WebPageConfiguration is not a great place for random platform-specific preferences. Currently it has only one such preference, treatsSHA1SignedCertificatesAsInsecure. This preference will never be used by curl or soup ports (it's simply not possible to get such information about the certificate, and it wouldn't be appropriate for WebKit to warn about certificates that curl or other soup apps are OK with), so it should at least be guarded by #if PLATFORM(COCOA). But WebPageConfiguration is otherwise used to hold a few very important objects, not preferences (except for the WebPreferencesStore::ValueMap), and that is one highly-specific certificate check out of many possible such checks. Let's move this check down to a lower, platform-specific layer.
Created attachment 255215 [details]
Created attachment 255218 [details]
I think a better terminology to use here might involve phrases like “certificate evaluation policy”, “trust evaluation policy”, or “security assessment policy”.
Yes; those are much better than what I came up with.
I also need to update this to apply on top of r185795.
Created attachment 255302 [details]
Dan, maybe a good time to revisit this?
Comment on attachment 255302 [details]
This patch has been pending review since 2015 with no recent activity.
It seems unlikely that it would even still apply to trunk in its current form.
Clearing from the review queue.
Feel free to update and resubmit if the patch is still relevant.