Details
-
Suggestion
-
Resolution: Done
-
P2: Important
-
None
-
None
Description
QtWebEngine currently doesn't fail with revoked certificates, e.g. on https://revoked.badssl.com/
Like Chromium, I think QtWebEngine should be able to check them against CRLSets.
Thise could be either shipped with QtWebEngine and updated with each Qt release (preferrable, IMHO), and/or they could be bundled with each application and QtWebEngine could have an API to point it to a crlset file.
Attachments
For Gerrit Dashboard: QTBUG-58059 | ||||||
---|---|---|---|---|---|---|
# | Subject | Branch | Project | Status | CR | V |
225400,1 | WIP: Add profile specific controls for network traffic | dev | qt/qtwebengine | Status: ABANDONED | -2 | 0 |
235759,11 | Make it possible to enable OCSP on Linux | dev | qt/qtwebengine | Status: MERGED | +2 | 0 |