net: narrow HSTS for (*.)dropcam.com to (www.)dropcam.com

BUG=100061

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@105100 0039d316-1c4b-4281-b951-d872f2087c98

2 files changed, 6 insertions, 2 deletions

diff --git a/net/base/transport_security_state.cc b/net/base/transport_security_state.cc
index 0ac278c..a76e1ed 100644
--- a/net/base/transport_security_state.cc
+++ b/net/base/transport_security_state.cc
@@ -1054,7 +1054,8 @@ bool TransportSecurityState::IsPreloadedSTS(
     {11, true, "\006crypto\002is", true, 0 },
     {20, true, "\005simon\007butcher\004name", true, 0 },
     {10, true, "\004linx\003net", true, 0 },
-    {13, true, "\007dropcam\003com", true, 0 },
+    {13, false, "\007dropcam\003com", true, 0 },
+    {17, false, "\003www\007dropcam\003com", true, 0 },
     {30, true, "\010ebanking\014indovinabank\003com\002vn", true, 0 },
     {13, false, "\007epoxate\003com", true, 0 },
     {16, false, "\012torproject\003org", true, kTorAcceptableCerts },
diff --git a/net/base/transport_security_state_unittest.cc b/net/base/transport_security_state_unittest.cc
index 0a1891a..d5d8aca 100644
--- a/net/base/transport_security_state_unittest.cc
+++ b/net/base/transport_security_state_unittest.cc
@@ -625,8 +625,11 @@ TEST_F(TransportSecurityStateTest, Preloaded) {
                                      "dropcam.com",
                                      false));
   EXPECT_TRUE(state.IsEnabledForHost(&domain_state,
-                                     "foo.dropcam.com",
+                                     "www.dropcam.com",
                                      false));
+  EXPECT_FALSE(state.IsEnabledForHost(&domain_state,
+                                      "foo.dropcam.com",
+                                      false));
 
   EXPECT_TRUE(state.IsEnabledForHost(&domain_state,
                                      "ebanking.indovinabank.com.vn",