Chromium Code Reviews Chromium Code Reviews
Issue 27500004:
Listen for new system certificates. (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src| Index: net/socket/client_socket_pool_manager_impl.cc |
| diff --git a/net/socket/client_socket_pool_manager_impl.cc b/net/socket/client_socket_pool_manager_impl.cc |
| index b557874d011161845f4d672f331ac6425c07daf4..066e27d452b943dd173c68858d103f067a50b350 100644 |
| --- a/net/socket/client_socket_pool_manager_impl.cc |
| +++ b/net/socket/client_socket_pool_manager_impl.cc |
| @@ -389,4 +389,18 @@ void ClientSocketPoolManagerImpl::OnCertTrustChanged( |
| FlushSocketPoolsWithError(ERR_NETWORK_CHANGED); |
| } |
| +void ClientSocketPoolManagerImpl::OnDatabaseUpdated() { |
| + // We should flush the socket pools if we removed trust from a |
| + // cert, because a previously trusted server may have become |
| + // untrusted. |
| + // |
| + // We should not flush the socket pools if we added trust to a |
| + // cert. |
| + // |
| + // Since the OnDatabaseUpdated method doesn't tell us what |
| + // kind of trust change it is, we have to flush the socket |
| + // pools to be safe. |
| + FlushSocketPoolsWithError(ERR_NETWORK_CHANGED); |
|
wtc
2013/10/16 15:37:34
We probably should just have OnCertAdded and OnCer
qsr
2013/10/16 16:02:09
I did not do this because I'm not sure to understa
Ryan Sleevi
2013/10/16 17:40:52
OnCertAdded == OnClientCertAdded.
The flushing on
|
| +} |
| + |
| } // namespace net |
