summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--security/manager/tools/getHSTSPreloadList.js9
1 files changed, 4 insertions, 5 deletions
diff --git a/security/manager/tools/getHSTSPreloadList.js b/security/manager/tools/getHSTSPreloadList.js
index 5b950f938..26fad8a89 100644
--- a/security/manager/tools/getHSTSPreloadList.js
+++ b/security/manager/tools/getHSTSPreloadList.js
@@ -261,16 +261,15 @@ function output(sortedStatuses, currentList) {
for (let status in sortedStatuses) {
// If we've encountered an error for this entry (other than the site not
- // sending an HSTS header), be safe and don't remove it from the list
- // (given that it was already on the list).
+ // sending an HSTS header), be safe and remove it from the list
+ // (preventing stale entries from accumulating).
if (status.error != ERROR_NONE &&
status.error != ERROR_NO_HSTS_HEADER &&
status.error != ERROR_MAX_AGE_TOO_LOW &&
status.name in currentList) {
- dump("INFO: error connecting to or processing " + status.name + " - using previous status on list\n");
+ dump("INFO: error connecting to or processing " + status.name + " - dropping from list\n");
writeTo(status.name + ": " + errorToString(status) + "\n", eos);
- status.maxAge = MINIMUM_REQUIRED_MAX_AGE;
- status.includeSubdomains = currentList[status.name];
+ status.maxAge = 0;
}
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-09 23:55:20 +0000