diff options
| author | felt@chromium.org <felt@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2013-08-03 23:15:47 +0000 |
|---|---|---|
| committer | felt@chromium.org <felt@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2013-08-03 23:15:47 +0000 |
| commit | 4499705b5e7908d735df7715b5067917d81dd4a7 (patch) | |
| tree | 59226923ec4d434cf1aabd6b6a954c6f8c718dac /chrome/browser/ui/gtk/accelerator_utils_gtk.cc | |
| parent | 9a59e89216d696bf4a9663bde5f835bc7e2bc405 (diff) | |
| download | chromium_src-4499705b5e7908d735df7715b5067917d81dd4a7.zip chromium_src-4499705b5e7908d735df7715b5067917d81dd4a7.tar.gz chromium_src-4499705b5e7908d735df7715b5067917d81dd4a7.tar.bz2 | |
This CL adds error tracking to SSLPolicy.
For a certificate to be allowed, it must not have any *additional* errors from when it was allowed, but for a certificate to be denied, it need only match *any* errors that caused it to be denied. Denial is checked before allowance.
More specifically:
* If you are checking CertC with ErrorC against the set of saved certificates, we will deny CertC if ErrorC has any overlap with any saved denied certificates. It does not need to be a perfect match.
* If you are checking CertC with ErrorC against the set of saved certificates, we will allow CertC if ErrorC is a perfect match to or subset of any saved allowed certificates.
BUG=263214
R=rsleevi@chromium.org
TBR=abarth@chromium.org
Review URL: https://chromiumcodereview.appspot.com/20931003
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@215516 0039d316-1c4b-4281-b951-d872f2087c98
Diffstat (limited to 'chrome/browser/ui/gtk/accelerator_utils_gtk.cc')
0 files changed, 0 insertions, 0 deletions