mirror of
https://abf.rosa.ru/djam/chromium-browser-stable-test.git
synced 2025-02-24 10:02:47 +00:00
34 lines
1.7 KiB
Diff
34 lines
1.7 KiB
Diff
|
|
--- a/net/quic/crypto/proof_verifier_chromium.cc
|
|
+++ b/net/quic/crypto/proof_verifier_chromium.cc
|
|
@@ -345,6 +345,8 @@ int ProofVerifierChromium::Job::DoVerify
|
|
int ct_result = OK;
|
|
if (verify_details_->ct_verify_result.cert_policy_compliance !=
|
|
ct::CertPolicyCompliance::CERT_POLICY_COMPLIES_VIA_SCTS &&
|
|
+ verify_details_->ct_verify_result.cert_policy_compliance !=
|
|
+ ct::CertPolicyCompliance::CERT_POLICY_BUILD_NOT_TIMELY &&
|
|
transport_security_state_->ShouldRequireCT(
|
|
hostname_, cert_verify_result.verified_cert.get(),
|
|
cert_verify_result.public_key_hashes)) {
|
|
--- a/net/socket/ssl_client_socket_impl.cc
|
|
+++ b/net/socket/ssl_client_socket_impl.cc
|
|
@@ -1819,6 +1819,8 @@ int SSLClientSocketImpl::VerifyCT() {
|
|
|
|
if (ct_verify_result_.cert_policy_compliance !=
|
|
ct::CertPolicyCompliance::CERT_POLICY_COMPLIES_VIA_SCTS &&
|
|
+ ct_verify_result_.cert_policy_compliance !=
|
|
+ ct::CertPolicyCompliance::CERT_POLICY_BUILD_NOT_TIMELY &&
|
|
transport_security_state_->ShouldRequireCT(
|
|
host_and_port_.host(), server_cert_verify_result_.verified_cert.get(),
|
|
server_cert_verify_result_.public_key_hashes)) {
|
|
--- a/net/spdy/spdy_session.cc
|
|
+++ b/net/spdy/spdy_session.cc
|
|
@@ -672,6 +672,8 @@ bool SpdySession::CanPool(TransportSecur
|
|
|
|
if (ssl_info.ct_cert_policy_compliance !=
|
|
ct::CertPolicyCompliance::CERT_POLICY_COMPLIES_VIA_SCTS &&
|
|
+ ssl_info.ct_cert_policy_compliance !=
|
|
+ ct::CertPolicyCompliance::CERT_POLICY_BUILD_NOT_TIMELY &&
|
|
transport_security_state->ShouldRequireCT(
|
|
new_hostname, ssl_info.cert.get(), ssl_info.public_key_hashes)) {
|
|
return false;
|