[Webkit-unassigned] [Bug 146155] New: Remove treatsSHA1SignedCertificatesAsInsecure from WebPageWebPageConfiguration

[bugzilla-daemon at webkit.org]

https://bugs.webkit.org/show_bug.cgi?id=146155

            Bug ID: 146155
           Summary: Remove treatsSHA1SignedCertificatesAsInsecure from
                    WebPageWebPageConfiguration
    Classification: Unclassified
           Product: WebKit
           Version: 528+ (Nightly build)
          Hardware: PC
                OS: All
            Status: NEW
          Severity: Minor
          Priority: P2
         Component: WebKit2
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: mcatanzaro at igalia.com

WebPageConfiguration is not a great place for random platform-specific preferences. Currently it has only one such preference,  treatsSHA1SignedCertificatesAsInsecure. This preference will never be used by curl or soup ports (it's simply not possible to get such information about the certificate, and it wouldn't be appropriate for WebKit to warn about certificates that curl or other soup apps are OK with), so it should at least be guarded by #if PLATFORM(COCOA). But WebPageConfiguration is otherwise used to hold a few very important objects, not preferences (except for the WebPreferencesStore::ValueMap), and that is one highly-specific certificate check out of many possible such checks. Let's move this check down to a lower, platform-specific layer.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20150619/5bcc4814/attachment.html>