| Index: net/http/transport_security_state.cc
|
| diff --git a/net/http/transport_security_state.cc b/net/http/transport_security_state.cc
|
| index d0c0b33a896588bc86e6e1c1414f9d3532f60284..907e6d88a089471e969b2af3becfa528237a9e76 100644
|
| --- a/net/http/transport_security_state.cc
|
| +++ b/net/http/transport_security_state.cc
|
| @@ -721,9 +721,18 @@ void TransportSecurityState::ReportUMAOnPinFailure(const std::string& host) {
|
|
|
| // static
|
| bool TransportSecurityState::IsBuildTimely() {
|
| + // If the build metadata aren't embedded in the binary then we can't use the
|
| + // build time to determine if the build is timely, return true by default. If
|
| + // we're building an official build then keep using the build time, even if
|
| + // it's invalid it'd be a date in the past and this function will return
|
| + // false.
|
| +#if defined(DONT_EMBED_BUILD_METADATA) && !defined(OFFICIAL_BUILD)
|
| + return true;
|
| +#else
|
| const base::Time build_time = base::GetBuildTime();
|
| // We consider built-in information to be timely for 10 weeks.
|
| return (base::Time::Now() - build_time).InDays() < 70 /* 10 weeks */;
|
| +#endif
|
| }
|
|
|
| bool TransportSecurityState::CheckPublicKeyPinsImpl(
|
|
|
Chromium Code Reviews
Issue 695523002:
Change dont_embed_build_metadata default to 1 except for Official build and fix some unittests. (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master