net/http/transport_security_state_static.json - Issue 732423002: Update from chromium https://crrev.com/304586

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/http/transport_security_state_static.json

Issue 732423002: Update from chromium https://crrev.com/304586 (Closed) Base URL: https://github.com/domokit/mojo.git@master

Patch Set: Created 6 years, 1 month ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: net/http/transport_security_state_static.json

diff --git a/net/http/transport_security_state_static.json b/net/http/transport_security_state_static.json

index 39ca5829443d6bdf353f0750bad1f016054ace23..59eb9f7762c8298eb663fd466632206d271e0066 100644

--- a/net/http/transport_security_state_static.json

+++ b/net/http/transport_security_state_static.json

@@ -186,6 +186,14 @@

"DigiCertEVRoot",

"FacebookBackup"

]

+ },

+ {

+ "name": "spideroak",

+ "static_spki_hashes": [

+ "RapidSSL",

+ "SpiderOak1",

+ "SpiderOak2"

+ ]

}

@@ -1266,7 +1274,7 @@

{ "name": "ravchat.com", "include_subdomains": true, "mode": "force-https" },

{ "name": "sciencex.com", "include_subdomains": true, "mode": "force-https" },

{ "name": "shiinko.com", "include_subdomains": true, "mode": "force-https" },

- { "name": "spideroak.com", "include_subdomains": true, "mode": "force-https" },

+ { "name": "spideroak.com", "include_subdomains": true, "mode": "force-https", "pins": "spideroak" },

{ "name": "thorncreek.net", "include_subdomains": true, "mode": "force-https" },

{ "name": "tno.io", "include_subdomains": true, "mode": "force-https" },

{ "name": "translatoruk.co.uk", "include_subdomains": true, "mode": "force-https" },

@@ -1393,9 +1401,10 @@

{ "name": "fleximus.org", "include_subdomains": true, "mode": "force-https" },

// Facebook would like to have pinning enforced on (*.)facebook.com and

- // HSTS enforced on specific names. We can't (yet) represent that in JSON

- // So we're currently only applying pinning on the specific names.

- { "name": "facebook.com", "mode": "force-https", "pins": "facebook", "include_subdomains_for_pinning": true },

+ // HSTS enforced on specific names. We have the

+ // "include_subdomains_for_pinning" flag that can do that, but it triggered a

+ // wave of pinning failures and so isn't used until that can be investigated.

+ { "name": "facebook.com", "mode": "force-https", "pins": "facebook" },

{ "name": "www.facebook.com", "include_subdomains": true, "mode": "force-https", "pins": "facebook" },

{ "name": "m.facebook.com", "include_subdomains": true, "mode": "force-https", "pins": "facebook" },

{ "name": "tablet.facebook.com", "include_subdomains": true, "mode": "force-https", "pins": "facebook" },

@@ -1777,6 +1786,7 @@

"DROPBOX_COM",

"YOUTUBE_NOCOOKIE_COM",

"2MDN_NET",

- "FACEBOOK_COM"

+ "FACEBOOK_COM",

+ "SPIDEROAK_COM"

]

}

« no previous file with comments | « net/http/transport_security_state_static.certs ('k') | net/http/transport_security_state_unittest.cc » ('j') | no next file with comments »