Use about:config variable to toggle whitelist

Dan Auerbach · Dan Auerbach · commit 266c4e11a927 · 2011-10-05T17:24:17.000-07:00
diff --git a/src/components/ssl-observatory.js b/src/components/ssl-observatory.js
@@ -257,12 +257,16 @@ SSLObservatory.prototype = {
         var chain_hash = sha256_digest(chainArrayFpStr).toUpperCase();
         this.log(INFO, "SHA-256 hash of cert chain for "+new String(subject.URI.host)+" is "+ chain_hash);
 
-        if (this.isChainWhitelisted(chain_hash)) {
-            this.log(INFO, "This cert chain is whitelisted. Not submitting.");
-            return;
+	if(!this.myGetBoolPref("use_whitelist")) {
+	  this.log(WARN, "Not using whitelist to filter cert chains.");
+	}
+        else if (this.isChainWhitelisted(chain_hash)) {
+          this.log(INFO, "This cert chain is whitelisted. Not submitting.");
+          return;
         }
-        this.log(INFO, "Cert chain is NOT whitelisted. Proceeding with submission.");
-
+	else {
+          this.log(INFO, "Cert chain is NOT whitelisted. Proceeding with submission.");
+	}
 
         if (subject.URI.port == -1) {
             this.submitChain(chainArray, fps, new String(subject.URI.host), subject);
diff --git a/src/defaults/preferences/preferences.js b/src/defaults/preferences/preferences.js
@@ -24,4 +24,4 @@ pref("extensions.https_everywhere._observatory.use_tor_proxy",true);
 pref("extensions.https_everywhere._observatory.alt_roots",false);
 pref("extensions.https_everywhere._observatory.priv_dns",false);
 pref("extensions.https_everywhere._observatory.send_asn",true);
-
+pref("extensions.https_everywhere._observatory.use_whitelist",true);
