Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(74)

Issue 376333003: Find reasons for the SSL common name invalid error. (Closed)

Created:
6 years, 5 months ago by radhikabhar
Modified:
6 years, 4 months ago
Reviewers:
palmer, felt, Mark P
CC:
chromium-reviews
Base URL:
https://chromium.googlesource.com/chromium/src.git@master
Project:
chromium
Visibility:
Public.

Description

Find reasons for the SSL common name invalid error. BUG=392310 Committed: https://src.chromium.org/viewvc/chrome?view=rev&revision=287942

Patch Set 1 : Changes #

Patch Set 2 : Rebase update #

Total comments: 23

Patch Set 3 : Addressed comments #

Total comments: 49

Patch Set 4 : Addressed Comments #

Total comments: 24

Patch Set 5 : Addressed comments #

Total comments: 18

Patch Set 6 : Comments #

Total comments: 6

Patch Set 7 : Addressed Comments #

Total comments: 10

Patch Set 8 : Rebase Update #

Patch Set 9 : Addressed Comments #

Total comments: 1

Patch Set 10 : Rebase-Update #

Patch Set 11 : Removed the Self -Signed function #

Total comments: 16

Patch Set 12 : Addressed comments #

Total comments: 16

Patch Set 13 : Addressed Comments #

Patch Set 14 : Rebase-Update #

Total comments: 8

Patch Set 15 : Addressed comments #

Patch Set 16 : Changed the name of the histogram back #

Patch Set 17 : Added comments to the histogram #

Total comments: 10

Patch Set 18 : Changed the comments in the histogram.xml #

Total comments: 9

Patch Set 19 : Addressed Comments #

Unified diffs Side-by-side diffs Delta from patch set Stats (+503 lines, -42 lines) Patch
M chrome/browser/ssl/ssl_blocking_page.cc View 1 2 3 4 5 6 7 8 9 10 11 12 13 1 chunk +7 lines, -5 lines 0 comments Download
M chrome/browser/ssl/ssl_error_classification.h View 1 2 3 4 5 6 7 8 9 10 11 12 1 chunk +79 lines, -11 lines 0 comments Download
M chrome/browser/ssl/ssl_error_classification.cc View 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 6 chunks +250 lines, -20 lines 0 comments Download
M chrome/browser/ssl/ssl_error_classification_unittest.cc View 1 2 3 4 5 6 7 8 9 10 11 1 chunk +118 lines, -4 lines 0 comments Download
M tools/metrics/histograms/histograms.xml View 2 chunks +49 lines, -2 lines 0 comments Download

Messages

Total messages: 45 (0 generated)
radhikabhar
6 years, 5 months ago (2014-07-14 21:37:16 UTC) #1
felt
On 2014/07/14 21:37:16, radhikabhar wrote: hey, i don't think you need the "patch from issue ...
6 years, 5 months ago (2014-07-15 00:10:41 UTC) #2
felt
https://codereview.chromium.org/376333003/diff/180001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/180001/chrome/browser/ssl/ssl_error_classification.cc#newcode29 chrome/browser/ssl/ssl_error_classification.cc:29: // Scores/weights which will be constant through all the ...
6 years, 5 months ago (2014-07-15 00:52:44 UTC) #3
radhikabhar
https://codereview.chromium.org/376333003/diff/180001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/180001/chrome/browser/ssl/ssl_error_classification.cc#newcode29 chrome/browser/ssl/ssl_error_classification.cc:29: // Scores/weights which will be constant through all the ...
6 years, 5 months ago (2014-07-15 17:34:09 UTC) #4
felt
I'm a little worried about the fact that you're essentially running regexes over URLs. That ...
6 years, 5 months ago (2014-07-15 20:44:35 UTC) #5
palmer
https://codereview.chromium.org/376333003/diff/220001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/220001/chrome/browser/ssl/ssl_error_classification.cc#newcode43 chrome/browser/ssl/ssl_error_classification.cc:43: // the |longer_str| = prefix + |smaller_str|. If so, ...
6 years, 5 months ago (2014-07-15 21:23:23 UTC) #6
felt
There might be some useful methods in net/base/net_util.h. For example, for the www matching case ...
6 years, 5 months ago (2014-07-15 21:47:49 UTC) #7
radhikabhar
There are several places in Chrome which check whether the URL is a subdomain or ...
6 years, 5 months ago (2014-07-16 22:35:16 UTC) #8
felt
https://codereview.chromium.org/376333003/diff/260001/chrome/browser/ssl/ssl_blocking_page.cc File chrome/browser/ssl/ssl_blocking_page.cc (right): https://codereview.chromium.org/376333003/diff/260001/chrome/browser/ssl/ssl_blocking_page.cc#newcode267 chrome/browser/ssl/ssl_blocking_page.cc:267: SSLErrorClassification ssl_error_classification( you should create a single SSLErrorClassification object ...
6 years, 5 months ago (2014-07-16 22:47:34 UTC) #9
felt
https://codereview.chromium.org/376333003/diff/220001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/220001/chrome/browser/ssl/ssl_error_classification.cc#newcode204 chrome/browser/ssl/ssl_error_classification.cc:204: if (string_prefix.empty() || (string_prefix.compare("www.") == 0)) { On 2014/07/16 ...
6 years, 5 months ago (2014-07-16 23:31:48 UTC) #10
radhikabhar
https://codereview.chromium.org/376333003/diff/260001/chrome/browser/ssl/ssl_blocking_page.cc File chrome/browser/ssl/ssl_blocking_page.cc (right): https://codereview.chromium.org/376333003/diff/260001/chrome/browser/ssl/ssl_blocking_page.cc#newcode267 chrome/browser/ssl/ssl_blocking_page.cc:267: SSLErrorClassification ssl_error_classification( On 2014/07/16 22:47:33, felt wrote: > you ...
6 years, 5 months ago (2014-07-17 01:02:12 UTC) #11
palmer
https://codereview.chromium.org/376333003/diff/300001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/300001/chrome/browser/ssl/ssl_error_classification.cc#newcode61 chrome/browser/ssl/ssl_error_classification.cc:61: const std::vector<base::string16>& tokenized_potential_subdomian, Typo: "domian" should be "domain". https://codereview.chromium.org/376333003/diff/300001/chrome/browser/ssl/ssl_error_classification.cc#newcode61 ...
6 years, 5 months ago (2014-07-17 20:11:20 UTC) #12
radhikabhar
https://codereview.chromium.org/376333003/diff/300001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/300001/chrome/browser/ssl/ssl_error_classification.cc#newcode61 chrome/browser/ssl/ssl_error_classification.cc:61: const std::vector<base::string16>& tokenized_potential_subdomian, On 2014/07/17 20:11:19, Chromium Palmer wrote: ...
6 years, 5 months ago (2014-07-18 16:29:29 UTC) #13
felt
looking good, only some very minor comments this time https://codereview.chromium.org/376333003/diff/360001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/360001/chrome/browser/ssl/ssl_error_classification.cc#newcode171 chrome/browser/ssl/ssl_error_classification.cc:171: ...
6 years, 5 months ago (2014-07-21 21:34:13 UTC) #14
radhikabhar
https://codereview.chromium.org/376333003/diff/360001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/360001/chrome/browser/ssl/ssl_error_classification.cc#newcode171 chrome/browser/ssl/ssl_error_classification.cc:171: if (IsHostNameKnownTLD(host_name)) { On 2014/07/21 21:34:13, felt wrote: > ...
6 years, 5 months ago (2014-07-22 16:03:38 UTC) #15
felt
lgtm
6 years, 5 months ago (2014-07-22 16:04:41 UTC) #16
palmer
https://codereview.chromium.org/376333003/diff/400001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/400001/chrome/browser/ssl/ssl_error_classification.cc#newcode334 chrome/browser/ssl/ssl_error_classification.cc:334: bool SSLErrorClassification::IsSubDomainOutsideWildcard( It just seems like there has got ...
6 years, 5 months ago (2014-07-23 01:22:06 UTC) #17
palmer
https://codereview.chromium.org/376333003/diff/400001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/400001/chrome/browser/ssl/ssl_error_classification.cc#newcode334 chrome/browser/ssl/ssl_error_classification.cc:334: bool SSLErrorClassification::IsSubDomainOutsideWildcard( Yeah, see if you can call X509Certificate::VerifyNameMatch ...
6 years, 5 months ago (2014-07-23 01:53:22 UTC) #18
radhikabhar
https://codereview.chromium.org/376333003/diff/400001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/400001/chrome/browser/ssl/ssl_error_classification.cc#newcode334 chrome/browser/ssl/ssl_error_classification.cc:334: bool SSLErrorClassification::IsSubDomainOutsideWildcard( On 2014/07/23 01:53:22, Chromium Palmer wrote: > ...
6 years, 5 months ago (2014-07-24 18:05:14 UTC) #19
palmer
> > Yeah, see if you can call X509Certificate::VerifyNameMatch or > > X509Certificate::VerifyHostname. > > ...
6 years, 5 months ago (2014-07-25 19:15:14 UTC) #20
radhikabhar
On 2014/07/25 19:15:14, Chromium Palmer wrote: > > > Yeah, see if you can call ...
6 years, 5 months ago (2014-07-25 20:59:53 UTC) #21
felt
how's this going? palmer@, are there more changes needed?
6 years, 4 months ago (2014-07-30 20:01:22 UTC) #22
palmer
Getting close. https://codereview.chromium.org/376333003/diff/530001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/530001/chrome/browser/ssl/ssl_error_classification.cc#newcode340 chrome/browser/ssl/ssl_error_classification.cc:340: // This method is valid for wildcard ...
6 years, 4 months ago (2014-07-31 22:40:30 UTC) #23
radhikabhar
https://codereview.chromium.org/376333003/diff/530001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/530001/chrome/browser/ssl/ssl_error_classification.cc#newcode340 chrome/browser/ssl/ssl_error_classification.cc:340: // This method is valid for wildcard certificates only. ...
6 years, 4 months ago (2014-08-01 23:06:57 UTC) #24
palmer
https://codereview.chromium.org/376333003/diff/590001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/590001/chrome/browser/ssl/ssl_error_classification.cc#newcode146 chrome/browser/ssl/ssl_error_classification.cc:146: if (type == SSLErrorInfo::CERT_DATE_INVALID) { Nit: A switch/case might ...
6 years, 4 months ago (2014-08-04 23:48:29 UTC) #25
radhikabhar
https://codereview.chromium.org/376333003/diff/590001/chrome/browser/ssl/ssl_error_classification.cc File chrome/browser/ssl/ssl_error_classification.cc (right): https://codereview.chromium.org/376333003/diff/590001/chrome/browser/ssl/ssl_error_classification.cc#newcode146 chrome/browser/ssl/ssl_error_classification.cc:146: if (type == SSLErrorInfo::CERT_DATE_INVALID) { On 2014/08/04 23:48:29, Chromium ...
6 years, 4 months ago (2014-08-05 02:17:37 UTC) #26
palmer
LGTM
6 years, 4 months ago (2014-08-05 17:38:18 UTC) #27
radhikabhar
On 2014/08/05 17:38:18, Chromium Palmer wrote: > LGTM @mpearson - Could you PTAL @ histograms.xml ...
6 years, 4 months ago (2014-08-05 21:19:38 UTC) #28
Mark P
https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml File tools/metrics/histograms/histograms.xml (right): https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml#newcode48048 tools/metrics/histograms/histograms.xml:48048: + <int value="2" How where these buckets evaluated in ...
6 years, 4 months ago (2014-08-05 22:07:27 UTC) #29
radhikabhar
https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml File tools/metrics/histograms/histograms.xml (right): https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml#newcode48048 tools/metrics/histograms/histograms.xml:48048: + <int value="2" On 2014/08/05 22:07:27, Mark P wrote: ...
6 years, 4 months ago (2014-08-06 00:10:19 UTC) #30
felt
https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml File tools/metrics/histograms/histograms.xml (right): https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml#newcode48048 tools/metrics/histograms/histograms.xml:48048: + <int value="2" On 2014/08/06 00:10:18, radhikabhar wrote: > ...
6 years, 4 months ago (2014-08-06 01:00:24 UTC) #31
Mark P
On 2014/08/06 01:00:24, felt wrote: > https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml > File tools/metrics/histograms/histograms.xml (right): > > https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml#newcode48048 > ...
6 years, 4 months ago (2014-08-06 18:58:57 UTC) #32
Mark P
6 years, 4 months ago (2014-08-06 18:59:05 UTC) #33
Mark P
https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml File tools/metrics/histograms/histograms.xml (right): https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml#newcode48056 tools/metrics/histograms/histograms.xml:48056: + wildcard certificate"/> On 2014/08/06 00:10:18, radhikabhar wrote: > ...
6 years, 4 months ago (2014-08-06 19:04:51 UTC) #34
felt
https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml File tools/metrics/histograms/histograms.xml (right): https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml#newcode48048 tools/metrics/histograms/histograms.xml:48048: + <int value="2" HiOn 2014/08/06 01:00:24, felt wrote: > ...
6 years, 4 months ago (2014-08-06 19:32:36 UTC) #35
Mark P
https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml File tools/metrics/histograms/histograms.xml (right): https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml#newcode48048 tools/metrics/histograms/histograms.xml:48048: + <int value="2" On 2014/08/06 19:32:36, felt wrote: > ...
6 years, 4 months ago (2014-08-06 20:19:29 UTC) #36
radhikabhar
On 2014/08/06 20:19:29, Mark P wrote: > https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml > File tools/metrics/histograms/histograms.xml (right): > > https://codereview.chromium.org/376333003/diff/650001/tools/metrics/histograms/histograms.xml#newcode48048 ...
6 years, 4 months ago (2014-08-06 20:58:24 UTC) #37
Mark P
https://codereview.chromium.org/376333003/diff/750001/tools/metrics/histograms/histograms.xml File tools/metrics/histograms/histograms.xml (right): https://codereview.chromium.org/376333003/diff/750001/tools/metrics/histograms/histograms.xml#newcode9716 tools/metrics/histograms/histograms.xml:9716: + of the SSL error that exists when it ...
6 years, 4 months ago (2014-08-06 21:35:50 UTC) #38
radhikabhar
https://codereview.chromium.org/376333003/diff/750001/tools/metrics/histograms/histograms.xml File tools/metrics/histograms/histograms.xml (right): https://codereview.chromium.org/376333003/diff/750001/tools/metrics/histograms/histograms.xml#newcode9716 tools/metrics/histograms/histograms.xml:9716: + of the SSL error that exists when it ...
6 years, 4 months ago (2014-08-06 22:17:37 UTC) #39
Mark P
Almost there. :-) https://codereview.chromium.org/376333003/diff/790001/tools/metrics/histograms/histograms.xml File tools/metrics/histograms/histograms.xml (right): https://codereview.chromium.org/376333003/diff/790001/tools/metrics/histograms/histograms.xml#newcode9713 tools/metrics/histograms/histograms.xml:9713: + overtime, therefore one should not ...
6 years, 4 months ago (2014-08-06 22:25:57 UTC) #40
radhikabhar
https://codereview.chromium.org/376333003/diff/790001/tools/metrics/histograms/histograms.xml File tools/metrics/histograms/histograms.xml (right): https://codereview.chromium.org/376333003/diff/790001/tools/metrics/histograms/histograms.xml#newcode9713 tools/metrics/histograms/histograms.xml:9713: + overtime, therefore one should not look at the ...
6 years, 4 months ago (2014-08-06 22:35:54 UTC) #41
Mark P
histograms.xml lgtm
6 years, 4 months ago (2014-08-06 22:47:09 UTC) #42
radhikabhar
The CQ bit was checked by radhikabhar@chromium.org
6 years, 4 months ago (2014-08-06 22:52:53 UTC) #43
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-status.appspot.com/cq/radhikabhar@chromium.org/376333003/770002
6 years, 4 months ago (2014-08-06 22:54:41 UTC) #44
commit-bot: I haz the power
6 years, 4 months ago (2014-08-07 02:48:50 UTC) #45
Message was sent while issue was closed.
Change committed as 287942

Powered by Google App Engine
This is Rietveld 408576698