Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(258)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: net/base/net_error_list.h

Issue 2076363002: Introduce the ability to require CT for specific hosts (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@require_ct_enforcer
Patch Set: Android is weird Created 4 years, 6 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « ios/web/navigation/crw_session_certificate_policy_manager.mm ('k') | net/cert/cert_status_flags.h » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 // This file intentionally does not have header guards, it's included 5 // This file intentionally does not have header guards, it's included
6 // inside a macro to generate enum values. 6 // inside a macro to generate enum values.
7 7
8 // This file contains the list of network errors. 8 // This file contains the list of network errors.
9 9
10 // 10 //
(...skipping 338 matching lines...) Expand 10 before | Expand all | Expand 10 after
349 // Resolving a hostname to an IP address list included the IPv4 address 349 // Resolving a hostname to an IP address list included the IPv4 address
350 // "127.0.53.53". This is a special IP address which ICANN has recommended to 350 // "127.0.53.53". This is a special IP address which ICANN has recommended to
351 // indicate there was a name collision, and alert admins to a potential 351 // indicate there was a name collision, and alert admins to a potential
352 // problem. 352 // problem.
353 NET_ERROR(ICANN_NAME_COLLISION, -166) 353 NET_ERROR(ICANN_NAME_COLLISION, -166)
354 354
355 // The SSL server presented a certificate which could not be decoded. This is 355 // The SSL server presented a certificate which could not be decoded. This is
356 // not a certificate error code as no X509Certificate object is available. This 356 // not a certificate error code as no X509Certificate object is available. This
357 // error is fatal. 357 // error is fatal.
358 NET_ERROR(SSL_SERVER_CERT_BAD_FORMAT, -167) 358 NET_ERROR(SSL_SERVER_CERT_BAD_FORMAT, -167)
359
359 // Certificate Transparency: Received a signed tree head that failed to parse. 360 // Certificate Transparency: Received a signed tree head that failed to parse.
360 NET_ERROR(CT_STH_PARSING_FAILED, -168) 361 NET_ERROR(CT_STH_PARSING_FAILED, -168)
362
361 // Certificate Transparency: Received a signed tree head whose JSON parsing was 363 // Certificate Transparency: Received a signed tree head whose JSON parsing was
362 // OK but was missing some of the fields. 364 // OK but was missing some of the fields.
363 NET_ERROR(CT_STH_INCOMPLETE, -169) 365 NET_ERROR(CT_STH_INCOMPLETE, -169)
364 366
365 // The attempt to reuse a connection to send proxy auth credentials failed 367 // The attempt to reuse a connection to send proxy auth credentials failed
366 // before the AuthController was used to generate credentials. The caller should 368 // before the AuthController was used to generate credentials. The caller should
367 // reuse the controller with a new connection. This error is only used 369 // reuse the controller with a new connection. This error is only used
368 // internally by the network stack. 370 // internally by the network stack.
369 NET_ERROR(UNABLE_TO_REUSE_CONNECTION_FOR_PROXY_AUTH, -170) 371 NET_ERROR(UNABLE_TO_REUSE_CONNECTION_FOR_PROXY_AUTH, -170)
370 372
(...skipping 96 matching lines...) Expand 10 before | Expand all | Expand 10 after
467 // The server responded with a certificate that contains a weak key (e.g. 469 // The server responded with a certificate that contains a weak key (e.g.
468 // a too-small RSA key). 470 // a too-small RSA key).
469 NET_ERROR(CERT_WEAK_KEY, -211) 471 NET_ERROR(CERT_WEAK_KEY, -211)
470 472
471 // The certificate claimed DNS names that are in violation of name constraints. 473 // The certificate claimed DNS names that are in violation of name constraints.
472 NET_ERROR(CERT_NAME_CONSTRAINT_VIOLATION, -212) 474 NET_ERROR(CERT_NAME_CONSTRAINT_VIOLATION, -212)
473 475
474 // The certificate's validity period is too long. 476 // The certificate's validity period is too long.
475 NET_ERROR(CERT_VALIDITY_TOO_LONG, -213) 477 NET_ERROR(CERT_VALIDITY_TOO_LONG, -213)
476 478
479 // Certificate Transparency was required for this connection, but the server
480 // did not provide CT information that complied with the policy.
481 NET_ERROR(CERTIFICATE_TRANSPARENCY_REQUIRED, -214)
482
477 // Add new certificate error codes here. 483 // Add new certificate error codes here.
478 // 484 //
479 // Update the value of CERT_END whenever you add a new certificate error 485 // Update the value of CERT_END whenever you add a new certificate error
480 // code. 486 // code.
481 487
482 // The value immediately past the last certificate error code. 488 // The value immediately past the last certificate error code.
483 NET_ERROR(CERT_END, -214) 489 NET_ERROR(CERT_END, -215)
484 490
485 // The URL is invalid. 491 // The URL is invalid.
486 NET_ERROR(INVALID_URL, -300) 492 NET_ERROR(INVALID_URL, -300)
487 493
488 // The scheme of the URL is disallowed. 494 // The scheme of the URL is disallowed.
489 NET_ERROR(DISALLOWED_URL_SCHEME, -301) 495 NET_ERROR(DISALLOWED_URL_SCHEME, -301)
490 496
491 // The scheme of the URL is unknown. 497 // The scheme of the URL is unknown.
492 NET_ERROR(UNKNOWN_URL_SCHEME, -302) 498 NET_ERROR(UNKNOWN_URL_SCHEME, -302)
493 499
(...skipping 330 matching lines...) Expand 10 before | Expand all | Expand 10 after
824 NET_ERROR(DNS_TIMED_OUT, -803) 830 NET_ERROR(DNS_TIMED_OUT, -803)
825 831
826 // The entry was not found in cache, for cache-only lookups. 832 // The entry was not found in cache, for cache-only lookups.
827 NET_ERROR(DNS_CACHE_MISS, -804) 833 NET_ERROR(DNS_CACHE_MISS, -804)
828 834
829 // Suffix search list rules prevent resolution of the given host name. 835 // Suffix search list rules prevent resolution of the given host name.
830 NET_ERROR(DNS_SEARCH_EMPTY, -805) 836 NET_ERROR(DNS_SEARCH_EMPTY, -805)
831 837
832 // Failed to sort addresses according to RFC3484. 838 // Failed to sort addresses according to RFC3484.
833 NET_ERROR(DNS_SORT_ERROR, -806) 839 NET_ERROR(DNS_SORT_ERROR, -806)
OLDNEW
« no previous file with comments | « ios/web/navigation/crw_session_certificate_policy_manager.mm ('k') | net/cert/cert_status_flags.h » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698