| OLD | NEW |
|---|
| 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 // This file contains the HSTS preloaded list in a machine readable format. | 5 // This file contains the HSTS preloaded list in a machine readable format. |
| 6 | 6 |
| 7 // The top-level element is a dictionary with two keys: "pinsets" maps details | 7 // The top-level element is a dictionary with two keys: "pinsets" maps details |
| 8 // of certificate pinning to a name and "entries" contains the HSTS details for | 8 // of certificate pinning to a name and "entries" contains the HSTS details for |
| 9 // each host. | 9 // each host. |
| 10 // | 10 // |
| (...skipping 39 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 50 "GoogleBackup2048", | 50 "GoogleBackup2048", |
| 51 "GoogleG2", | 51 "GoogleG2", |
| 52 "EquifaxSecureCA", | 52 "EquifaxSecureCA", |
| 53 "GeoTrustGlobal" | 53 "GeoTrustGlobal" |
| 54 ], | 54 ], |
| 55 "bad_static_spki_hashes": [ | 55 "bad_static_spki_hashes": [ |
| 56 "Aetna", | 56 "Aetna", |
| 57 "Intel", | 57 "Intel", |
| 58 "TCTrustCenter", | 58 "TCTrustCenter", |
| 59 "Vodafone", | 59 "Vodafone", |
| 60 "ThawteSGCCA" | 60 "ThawteSGCCA", |
| 61 "VeriSignClass3SSPIntermediateCA" |
| 61 ] | 62 ] |
| 62 }, | 63 }, |
| 63 { | 64 { |
| 64 "name": "tor", | 65 "name": "tor", |
| 65 "static_spki_hashes": [ | 66 "static_spki_hashes": [ |
| 66 "RapidSSL", | 67 "RapidSSL", |
| 67 "DigiCertEVRoot", | 68 "DigiCertEVRoot", |
| 68 "Tor1", | 69 "Tor1", |
| 69 "Tor2", | 70 "Tor2", |
| 70 "Tor3" | 71 "Tor3" |
| (...skipping 572 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 643 | 644 |
| 644 // Entries that are only valid if the client supports SNI. | 645 // Entries that are only valid if the client supports SNI. |
| 645 { "name": "gmail.com", "mode": "force-https", "pins": "google", "snionly": t
rue }, | 646 { "name": "gmail.com", "mode": "force-https", "pins": "google", "snionly": t
rue }, |
| 646 { "name": "googlemail.com", "mode": "force-https", "pins": "google", "snionl
y": true }, | 647 { "name": "googlemail.com", "mode": "force-https", "pins": "google", "snionl
y": true }, |
| 647 { "name": "www.gmail.com", "mode": "force-https", "pins": "google", "snionly
": true }, | 648 { "name": "www.gmail.com", "mode": "force-https", "pins": "google", "snionly
": true }, |
| 648 { "name": "www.googlemail.com", "mode": "force-https", "pins": "google", "sn
ionly": true }, | 649 { "name": "www.googlemail.com", "mode": "force-https", "pins": "google", "sn
ionly": true }, |
| 649 { "name": "google-analytics.com", "include_subdomains": true, "pins": "googl
e", "snionly": true }, | 650 { "name": "google-analytics.com", "include_subdomains": true, "pins": "googl
e", "snionly": true }, |
| 650 { "name": "googlegroups.com", "include_subdomains": true, "pins": "google",
"snionly": true } | 651 { "name": "googlegroups.com", "include_subdomains": true, "pins": "google",
"snionly": true } |
| 651 ] | 652 ] |
| 652 } | 653 } |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 23523051:
Blacklist semi-private intermediate issuers from issuing for Google domains. (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src