Show "DNS" as the authority for DNSSEC validated certficiates.

At the moment, if we validate a certificate using DNSSEC the Page Info
dialog will show whatever Issuer the site chose as the issuing
authority. That's confusing because the site could choose a string
like 'US Dept of Homeland Security' (for example) which is misleading.

This patch forces the authority string to always be "DNSSEC" in the
case that we used DNSSEC to validate the certificate.

(The string "DNSSEC" isn't translated as it's an acronym.)

BUG=none
TEST=none

http://codereview.chromium.org/3304016/show

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@59686 0039d316-1c4b-4281-b951-d872f2087c98

1 files changed, 2 insertions, 0 deletions

diff --git a/net/base/cert_status_flags.h b/net/base/cert_status_flags.h
index 26e465c..8bf2565 100644
--- a/net/base/cert_status_flags.h
+++ b/net/base/cert_status_flags.h
@@ -21,10 +21,12 @@ enum {
   CERT_STATUS_REVOKED                    = 1 << 6,
   CERT_STATUS_INVALID                    = 1 << 7,
   CERT_STATUS_WEAK_SIGNATURE_ALGORITHM   = 1 << 8,
+  CERT_STATUS_NOT_IN_DNS                 = 1 << 9,
 
   // Bits 16 to 30 are for non-error statuses.
   CERT_STATUS_IS_EV                      = 1 << 16,
   CERT_STATUS_REV_CHECKING_ENABLED       = 1 << 17,
+  CERT_STATUS_IS_DNSSEC                  = 1 << 18,
 
   // 1 << 31 (the sign bit) is reserved so that the cert status will never be
   // negative.