[Webkit-unassigned] [Bug 204736] [GTK] Allows visiting webpages that use HSTS despite certificate verification failure
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon Dec 16 05:50:03 PST 2019
https://bugs.webkit.org/show_bug.cgi?id=204736
--- Comment #3 from Carlos Garcia Campos <cgarcia at igalia.com> ---
I would need a way to reproduce it, libsoup is cancelling the message in case of tls errors according to the code, see https://gitlab.gnome.org/GNOME/libsoup/blob/master/libsoup/soup-hsts-enforcer.c#L497
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20191216/d8641d38/attachment.htm>
More information about the webkit-unassigned
mailing list