Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(46)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: net/cert/cert_verify_proc_android.cc

Issue 2951343002: Remove residual support for SHA-1 public key pins. (Closed)
Patch Set: Remove more code, use SHA-256 for the blacklist, and include the original FRST and India CCA certs. Created 3 years, 6 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« net/cert/cert_verify_proc.cc ('K') | « net/cert/cert_verify_proc.cc ('k') | net/cert/cert_verify_proc_builtin.cc » ('j') | net/cert/cert_verify_proc_builtin.cc » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: net/cert/cert_verify_proc_android.cc
diff --git a/net/cert/cert_verify_proc_android.cc b/net/cert/cert_verify_proc_android.cc
index dec59c4d2e09bb252bb1b0bc89658652748d03bd..7d1fa28a4fc54affe821b92c1c15b71688554f74 100644
--- a/net/cert/cert_verify_proc_android.cc
+++ b/net/cert/cert_verify_proc_android.cc
@@ -309,11 +309,6 @@ bool VerifyFromAndroidTrustManager(
continue;
}
- HashValue sha1(HASH_VALUE_SHA1);
- base::SHA1HashBytes(reinterpret_cast<const uint8_t*>(spki_bytes.data()),
- spki_bytes.size(), sha1.data());
- verify_result->public_key_hashes.push_back(sha1);
-
HashValue sha256(HASH_VALUE_SHA256);
crypto::SHA256HashString(spki_bytes, sha256.data(), crypto::kSHA256Length);
verify_result->public_key_hashes.push_back(sha256);
« net/cert/cert_verify_proc.cc ('K') | « net/cert/cert_verify_proc.cc ('k') | net/cert/cert_verify_proc_builtin.cc » ('j') | net/cert/cert_verify_proc_builtin.cc » ('J')

Powered by Google App Engine
This is Rietveld 408576698