Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(31)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 2176183003: Revert of Enable Expect-Staple in SSLClientSocket. (Closed)

Created:
4 years, 5 months ago by Mark P
Modified:
4 years, 5 months ago
CC:
chromium-reviews, cbentzel+watch_chromium.org
Base URL:
https://chromium.googlesource.com/chromium/src.git@ocsp-reporting
Target Ref:
refs/pending/heads/master
Project:
chromium
Visibility:
Public.

Description

Revert of Enable Expect-Staple in SSLClientSocket. (patchset #3 id:40001 of https://codereview.chromium.org/2155753002/ ) Reason for revert: The newly added test HTTPSOCSPTest.ExpectStapleReportNotSentOnValid fails on the Android bot: https://build.chromium.org/p/chromium.android/builders/Android%20Cronet%20ARMv6%20Builder/builds/2675 C 165.045s Main Detailed Logs C 165.045s Main ******************************************************************************** C 165.063s Main [FAIL] HTTPSOCSPTest.ExpectStapleReportNotSentOnValid: C 165.063s Main [ RUN ] HTTPSOCSPTest.ExpectStapleReportNotSentOnValid C 165.063s Main [WARNING:embedded_test_server.cc(193)] Request not handled. Returning 404: / C 165.063s Main ../../net/url_request/url_request_unittest.cc:9342: Failure C 165.063s Main Value of: mock_report_sender.latest_report().empty() C 165.063s Main Actual: false C 165.064s Main Expected: true C 165.064s Main ../../net/url_request/url_request_unittest.cc:9343: Failure C 165.064s Main Value of: mock_report_sender.latest_report_uri() C 165.064s Main Actual: https://report.badssl.com/expect-staple C 165.064s Main Expected: GURL() C 165.064s Main Which is: C 165.064s Main [ FAILED ] HTTPSOCSPTest.ExpectStapleReportNotSentOnValid (65 ms) Original issue's description: > Enable Expect-Staple in SSLClientSocket. > > In TransportSecurityState, set |enable_static_expect_staple_| > to true by default. Update SSLClientSocket to call > TransportSecurityState::ProcessExpectStaple. > > In ssl_client_socket_impl.cc, this also removes the if > (|signed_certificate_timestamps_enabled_) check around > extracting the OCSP response and setting the > UMA_HISTOGRAM_BOOLEAN("Net.OCSPResponseStapled"). Since > SCTs are always enabled, this if statement was a noop. > > This does not enable Expect-Staple for QUIC. See > https://crbug.com/631101 > > BUG=598021 > > Committed: https://crrev.com/3c0e49240847ea54265e17c7a8a1ecf73daeaeee > Cr-Commit-Position: refs/heads/master@{#407575} TBR=svaldez@chromium.org,rsleevi@chromium.org,estark@chromium.org,dadrian@google.com # Skipping CQ checks because original CL landed less than 1 days ago. NOPRESUBMIT=true NOTREECHECKS=true NOTRY=true BUG=598021 Committed: https://crrev.com/5b3cfa2861a8c2d452111225fb5f95c7b561b50c Cr-Commit-Position: refs/heads/master@{#407606}

Patch Set 1 #

Unified diffs Side-by-side diffs Delta from patch set Stats (+37 lines, -135 lines) Patch
M net/http/transport_security_state.cc View 1 chunk +1 line, -1 line 0 comments Download
M net/http/transport_security_state_unittest.cc View 7 chunks +8 lines, -10 lines 0 comments Download
M net/quic/quic_crypto_client_stream.cc View 1 chunk +0 lines, -1 line 0 comments Download
M net/socket/ssl_client_socket_impl.h View 1 chunk +0 lines, -1 line 0 comments Download
M net/socket/ssl_client_socket_impl.cc View 5 chunks +28 lines, -16 lines 0 comments Download
M net/url_request/url_request_unittest.cc View 2 chunks +0 lines, -106 lines 0 comments Download

Messages

Total messages: 10 (3 generated)
Mark P
Created Revert of Enable Expect-Staple in SSLClientSocket.
4 years, 5 months ago (2016-07-25 21:56:34 UTC) #2
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.org/2176183003/1
4 years, 5 months ago (2016-07-25 21:57:19 UTC) #3
commit-bot: I haz the power
Committed patchset #1 (id:1)
4 years, 5 months ago (2016-07-25 21:58:28 UTC) #5
commit-bot: I haz the power
Patchset 1 (id:??) landed as https://crrev.com/5b3cfa2861a8c2d452111225fb5f95c7b561b50c Cr-Commit-Position: refs/heads/master@{#407606}
4 years, 5 months ago (2016-07-25 21:59:50 UTC) #7
Mark P
FYI, the original changelist that this change reverts also caused failures on other bots: https://uberchromegw.corp.google.com/i/chromium.mac/builders/Mac10.9%20Tests/builds/25470 ...
4 years, 5 months ago (2016-07-25 22:25:51 UTC) #8
Mark P
On 2016/07/25 22:25:51, Mark P (no metrics til 7-26) wrote: > FYI, the original changelist ...
4 years, 5 months ago (2016-07-25 22:26:46 UTC) #9
Mark P
4 years, 5 months ago (2016-07-25 22:27:57 UTC) #10
Message was sent while issue was closed. 
On 2016/07/25 22:26:46, Mark P (no metrics til 7-26) wrote:
> On 2016/07/25 22:25:51, Mark P (no metrics til 7-26) wrote:
> > FYI, the original changelist that this change reverts also caused failures
on
> > other bots:
> >
>
https://uberchromegw.corp.google.com/i/chromium.mac/builders/Mac10.9%20Tests/...
> >
>
https://uberchromegw.corp.google.com/i/chromium.linux/builders/Linux%20Tests/...
> > 
> > (It's just the Android bot was faster at alerting us to this issue.)
> > 
> > --mark
> 
> and
>
https://uberchromegw.corp.google.com/i/chromium.chromiumos/builders/Linux%20C...

and more.  I'm going to stop posting links here.

Powered by Google App Engine
This is Rietveld 408576698