Detect SHA-1 when it appears in certificate chains BUG=401365 Review URL: https://codereview.chromium.org/509273002 Cr-Commit-Position: refs/heads/master@{#297307}

commit: b92e6f5c2a5271850a39afa1254d41ccc34ec5e6 [log] [tgz]
author: rsleevi <[email protected]> Mon Sep 29 23:48:04 2014
committer: Commit bot <[email protected]> Mon Sep 29 23:48:19 2014
tree: 1f8f3028253cf87606700119dbbf9e79426c8bd0
parent: 396bb736b1b8ee6f9fc7d696780f1d084df9b53f [diff] [blame]
diff --git a/net/cert/cert_verify_proc_mac.cc b/net/cert/cert_verify_proc_mac.cc
index 97c0bf13..7099225 100644
--- a/net/cert/cert_verify_proc_mac.cc
+++ b/net/cert/cert_verify_proc_mac.cc

@@ -227,6 +227,13 @@
       verify_result->has_md4 = true;
     } else if (CSSMOIDEqual(alg_oid, &CSSMOID_MD5WithRSA)) {
       verify_result->has_md5 = true;
+    } else if (CSSMOIDEqual(alg_oid, &CSSMOID_SHA1WithRSA) ||
+               CSSMOIDEqual(alg_oid, &CSSMOID_SHA1WithRSA_OIW) ||
+               CSSMOIDEqual(alg_oid, &CSSMOID_SHA1WithDSA) ||
+               CSSMOIDEqual(alg_oid, &CSSMOID_SHA1WithDSA_CMS) ||
+               CSSMOIDEqual(alg_oid, &CSSMOID_SHA1WithDSA_JDK) ||
+               CSSMOIDEqual(alg_oid, &CSSMOID_ECDSA_WithSHA1)) {
+      verify_result->has_sha1 = true;
     }
   }
   if (!verified_cert)
commit	b92e6f5c2a5271850a39afa1254d41ccc34ec5e6	[log] [tgz]
author	rsleevi <[email protected]>	Mon Sep 29 23:48:04 2014
committer	Commit bot <[email protected]>	Mon Sep 29 23:48:19 2014
tree	1f8f3028253cf87606700119dbbf9e79426c8bd0
parent	396bb736b1b8ee6f9fc7d696780f1d084df9b53f [diff] [blame]