| OLD | NEW |
| 1 // Copyright 2015 The Chromium Authors. All rights reserved. | 1 // Copyright 2015 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 // | 4 // |
| 5 // This protobuffer is intended to store reports from Chrome users of | 5 // This protobuffer is intended to store reports from Chrome users of |
| 6 // certificate errors. A report will be sent from Chrome when it gets | 6 // certificate errors. A report will be sent from Chrome when it gets |
| 7 // e.g. a certificate for google.com that chains up to a root CA not expected by | 7 // e.g. a certificate for google.com that chains up to a root CA not expected by |
| 8 // Chrome for that origin, such as DigiNotar (compromised in July 2011), or | 8 // Chrome for that origin, such as DigiNotar (compromised in July 2011), or |
| 9 // other pinning errors such as a blacklisted cert in the chain, or | 9 // other pinning errors such as a blacklisted cert in the chain, or |
| 10 // (when opted in) other certificate validation errors like an expired | 10 // (when opted in) other certificate validation errors like an expired |
| (...skipping 58 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 69 ERR_CERT_AUTHORITY_INVALID = 4; | 69 ERR_CERT_AUTHORITY_INVALID = 4; |
| 70 ERR_CERT_COMMON_NAME_INVALID = 5; | 70 ERR_CERT_COMMON_NAME_INVALID = 5; |
| 71 ERR_CERT_NAME_CONSTRAINT_VIOLATION = 6; | 71 ERR_CERT_NAME_CONSTRAINT_VIOLATION = 6; |
| 72 ERR_CERT_WEAK_SIGNATURE_ALGORITHM = 7; | 72 ERR_CERT_WEAK_SIGNATURE_ALGORITHM = 7; |
| 73 ERR_CERT_WEAK_KEY = 8; | 73 ERR_CERT_WEAK_KEY = 8; |
| 74 ERR_CERT_DATE_INVALID = 9; | 74 ERR_CERT_DATE_INVALID = 9; |
| 75 ERR_CERT_VALIDITY_TOO_LONG = 10; | 75 ERR_CERT_VALIDITY_TOO_LONG = 10; |
| 76 ERR_CERT_UNABLE_TO_CHECK_REVOCATION = 11; | 76 ERR_CERT_UNABLE_TO_CHECK_REVOCATION = 11; |
| 77 ERR_CERT_NO_REVOCATION_MECHANISM = 12; | 77 ERR_CERT_NO_REVOCATION_MECHANISM = 12; |
| 78 ERR_CERT_NON_UNIQUE_NAME = 13; | 78 ERR_CERT_NON_UNIQUE_NAME = 13; |
| 79 ERR_CERTIFICATE_TRANSPARENCY_REQUIRED = 14; |
| 79 }; | 80 }; |
| 80 | 81 |
| 81 // Certificate errors encountered (if any) when validating this | 82 // Certificate errors encountered (if any) when validating this |
| 82 // certificate chain. | 83 // certificate chain. |
| 83 repeated CertError cert_error = 6; | 84 repeated CertError cert_error = 6; |
| 84 | 85 |
| 85 // Information about the interstitial that was shown to the user for | 86 // Information about the interstitial that was shown to the user for |
| 86 // this certificate error. | 87 // this certificate error. |
| 87 optional CertLoggerInterstitialInfo interstitial_info = 7; | 88 optional CertLoggerInterstitialInfo interstitial_info = 7; |
| 88 | 89 |
| 89 // The unverified certificate chain as received by the client, as a | 90 // The unverified certificate chain as received by the client, as a |
| 90 // series of PEM-encoded certificates. Can be different than | 91 // series of PEM-encoded certificates. Can be different than |
| 91 // |cert_chain|, which is the chain the client built during | 92 // |cert_chain|, which is the chain the client built during |
| 92 // verification. | 93 // verification. |
| 93 optional string unverified_cert_chain = 8; | 94 optional string unverified_cert_chain = 8; |
| 94 | 95 |
| 95 // True if the certificate was rooted at a standard CA root ,as opposed to a | 96 // True if the certificate was rooted at a standard CA root ,as opposed to a |
| 96 // user-installed root, but is only meaningful if the underlying certificate | 97 // user-installed root, but is only meaningful if the underlying certificate |
| 97 // validation library built a trusted chain (i.e. the Chrome net stack set the | 98 // validation library built a trusted chain (i.e. the Chrome net stack set the |
| 98 // error, not the library). | 99 // error, not the library). |
| 99 optional bool is_issued_by_known_root = 9; | 100 optional bool is_issued_by_known_root = 9; |
| 100 }; | 101 }; |
| OLD | NEW |