Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(132)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 1135693002: Switch //components to use SchemeIsCryptographic() instead of SchemeIsSecure(). (Closed)

Created:
5 years, 7 months ago by lgarron
Modified:
5 years, 7 months ago
Reviewers:
mmenke, sclittle
CC:
chromium-reviews, palmer
Base URL:
https://chromium.googlesource.com/chromium/src.git@master
Target Ref:
refs/pending/heads/master
Project:
chromium
Visibility:
Public.

Description

Switch //components to use SchemeIsCryptographic() instead of SchemeIsSecure(). We recently introduced SchemeIsCryptographic() and IsOriginSecure(), which are meant to replace SchemeIsSecure(). IsOriginSecure() roughly means "do we trust this content not to be tampered with before it reaches the user?" [1] This is a higher-level definition that corresponds to the new "privileged contexts" spec. [2] SchemeIsCryptographic() [3] is close to the old definition of SchemeIsSecure(), and literally just checks if the scheme is a cryptographic scheme (HTTPS or WSS as of right now). The difference is that SchemeIsCryptographic() will not consider filesystem URLs secure. [1] https://code.google.com/p/chromium/codesearch#chromium/src/content/public/common/origin_util.h&sq=package:chromium&type=cs&l=19&rcl=143099866 [2] https://www.chromium.org/Home/chromium-security/prefer-secure-origins-for-powerful-new-features and https://w3c.github.io/webappsec/specs/powerfulfeatures/ [3] https://code.google.com/p/chromium/codesearch#chromium/src/url/gurl.h&sq=package:chromium&type=cs&l=250&rcl=1430998666 BUG=362214 Committed: https://crrev.com/a2da0cfdd55a53963a5298f301b896bdb909750e Cr-Commit-Position: refs/heads/master@{#329481}

Patch Set 1 #

Total comments: 4

Patch Set 2 : Include new call. #

Unified diffs Side-by-side diffs Delta from patch set Stats (+5 lines, -4 lines) Patch
M components/data_reduction_proxy/core/browser/data_reduction_proxy_bypass_protocol.cc View 1 1 chunk +2 lines, -1 line 0 comments Download
M components/data_reduction_proxy/core/browser/data_reduction_proxy_bypass_stats_unittest.cc View 1 1 chunk +1 line, -1 line 0 comments Download
M components/data_reduction_proxy/core/browser/data_reduction_proxy_metrics_unittest.cc View 1 1 chunk +1 line, -1 line 0 comments Download
M components/error_page/renderer/net_error_helper_core.cc View 1 chunk +1 line, -1 line 0 comments Download

Messages

Total messages: 12 (3 generated)
lgarron
sclittle@chromium.org: Could you review the data reduction proxy code? mmenke@chromium.org: Could you review components/error_page/renderer/net_error_helper_core.cc? See ...
5 years, 7 months ago (2015-05-08 02:10:42 UTC) #2
mmenke
error_page LGTM https://codereview.chromium.org/1135693002/diff/1/components/error_page/renderer/net_error_helper_core.cc File components/error_page/renderer/net_error_helper_core.cc (right): https://codereview.chromium.org/1135693002/diff/1/components/error_page/renderer/net_error_helper_core.cc#newcode153 components/error_page/renderer/net_error_helper_core.cc:153: if (GURL(unreachable_url).SchemeIsCryptographic()) On 2015/05/08 02:10:42, lgarron wrote: ...
5 years, 7 months ago (2015-05-08 02:49:36 UTC) #3
lgarron
On 2015/05/08 02:49:36, mmenke wrote: > error_page LGTM > > https://codereview.chromium.org/1135693002/diff/1/components/error_page/renderer/net_error_helper_core.cc > File components/error_page/renderer/net_error_helper_core.cc (right): ...
5 years, 7 months ago (2015-05-12 02:16:10 UTC) #4
sclittle
https://codereview.chromium.org/1135693002/diff/1/components/data_reduction_proxy/core/browser/data_reduction_proxy_bypass_stats_unittest.cc File components/data_reduction_proxy/core/browser/data_reduction_proxy_bypass_stats_unittest.cc (right): https://codereview.chromium.org/1135693002/diff/1/components/data_reduction_proxy/core/browser/data_reduction_proxy_bypass_stats_unittest.cc#newcode588 components/data_reduction_proxy/core/browser/data_reduction_proxy_bypass_stats_unittest.cc:588: if (url.SchemeIsCryptographic()) { There's actually one more place that ...
5 years, 7 months ago (2015-05-12 17:21:31 UTC) #5
lgarron
https://codereview.chromium.org/1135693002/diff/1/components/data_reduction_proxy/core/browser/data_reduction_proxy_bypass_stats_unittest.cc File components/data_reduction_proxy/core/browser/data_reduction_proxy_bypass_stats_unittest.cc (right): https://codereview.chromium.org/1135693002/diff/1/components/data_reduction_proxy/core/browser/data_reduction_proxy_bypass_stats_unittest.cc#newcode588 components/data_reduction_proxy/core/browser/data_reduction_proxy_bypass_stats_unittest.cc:588: if (url.SchemeIsCryptographic()) { On 2015/05/12 17:21:31, sclittle wrote: > ...
5 years, 7 months ago (2015-05-12 18:30:35 UTC) #6
sclittle
LGTM
5 years, 7 months ago (2015-05-12 18:31:17 UTC) #7
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1135693002/20001
5 years, 7 months ago (2015-05-12 18:36:14 UTC) #10
commit-bot: I haz the power
Committed patchset #2 (id:20001)
5 years, 7 months ago (2015-05-12 20:52:13 UTC) #11
commit-bot: I haz the power
5 years, 7 months ago (2015-05-12 20:52:51 UTC) #12
Message was sent while issue was closed. 
Patchset 2 (id:??) landed as
https://crrev.com/a2da0cfdd55a53963a5298f301b896bdb909750e
Cr-Commit-Position: refs/heads/master@{#329481}

Powered by Google App Engine
This is Rietveld 408576698