(WebContentsObserver, observers_,
                     DidGetResourceResponseStart(details));
 
   // TODO(avi): Remove. http://crbug.com/170921
   NotificationService::current()->Notify(
       NOTIFICATION_RESOURCE_RESPONSE_STARTED,
       Source<WebContents>(this),
       Details<const ResourceRequestDetails>(&details));
@@ skipping 368 matching lines @@
   int connection_status = 0;
   SignedCertificateTimestampIDStatusList signed_certificate_timestamp_ids;
   DeserializeSecurityInfo(security_info, &cert_id, &cert_status,
                           &security_bits, &connection_status,
                           &signed_certificate_timestamp_ids);
   // TODO(alcutter,eranm): Pass signed_certificate_timestamp_ids into details
   LoadFromMemoryCacheDetails details(
       url, GetRenderProcessHost()->GetID(), cert_id, cert_status, http_method,
       mime_type, resource_type);
 
+  // See WebContentsImpl::DidGetResourceResponseStart for an explanation of why
+  // displayed_insecure_content_ is set here.
+  if (details.resource_type != RESOURCE_TYPE_FAVICON &&
+      HasInsecureContent(cert_status))
+    displayed_insecure_content_ = true;
+
   controller_.ssl_manager()->DidLoadFromMemoryCache(details);
 
   FOR_EACH_OBSERVER(WebContentsObserver, observers_,
                     DidLoadResourceFromMemoryCache(details));
 
   if (url.is_valid() && url.SchemeIsHTTPOrHTTPS()) {
     scoped_refptr<net::URLRequestContextGetter> request_context(
         resource_type == RESOURCE_TYPE_MEDIA ?
             GetBrowserContext()->GetMediaRequestContextForRenderProcess(
                 GetRenderProcessHost()->GetID()) :
@@ skipping 1605 matching lines @@
   node->render_manager()->ResumeResponseDeferredAtStart();
 }
 
 void WebContentsImpl::SetForceDisableOverscrollContent(bool force_disable) {
   force_disable_overscroll_content_ = force_disable;
   if (view_)
     view_->SetOverscrollControllerEnabled(CanOverscrollContent());
 }
 
 }  // namespace content