DevTools: Security.setIgnoreCertificateErrors is permanent, cannot be changed back
Reported by
ic.arman...@gmail.com,
Oct 15
|
|||||
Issue descriptionUserAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36 Steps to reproduce the problem: 1. Navigate to a page with an untrusted certificate. You will not be able to load the page as Chrome will alert you that the page is not safe. 2. Attach to target 3. Enable Security 4. Send Security.setIgnoreCertificateErrors with ignore: true 5. Navigate to a page with an untrusted certificate. Now, you will be able to see the page 6. Send Security.setIgnoreCertificateErrors with ignore: false 7. Navigate to a page with an untrusted certificate. You can still see the page. What is the expected behavior? In step 7, you should get the same result as in step 1 What went wrong? Once you ignore the certificate errors, the change is permanent and for all tabs. I think the browser wide effect is intentional, not sure about being unable to set the errors back. Did this work before? N/A Chrome version: 69.0.3497.100 Channel: stable OS Version: OS X 10.13.6 Flash Version: From my research, I've noted that there is a deprecated command that handled certificate errors one by one, and the bug exists there as well.
,
Oct 16
ic.armandobarba@Thanks for filing the issue... @Reporter: It would be really helpful if a sample URL/Test file is provided, so that we can investigate the issue further. If possible provide screencast for better triaging it. Thanks..!
,
Oct 17
Hello! I recorded a video, hope it helps! This is the url I used to test https://untrusted-root.badssl.com/
,
Oct 17
Thank you for providing more feedback. Adding the requester to the cc list. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Oct 19
,
Oct 19
Andrey, mind taking a look? |
|||||
►
Sign in to add a comment |
|||||
Comment 1 by vamshi.kommuri@chromium.org
, Oct 16