net/http/transport_security_state_static.json - Issue 2859983002: Restore HPKP for facebook.com subdomains and preload [www.]messenger.com for HSTS+HPKP.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/http/transport_security_state_static.json

Side-by-side diff isn't available for this file because of its large size.

Issue 2859983002: Restore HPKP for facebook.com subdomains and preload [www.]messenger.com for HSTS+HPKP. (Closed)

Patch Set: Restore HPKP for facebook.com and preload [www.]messenger.com for HSTS+HPKP. Created 3 years, 7 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

Index: net/http/transport_security_state_static.json

diff --git a/net/http/transport_security_state_static.json b/net/http/transport_security_state_static.json

index 66fc020708981e895b1ae60e1ddc5d325041e7a8..fbfa4f24e089bab1749ec3bdcd58bd6c23c28427 100644

--- a/net/http/transport_security_state_static.json

+++ b/net/http/transport_security_state_static.json

@@ -1471,10 +1471,8 @@

{ "name": "fleximus.org", "include_subdomains": true, "mode": "force-https" },

// Facebook would like to have pinning enforced on (*.)facebook.com and

- // HSTS enforced on specific names. We have the

- // "include_subdomains_for_pinning" flag that can do that, but it triggered a

- // wave of pinning failures and so isn't used until that can be investigated.

- { "name": "facebook.com", "mode": "force-https", "pins": "facebook" },

+ // HSTS enforced on specific names.

+ { "name": "facebook.com", "mode": "force-https", "include_subdomains_for_pinning": true, "pins": "facebook" },

{ "name": "www.facebook.com", "include_subdomains": true, "mode": "force-https", "pins": "facebook" },

{ "name": "m.facebook.com", "include_subdomains": true, "mode": "force-https", "pins": "facebook" },

{ "name": "tablet.facebook.com", "include_subdomains": true, "mode": "force-https", "pins": "facebook" },

@@ -1490,6 +1488,8 @@

{ "name": "mtouch.facebook.com", "include_subdomains": true, "mode": "force-https", "pins": "facebook" },

{ "name": "business.facebook.com", "include_subdomains": true, "mode": "force-https", "pins": "facebook" },

{ "name": "research.facebook.com", "include_subdomains": true, "mode": "force-https", "pins": "facebook" },

+ { "name": "messenger.com", "include_subdomains_for_pinning": true, "mode": "force-https", "pins": "facebook" },

+ { "name": "www.messenger.com", "include_subdomains": true, "mode": "force-https", "pins": "facebook" },

{ "name": "0x0a.net", "include_subdomains": true, "mode": "force-https" },

{ "name": "animurecs.com", "include_subdomains": true, "mode": "force-https" },

« no previous file with comments | « no previous file | no next file » | no next file with comments »