diff options
author | Gaming4JC <g4jc@bulletmail.org> | 2018-05-26 15:00:01 -0400 |
---|---|---|
committer | Gaming4JC <g4jc@bulletmail.org> | 2018-05-26 15:42:45 -0400 |
commit | bd851735628cd6b07285e87fa60081e9d11a3b7e (patch) | |
tree | c4a2831c9188f2d68e57c3b379bf86e7ff54cf93 /security | |
parent | 8f354e52d09d1bf2fadfbbfc141d4f32241599a4 (diff) | |
download | UXP-bd851735628cd6b07285e87fa60081e9d11a3b7e.tar UXP-bd851735628cd6b07285e87fa60081e9d11a3b7e.tar.gz UXP-bd851735628cd6b07285e87fa60081e9d11a3b7e.tar.lz UXP-bd851735628cd6b07285e87fa60081e9d11a3b7e.tar.xz UXP-bd851735628cd6b07285e87fa60081e9d11a3b7e.zip |
Remove support and tests for HSTS priming from the tree. Fixes #384
Diffstat (limited to 'security')
-rw-r--r-- | security/manager/ssl/nsISiteSecurityService.idl | 9 | ||||
-rw-r--r-- | security/manager/ssl/nsSiteSecurityService.cpp | 8 |
2 files changed, 0 insertions, 17 deletions
diff --git a/security/manager/ssl/nsISiteSecurityService.idl b/security/manager/ssl/nsISiteSecurityService.idl index fa20fe307..753f32b57 100644 --- a/security/manager/ssl/nsISiteSecurityService.idl +++ b/security/manager/ssl/nsISiteSecurityService.idl @@ -188,15 +188,6 @@ interface nsISiteSecurityService : nsISupports in int64_t aExpires, in unsigned long aPinCount, [array, size_is(aPinCount)] in string aSha256Pins, [optional] in boolean aIsPreload); - - /** - * Mark a host as declining to provide a given security state so that features - * such as HSTS priming will not flood a server with requests. - * - * @param aURI the nsIURI that this applies to - * @param aMaxAge lifetime (in seconds) of this negative cache - */ - [noscript] void cacheNegativeHSTSResult(in nsIURI aURI, in unsigned long long aMaxAge); }; %{C++ diff --git a/security/manager/ssl/nsSiteSecurityService.cpp b/security/manager/ssl/nsSiteSecurityService.cpp index 322ef6570..d461f6b61 100644 --- a/security/manager/ssl/nsSiteSecurityService.cpp +++ b/security/manager/ssl/nsSiteSecurityService.cpp @@ -356,14 +356,6 @@ nsSiteSecurityService::SetHSTSState(uint32_t aType, } NS_IMETHODIMP -nsSiteSecurityService::CacheNegativeHSTSResult(nsIURI* aSourceURI, - uint64_t aMaxAge) -{ - return SetHSTSState(nsISiteSecurityService::HEADER_HSTS, aSourceURI, - aMaxAge, false, 0, SecurityPropertyNegative); -} - -NS_IMETHODIMP nsSiteSecurityService::RemoveState(uint32_t aType, nsIURI* aURI, uint32_t aFlags) { |