| Index: net/cert/ct_known_logs_static-inc.h
|
| diff --git a/net/cert/ct_known_logs_static-inc.h b/net/cert/ct_known_logs_static-inc.h
|
| index f3c5592fee0e70c7becbce86574d3a00807f84e9..5b348c1462037f4a43e290e80949d5522e2f4ec6 100644
|
| --- a/net/cert/ct_known_logs_static-inc.h
|
| +++ b/net/cert/ct_known_logs_static-inc.h
|
| @@ -3,12 +3,19 @@
|
| // found in the LICENSE file.
|
|
|
| struct CTLogInfo {
|
| + // The DER-encoded SubjectPublicKeyInfo for the log.
|
| const char* const log_key;
|
| + // The length, in bytes, of |log_key|.
|
| const size_t log_key_length;
|
| + // The user-friendly log name.
|
| + // Note: This will not be translated.
|
| const char* const log_name;
|
| + // The API endpoint for the log.
|
| + // Note: Trailing slashes should be included.
|
| const char* const log_url;
|
| };
|
|
|
| +// The set of all presently-qualifying CT logs.
|
| const CTLogInfo kCTLogList[] = {
|
| {"\x30\x59\x30\x13\x06\x07\x2a\x86\x48\xce\x3d\x02\x01\x06\x08\x2a\x86"
|
| "\x48\xce\x3d\x03\x01\x07\x03\x42\x00\x04\x7d\xa8\x4b\x12\x29\x80\xa3"
|
| @@ -39,13 +46,6 @@ const CTLogInfo kCTLogList[] = {
|
| "\x77\x2d\x05\xc2\x40\x7a",
|
| 91, "Google 'Rocketeer' log", "https://ct.googleapis.com/rocketeer/"},
|
| {"\x30\x59\x30\x13\x06\x07\x2a\x86\x48\xce\x3d\x02\x01\x06\x08\x2a\x86"
|
| - "\x48\xce\x3d\x03\x01\x07\x03\x42\x00\x04\x0b\x23\xcb\x85\x62\x98\x61"
|
| - "\x48\x04\x73\xeb\x54\x5d\xf3\xd0\x07\x8c\x2d\x19\x2d\x8c\x36\xf5\xeb"
|
| - "\x8f\x01\x42\x0a\x7c\x98\x26\x27\xc1\xb5\xdd\x92\x93\xb0\xae\xf8\x9b"
|
| - "\x3d\x0c\xd8\x4c\x4e\x1d\xf9\x15\xfb\x47\x68\x7b\xba\x66\xb7\x25\x9c"
|
| - "\xd0\x4a\xc2\x66\xdb\x48",
|
| - 91, "Certly.IO log", "https://log.certly.io/"},
|
| - {"\x30\x59\x30\x13\x06\x07\x2a\x86\x48\xce\x3d\x02\x01\x06\x08\x2a\x86"
|
| "\x48\xce\x3d\x03\x01\x07\x03\x42\x00\x04\x27\x64\x39\x0c\x2d\xdc\x50"
|
| "\x18\xf8\x21\x00\xa2\x0e\xed\x2c\xea\x3e\x75\xba\x9f\x93\x64\x09\x00"
|
| "\x11\xc4\x11\x17\xab\x5c\xcf\x0f\x74\xac\xb5\x97\x90\x93\x00\x5b\xb8"
|
| @@ -86,6 +86,35 @@ const CTLogInfo kCTLogList[] = {
|
| "\xa6\xf8\xce\xd2\x18\x4d",
|
| 91, "Symantec 'Vega' log", "https://vega.ws.symantec.com/"}};
|
|
|
| +// Information related to previously-qualified, but now disqualified, CT
|
| +// logs.
|
| +struct DisqualifiedCTLogInfo {
|
| + // The ID of the log (the SHA-256 hash of |log_info.log_key|.
|
| + const char log_id[33];
|
| +
|
| + const CTLogInfo log_info;
|
| +
|
| + // The internal base::Time() serialization of when the log was disqualified.
|
| + // SCTs embedded in pre-certificates after this date should not count
|
| + // towards any uniqueness/freshness requirements.
|
| + const int64_t disqualification_date;
|
| +};
|
| +
|
| +// The set of all disqualified logs, sorted by |log_id|.
|
| +const DisqualifiedCTLogInfo kDisqualifiedCTLogList[] = {{
|
| + "\xcd\xb5\x17\x9b\x7f\xc1\xc0\x46\xfe\xea\x31\x13\x6a\x3f\x8f\x00\x2e"
|
| + "\x61\x82\xfa\xf8\x89\x6f\xec\xc8\xb2\xf5\xb5\xab\x60\x49\x00",
|
| + {"\x30\x59\x30\x13\x06\x07\x2a\x86\x48\xce\x3d\x02\x01\x06\x08\x2a\x86"
|
| + "\x48\xce\x3d\x03\x01\x07\x03\x42\x00\x04\x0b\x23\xcb\x85\x62\x98\x61"
|
| + "\x48\x04\x73\xeb\x54\x5d\xf3\xd0\x07\x8c\x2d\x19\x2d\x8c\x36\xf5\xeb"
|
| + "\x8f\x01\x42\x0a\x7c\x98\x26\x27\xc1\xb5\xdd\x92\x93\xb0\xae\xf8\x9b"
|
| + "\x3d\x0c\xd8\x4c\x4e\x1d\xf9\x15\xfb\x47\x68\x7b\xba\x66\xb7\x25\x9c"
|
| + "\xd0\x4a\xc2\x66\xdb\x48",
|
| + 91, "Certly.IO log", "https://log.certly.io/"},
|
| + // 2016-04-15 00:00:00 UTC
|
| + INT64_C(13105152000000000),
|
| +}};
|
| +
|
| // The list is sorted.
|
| const char kGoogleLogIDs[][33] = {
|
| "\x68\xf6\x98\xf8\x1f\x64\x82\xbe\x3a\x8c\xee\xb9\x28\x1d\x4c\xfc\x71"
|
|
|
Chromium Code Reviews
Issue 1941273002:
Mark the Certly.io log as disqualified, as of April 15 2016 (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@log_diversity