diff options
author | agl@chromium.org <agl@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2011-10-12 16:52:53 +0000 |
---|---|---|
committer | agl@chromium.org <agl@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2011-10-12 16:52:53 +0000 |
commit | da0e025abcc0ed2782af2ed439d06deb73b499c8 (patch) | |
tree | 06e09047dd7d26068f16ca6c828695b59036c318 /net | |
parent | 9cbf7cfabdf68ca25214d47c7ff4be3f83afaaf3 (diff) | |
download | chromium_src-da0e025abcc0ed2782af2ed439d06deb73b499c8.zip chromium_src-da0e025abcc0ed2782af2ed439d06deb73b499c8.tar.gz chromium_src-da0e025abcc0ed2782af2ed439d06deb73b499c8.tar.bz2 |
net: narrow HSTS for (*.)dropcam.com to (www.)dropcam.com
BUG=100061
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@105100 0039d316-1c4b-4281-b951-d872f2087c98
Diffstat (limited to 'net')
-rw-r--r-- | net/base/transport_security_state.cc | 3 | ||||
-rw-r--r-- | net/base/transport_security_state_unittest.cc | 5 |
2 files changed, 6 insertions, 2 deletions
diff --git a/net/base/transport_security_state.cc b/net/base/transport_security_state.cc index 0ac278c..a76e1ed 100644 --- a/net/base/transport_security_state.cc +++ b/net/base/transport_security_state.cc @@ -1054,7 +1054,8 @@ bool TransportSecurityState::IsPreloadedSTS( {11, true, "\006crypto\002is", true, 0 }, {20, true, "\005simon\007butcher\004name", true, 0 }, {10, true, "\004linx\003net", true, 0 }, - {13, true, "\007dropcam\003com", true, 0 }, + {13, false, "\007dropcam\003com", true, 0 }, + {17, false, "\003www\007dropcam\003com", true, 0 }, {30, true, "\010ebanking\014indovinabank\003com\002vn", true, 0 }, {13, false, "\007epoxate\003com", true, 0 }, {16, false, "\012torproject\003org", true, kTorAcceptableCerts }, diff --git a/net/base/transport_security_state_unittest.cc b/net/base/transport_security_state_unittest.cc index 0a1891a..d5d8aca 100644 --- a/net/base/transport_security_state_unittest.cc +++ b/net/base/transport_security_state_unittest.cc @@ -625,8 +625,11 @@ TEST_F(TransportSecurityStateTest, Preloaded) { "dropcam.com", false)); EXPECT_TRUE(state.IsEnabledForHost(&domain_state, - "foo.dropcam.com", + "www.dropcam.com", false)); + EXPECT_FALSE(state.IsEnabledForHost(&domain_state, + "foo.dropcam.com", + false)); EXPECT_TRUE(state.IsEnabledForHost(&domain_state, "ebanking.indovinabank.com.vn", |