Downgrade security state while displaying an SB interstitial

Downgrade security state while displaying an SB interstitial

BUG=615123
TBR=jialiul@chromium.org
TEST=
1. Go to the following URLs in different tabs:
   http://ianfette.org
   http://parkerly.com/sb-tests/bad-subresources.html
   https://parkerly.com/sb-tests/bad-subresources.html
2. Verify that the omnibox security indicator shows a red triangle for
   all three warnings

Committed: https://crrev.com/49e363a7209ccde311170742af9844b619099c93
Cr-Commit-Position: refs/heads/master@{#414700}

[felt, 2016-08-25 06:10:19]

Description was changed from

==========
Downgrade security state while displaying an SB interstitial

BUG=615123
TEST=
1. Go to the following URLs in different tabs:
   http://ianfette.org
   http://parkerly.com/sb-tests/bad-subresources.html
   https://parkerly.com/sb-tests/bad-subresources.html
2. Verify that the omnibox security indicator shows a red triangle for
   all three warnings
==========

to

==========
Downgrade security state while displaying an SB interstitial

BUG=615123
TEST=
1. Go to the following URLs in different tabs:
   http://ianfette.org
   http://parkerly.com/sb-tests/bad-subresources.html
   https://parkerly.com/sb-tests/bad-subresources.html
2. Verify that the omnibox security indicator shows a red triangle for
   all three warnings
==========

[felt, 2016-08-25 06:10:19]

felt@chromium.org changed reviewers:
+ estark@chromium.org, jialiul@chromium.org

[felt, 2016-08-25 06:10:34]

estark, jialiul, PTAL?

https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/safe_bro...
File chrome/browser/safe_browsing/safe_browsing_blocking_page_test.cc (right):

https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/safe_bro...
chrome/browser/safe_browsing/safe_browsing_blocking_page_test.cc:1108:
EXPECT_NE(0u, model_client->GetSecurityInfo().cert_status);
Note: this line (which depends on having a model_client) needs to move up into
ExpectSecurityIndicatorDowngrade(), but I'm leaving it here for now while I
figure out why that check is failing in the dependent CL
(https://codereview.chromium.org/2270283002/).

[estark, 2016-08-25 06:54:06]

I like the way you did it as part of the whitelist check instead of a separate
interstitial check. Mostly LG, just a question inline about cleaning up pending
URLs.

https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/safe_bro...
File chrome/browser/safe_browsing/ui_manager.cc (right):

https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/safe_bro...
chrome/browser/safe_browsing/ui_manager.cc:63: auto iter =
pending_.find(url.GetWithEmptyPath());
optional nit: I'd have a slight preference for `return pending_.find(...) !=
pending_.end()`

https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/safe_bro...
chrome/browser/safe_browsing/ui_manager.cc:166: AddToWhitelistUrlSet(resource,
false /* Pending -> permanent */);
I don't see pending URLs getting cleaned up anywhere in the event the user
doesn't proceed. Maybe an else block here that removes a URL from the pending
whitelist set?

https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/ssl/chro...
File chrome/browser/ssl/chrome_security_state_model_client.cc (right):

https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/ssl/chro...
chrome/browser/ssl/chrome_security_state_model_client.cc:254: if
(entry->GetSSL().security_style == content::SECURITY_STYLE_UNKNOWN) {
nit: could you add a comment around here along the lines of "Connection security
information is still being initialized, but malware status might already be
known"?

[felt, 2016-08-25 15:17:27]

https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/safe_bro...
File chrome/browser/safe_browsing/ui_manager.cc (right):

https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/safe_bro...
chrome/browser/safe_browsing/ui_manager.cc:63: auto iter =
pending_.find(url.GetWithEmptyPath());
On 2016/08/25 06:54:06, estark wrote:
> optional nit: I'd have a slight preference for `return pending_.find(...) !=
> pending_.end()`

Sure. Also updated Contains() for consistency.

https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/safe_bro...
chrome/browser/safe_browsing/ui_manager.cc:166: AddToWhitelistUrlSet(resource,
false /* Pending -> permanent */);
On 2016/08/25 06:54:06, estark wrote:
> I don't see pending URLs getting cleaned up anywhere in the event the user
> doesn't proceed. Maybe an else block here that removes a URL from the pending
> whitelist set?

There isn't any need to explicitly remove them.

Costs of leaving the pending entries?:
* No memory cost -- the number of pending entries in any WC is going to be very
small.
* No behavioral difference from UI perspective.

Costs of removing the pending entries?:
* There is a small runtime cost to looking up the entry to remove them (run the
WC getter, get the user data, and redo the lookup logic). 

Weighing the pros/cons I figured I'd just leave them. If you strongly think they
should be cleaned up tho, I can add that; it isn't really that expensive to
remove them.

https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/ssl/chro...
File chrome/browser/ssl/chrome_security_state_model_client.cc (right):

https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/ssl/chro...
chrome/browser/ssl/chrome_security_state_model_client.cc:254: if
(entry->GetSSL().security_style == content::SECURITY_STYLE_UNKNOWN) {
On 2016/08/25 06:54:06, estark wrote:
> nit: could you add a comment around here along the lines of "Connection
security
> information is still being initialized, but malware status might already be
> known"?

Done.

[Jialiu Lin, 2016-08-25 15:28:06]

LGTM

On Thu, Aug 25, 2016 at 8:17 AM <felt@chromium.org> wrote:

>
>
>
https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/safe_bro...
> File chrome/browser/safe_browsing/ui_manager.cc (right):
>
>
>
https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/safe_bro...
> chrome/browser/safe_browsing/ui_manager.cc:63: auto iter =
> pending_.find(url.GetWithEmptyPath());
> On 2016/08/25 06:54:06, estark wrote:
> > optional nit: I'd have a slight preference for `return
> pending_.find(...) !=
> > pending_.end()`
>
> Sure. Also updated Contains() for consistency.
>
>
>
>
https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/safe_bro...
> chrome/browser/safe_browsing/ui_manager.cc:166:
> AddToWhitelistUrlSet(resource, false /* Pending -> permanent */);
> On 2016/08/25 06:54:06, estark wrote:
> > I don't see pending URLs getting cleaned up anywhere in the event the
> user
> > doesn't proceed. Maybe an else block here that removes a URL from the
> pending
> > whitelist set?
>
> There isn't any need to explicitly remove them.
>
> Costs of leaving the pending entries?:
> * No memory cost -- the number of pending entries in any WC is going to
> be very small.
> * No behavioral difference from UI perspective.
>
> Costs of removing the pending entries?:
> * There is a small runtime cost to looking up the entry to remove them
> (run the WC getter, get the user data, and redo the lookup logic).
>
> Weighing the pros/cons I figured I'd just leave them. If you strongly
> think they should be cleaned up tho, I can add that; it isn't really
> that expensive to remove them.
>
>
>
>
https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/ssl/chro...
> File chrome/browser/ssl/chrome_security_state_model_client.cc (right):
>
>
>
https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/ssl/chro...
> chrome/browser/ssl/chrome_security_state_model_client.cc:254: if
> (entry->GetSSL().security_style == content::SECURITY_STYLE_UNKNOWN) {
> On 2016/08/25 06:54:06, estark wrote:
> > nit: could you add a comment around here along the lines of
> "Connection security
> > information is still being initialized, but malware status might
> already be
> > known"?
>
> Done.
>
> https://codereview.chromium.org/2275123004/
>

-- 
You received this message because you are subscribed to the Google Groups
"Chromium-reviews" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to chromium-reviews+unsubscribe@chromium.org.

[estark, 2016-08-25 15:39:54]

lgtm

https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/safe_bro...
File chrome/browser/safe_browsing/ui_manager.cc (right):

https://codereview.chromium.org/2275123004/diff/20001/chrome/browser/safe_bro...
chrome/browser/safe_browsing/ui_manager.cc:166: AddToWhitelistUrlSet(resource,
false /* Pending -> permanent */);
On 2016/08/25 15:17:27, felt wrote:
> On 2016/08/25 06:54:06, estark wrote:
> > I don't see pending URLs getting cleaned up anywhere in the event the user
> > doesn't proceed. Maybe an else block here that removes a URL from the
pending
> > whitelist set?
> 
> There isn't any need to explicitly remove them.
> 
> Costs of leaving the pending entries?:
> * No memory cost -- the number of pending entries in any WC is going to be
very
> small.
> * No behavioral difference from UI perspective.
> 
> Costs of removing the pending entries?:
> * There is a small runtime cost to looking up the entry to remove them (run
the
> WC getter, get the user data, and redo the lookup logic). 
> 
> Weighing the pros/cons I figured I'd just leave them. If you strongly think
they
> should be cleaned up tho, I can add that; it isn't really that expensive to
> remove them.

Ah, ok, I see. That sounds fine to me. Thanks for the explanation.

[felt, 2016-08-26 05:20:41]

The CQ bit was checked by felt@chromium.org

[felt, 2016-08-26 05:20:42]

The patchset sent to the CQ was uploaded after l-g-t-m from estark@chromium.org
Link to the patchset: https://codereview.chromium.org/2275123004/#ps80001
(title: "bugfix")

[commit-bot: I haz the power, 2016-08-26 05:20:59]

CQ is trying da patch. Follow status at
 
https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...

[commit-bot: I haz the power, 2016-08-26 05:26:44]

The CQ bit was unchecked by commit-bot@chromium.org

[commit-bot: I haz the power, 2016-08-26 05:26:45]

Try jobs failed on following builders:
  chromium_presubmit on master.tryserver.chromium.linux (JOB_FAILED,
http://build.chromium.org/p/tryserver.chromium.linux/builders/chromium_presub...)

[felt, 2016-08-26 05:27:31]

jialiu, l-g-t-m's don't work from email responses. can you reply on thread
please? thank you!

[felt, 2016-08-26 05:27:58]

Description was changed from

==========
Downgrade security state while displaying an SB interstitial

BUG=615123
TEST=
1. Go to the following URLs in different tabs:
   http://ianfette.org
   http://parkerly.com/sb-tests/bad-subresources.html
   https://parkerly.com/sb-tests/bad-subresources.html
2. Verify that the omnibox security indicator shows a red triangle for
   all three warnings
==========

to

==========
Downgrade security state while displaying an SB interstitial

BUG=615123
TBR=jialiul@chromium.org
TEST=
1. Go to the following URLs in different tabs:
   http://ianfette.org
   http://parkerly.com/sb-tests/bad-subresources.html
   https://parkerly.com/sb-tests/bad-subresources.html
2. Verify that the omnibox security indicator shows a red triangle for
   all three warnings
==========

[felt, 2016-08-26 05:28:11]

The CQ bit was checked by felt@chromium.org

[commit-bot: I haz the power, 2016-08-26 05:28:28]

CQ is trying da patch. Follow status at
 
https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...

[commit-bot: I haz the power, 2016-08-26 05:30:12]

The CQ bit was unchecked by commit-bot@chromium.org

[commit-bot: I haz the power, 2016-08-26 05:30:16]

Try jobs failed on following builders:
  android_compile_dbg on master.tryserver.chromium.android (JOB_FAILED,
https://build.chromium.org/p/tryserver.chromium.android/builders/android_comp...)
  mac_chromium_rel_ng on master.tryserver.chromium.mac (JOB_FAILED,
http://build.chromium.org/p/tryserver.chromium.mac/builders/mac_chromium_rel_...)

[felt, 2016-08-26 05:52:03]

The CQ bit was checked by felt@chromium.org to run a CQ dry run

[commit-bot: I haz the power, 2016-08-26 05:52:29]

Dry run: CQ is trying da patch. Follow status at
 
https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...

[commit-bot: I haz the power, 2016-08-26 07:25:57]

The CQ bit was unchecked by commit-bot@chromium.org

[commit-bot: I haz the power, 2016-08-26 07:25:58]

Dry run: Try jobs failed on following builders:
  win_chromium_rel_ng on master.tryserver.chromium.win (JOB_FAILED,
http://build.chromium.org/p/tryserver.chromium.win/builders/win_chromium_rel_...)

[felt, 2016-08-26 13:05:28]

The CQ bit was checked by felt@chromium.org

[felt, 2016-08-26 13:05:29]

The patchset sent to the CQ was uploaded after l-g-t-m from estark@chromium.org
Link to the patchset: https://codereview.chromium.org/2275123004/#ps100001
(title: "Moar bugfix (thanks trybots!!)")

[commit-bot: I haz the power, 2016-08-26 13:05:51]

CQ is trying da patch. Follow status at
 
https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...

[commit-bot: I haz the power, 2016-08-26 13:46:29]

Description was changed from

==========
Downgrade security state while displaying an SB interstitial

BUG=615123
TBR=jialiul@chromium.org
TEST=
1. Go to the following URLs in different tabs:
   http://ianfette.org
   http://parkerly.com/sb-tests/bad-subresources.html
   https://parkerly.com/sb-tests/bad-subresources.html
2. Verify that the omnibox security indicator shows a red triangle for
   all three warnings
==========

to

==========
Downgrade security state while displaying an SB interstitial

BUG=615123
TBR=jialiul@chromium.org
TEST=
1. Go to the following URLs in different tabs:
   http://ianfette.org
   http://parkerly.com/sb-tests/bad-subresources.html
   https://parkerly.com/sb-tests/bad-subresources.html
2. Verify that the omnibox security indicator shows a red triangle for
   all three warnings
==========

[commit-bot: I haz the power, 2016-08-26 13:46:31]

Committed patchset #6 (id:100001)

[commit-bot: I haz the power, 2016-08-26 13:47:57]

Description was changed from

==========
Downgrade security state while displaying an SB interstitial

BUG=615123
TBR=jialiul@chromium.org
TEST=
1. Go to the following URLs in different tabs:
   http://ianfette.org
   http://parkerly.com/sb-tests/bad-subresources.html
   https://parkerly.com/sb-tests/bad-subresources.html
2. Verify that the omnibox security indicator shows a red triangle for
   all three warnings
==========

to

==========
Downgrade security state while displaying an SB interstitial

BUG=615123
TBR=jialiul@chromium.org
TEST=
1. Go to the following URLs in different tabs:
   http://ianfette.org
   http://parkerly.com/sb-tests/bad-subresources.html
   https://parkerly.com/sb-tests/bad-subresources.html
2. Verify that the omnibox security indicator shows a red triangle for
   all three warnings

Committed: https://crrev.com/49e363a7209ccde311170742af9844b619099c93
Cr-Commit-Position: refs/heads/master@{#414700}
==========

[commit-bot: I haz the power, 2016-08-26 13:47:58]

Patchset 6 (id:??) landed as
https://crrev.com/49e363a7209ccde311170742af9844b619099c93
Cr-Commit-Position: refs/heads/master@{#414700}