chrome/browser/ssl/ssl_severity_date_invalid.h - Issue 376663002: Calculate severity score for date_invalid error

Side by Side Diff: chrome/browser/ssl/ssl_severity_date_invalid.h

Issue 376663002: Calculate severity score for date_invalid error (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Added test cases Created 6 years, 5 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch

OLD	NEW
(Empty)
	1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.

	2 // Use of this source code is governed by a BSD-style license that can be

	3 // found in the LICENSE file.

	4

	5 #ifndef CHROME_BROWSER_SSL_SSL_SEVERITY_DATE_INVALID_H_

	6 #define CHROME_BROWSER_SSL_SSL_SEVERITY_DATE_INVALID_H_

	7 #endif

	8

	9 #include "base/time/time.h"

	10 #include "net/cert/x509_certificate.h"

	11

	12 // This class describes the functions which will be usefule in calcualting the

	13 // severity score when the SSL Error is Date Invalid.
	felt 2014/07/07 22:01:34 ^ make sure to read your comments, there are two b ^ make sure to read your comments, there are two big typos radhikabhar 2014/07/09 17:17:12 Done. Show quoted text On 2014/07/07 22:01:34, felt wrote: > ^ make sure to read your comments, there are two big typos Done.
	14 class SSLSeverityDateInvalid {
	felt 2014/07/07 22:01:34 I don't think you need to make a new class for eac I don't think you need to make a new class for each type of error. You're going to end up wanting to reuse things, like whether the user has visited the page before, across different error types. Instead, it probably makes sense to make a single class that has a whole bunch of generic helper functions. For example: class SSLErrorClassification { private: bool IsUserClockWrong(); } Then you can later add methods that make use of the helper functions, like: float ScoreDateInvalid() { float score = 0; if (IsUserClockWrong()) score = score + .4; } That way you can also have a method like: void RecordUMAStatistics() { if (IsUserClockWrong()) { // record UMA stat } if (IsItCloudyToday()) { // record UMA stat } } You can also move the SSLInterstitialCause and RecordSSLInterstitialCause here, from the ssl_blocking_page.cc. Then have SSLBlockingPage::GetHTMLContentsV2 invoke your method to see whether the user's time wrong. radhikabhar 2014/07/09 17:17:12 Done. Show quoted text On 2014/07/07 22:01:34, felt wrote: > I don't think you need to make a new class for each type of error. You're going > to end up wanting to reuse things, like whether the user has visited the page > before, across different error types. > > Instead, it probably makes sense to make a single class that has a whole bunch > of generic helper functions. For example: > > class SSLErrorClassification { > private: > bool IsUserClockWrong(); > } > > Then you can later add methods that make use of the helper functions, like: > > float ScoreDateInvalid() { > float score = 0; > if (IsUserClockWrong()) score = score + .4; > } > > That way you can also have a method like: > > void RecordUMAStatistics() { > if (IsUserClockWrong()) { > // record UMA stat > } > if (IsItCloudyToday()) { > // record UMA stat > } > } > > You can also move the SSLInterstitialCause and RecordSSLInterstitialCause here, > from the ssl_blocking_page.cc. Then have SSLBlockingPage::GetHTMLContentsV2 > invoke your method to see whether the user's time wrong. Done.
	15 public :

	16 // A function which calcualtes the weight of the client characteristics in

	17 // contributing towards the SSL error.

	18 float ClientCharacteristics();

	19

	20 // A function which calculates the weight of the server characteristics in

	21 // contributing towards the SSL error.

	22 float ServerCharacteristics();

	23

	24 SSLSeverityDateInvalid(base::Time current_time,

	25 net::X509Certificate* cert);

	26 ~SSLSeverityDateInvalid();

	27

	28 private:

	29

	30 float IsUserClockWrong();

	31 float TimePassedSinceExpiry();

	32

	33 // This stores the current time.

	34 base::Time current_time_;

	35

	36 // This stores the certificate.

	37 net::X509Certificate* cert_ ;

	38 FRIEND_TEST_ALL_PREFIXES(SSLSeverityDateInvalidTest, IsUserClockWrongTest);

	39 };

OLD	NEW

« no previous file with comments | « no previous file | chrome/browser/ssl/ssl_severity_date_invalid.cc » ('j') | chrome/browser/ssl/ssl_severity_date_invalid.cc » ('J')