| OLD | NEW |
|---|
| 1 // Copyright 2015 The Chromium Authors. All rights reserved. | 1 // Copyright 2015 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 // | 4 // |
| 5 // This protobuffer is intended to store reports from Chrome users of | 5 // This protobuffer is intended to store reports from Chrome users of |
| 6 // certificate errors. A report will be sent from Chrome when it gets | 6 // certificate errors. A report will be sent from Chrome when it gets |
| 7 // e.g. a certificate for google.com that chains up to a root CA not expected by | 7 // e.g. a certificate for google.com that chains up to a root CA not expected by |
| 8 // Chrome for that origin, such as DigiNotar (compromised in July 2011), or | 8 // Chrome for that origin, such as DigiNotar (compromised in July 2011), or |
| 9 // other pinning errors such as a blacklisted cert in the chain, or | 9 // other pinning errors such as a blacklisted cert in the chain, or |
| 10 // (when opted in) other certificate validation errors like an expired | 10 // (when opted in) other certificate validation errors like an expired |
| (...skipping 26 matching lines...) Expand all Loading... |
| 37 } | 37 } |
| 38 | 38 |
| 39 // The type of interstitial that was shown | 39 // The type of interstitial that was shown |
| 40 optional InterstitialReason interstitial_reason = 1; | 40 optional InterstitialReason interstitial_reason = 1; |
| 41 // True if the user clicked through to the offending website | 41 // True if the user clicked through to the offending website |
| 42 optional bool user_proceeded = 2; | 42 optional bool user_proceeded = 2; |
| 43 // True if the user was shown an option to click through | 43 // True if the user was shown an option to click through |
| 44 optional bool overridable = 3; | 44 optional bool overridable = 3; |
| 45 } | 45 } |
| 46 | 46 |
| 47 // Contains information about features that are enabled/disabled that |
| 48 // might affect certificate validation. |
| 49 message CertLoggerFeatureInfo { |
| 50 // The name of the feature. |
| 51 optional string feature = 1; |
| 52 // True if the feature is enabled for the user sending the report. |
| 53 optional bool enabled = 2; |
| 54 // A serialized JSON dictionary of experiment parameters for the feature. |
| 55 |
| 56 // An experiment parameter associated with this feature. |
| 57 message Parameter { |
| 58 optional string name = 1; |
| 59 optional string value = 2; |
| 60 }; |
| 61 repeated Parameter params = 3; |
| 62 } |
| 63 |
| 47 message CertLoggerRequest { | 64 message CertLoggerRequest { |
| 48 // The hostname being accessed (required as the cert could be valid for | 65 // The hostname being accessed (required as the cert could be valid for |
| 49 // multiple hosts, e.g. a wildcard or a SubjectAltName. | 66 // multiple hosts, e.g. a wildcard or a SubjectAltName. |
| 50 required string hostname = 1; | 67 required string hostname = 1; |
| 51 // The certificate chain as a series of PEM-encoded certificates, including | 68 // The certificate chain as a series of PEM-encoded certificates, including |
| 52 // intermediates but not necessarily the root. | 69 // intermediates but not necessarily the root. |
| 53 required string cert_chain = 2; | 70 required string cert_chain = 2; |
| 54 // The time (in usec since the epoch) when the client attempted to access the | 71 // The time (in usec since the epoch) when the client attempted to access the |
| 55 // site generating the pinning error. | 72 // site generating the pinning error. |
| 56 required int64 time_usec = 3; | 73 required int64 time_usec = 3; |
| (...skipping 34 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 91 // series of PEM-encoded certificates. Can be different than | 108 // series of PEM-encoded certificates. Can be different than |
| 92 // |cert_chain|, which is the chain the client built during | 109 // |cert_chain|, which is the chain the client built during |
| 93 // verification. | 110 // verification. |
| 94 optional string unverified_cert_chain = 8; | 111 optional string unverified_cert_chain = 8; |
| 95 | 112 |
| 96 // True if the certificate was rooted at a standard CA root ,as opposed to a | 113 // True if the certificate was rooted at a standard CA root ,as opposed to a |
| 97 // user-installed root, but is only meaningful if the underlying certificate | 114 // user-installed root, but is only meaningful if the underlying certificate |
| 98 // validation library built a trusted chain (i.e. the Chrome net stack set the | 115 // validation library built a trusted chain (i.e. the Chrome net stack set the |
| 99 // error, not the library). | 116 // error, not the library). |
| 100 optional bool is_issued_by_known_root = 9; | 117 optional bool is_issued_by_known_root = 9; |
| 118 |
| 119 // Information about features that were enabled or disabled for the |
| 120 // user that might affect certificate validation. |
| 121 repeated CertLoggerFeatureInfo features_info = 10; |
| 101 }; | 122 }; |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 2448943004:
Add experimental feature info to certificate reports (Closed)
