We need to decide based on the session policy.
Created attachment 372918 [details]
Comment on attachment 372918 [details]
So now this is a third place where we check the TLS certificate: (1) the normal non-WebSocket codepath, (2) SocketStreamHandleImplSoup.cpp for the previous WebSocket codepath, and (3) now here, for the new WebSocket codepath.
I think this is OK if SocketStreamHandleImplSoup.cpp goes away and is no longer used with new WebSockets. Is that right?
Right, SocketStreamHandleImplSoup.cpp will be removed when we enable the new code patch.
Honestly it'd make more sense to include this in your patch adding the new WebSocket backend, but whatever.
Committed r246878: <https://trac.webkit.org/changeset/246878>