Chromium Code Reviews Chromium Code Reviews
Issue 493793003:
Align SSLClientSocketOpenSSL and SSLClientSocketNSS histograms. (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src| Index: net/socket/ssl_client_socket_openssl.cc |
| diff --git a/net/socket/ssl_client_socket_openssl.cc b/net/socket/ssl_client_socket_openssl.cc |
| index ed1138f50dd4e08c89fe76ff7a38a29328f6e24a..955dfe0a538a56324e7836876ee4393bd74ba78b 100644 |
| --- a/net/socket/ssl_client_socket_openssl.cc |
| +++ b/net/socket/ssl_client_socket_openssl.cc |
| @@ -489,6 +489,8 @@ void SSLClientSocketOpenSSL::Disconnect() { |
| cert_key_types_.clear(); |
| client_auth_cert_needed_ = false; |
| + start_cert_verification_time_ = base::TimeTicks(); |
| + |
| npn_status_ = kNextProtoUnsupported; |
| npn_proto_.clear(); |
| @@ -580,11 +582,6 @@ bool SSLClientSocketOpenSSL::GetSSLInfo(SSLInfo* ssl_info) { |
| ssl_info->channel_id_sent = WasChannelIDSent(); |
| ssl_info->pinning_failure_log = pinning_failure_log_; |
| - RecordChannelIDSupport(channel_id_service_, |
| - channel_id_xtn_negotiated_, |
| - ssl_config_.channel_id_enabled, |
| - crypto::ECPrivateKey::IsSupported()); |
| - |
| const SSL_CIPHER* cipher = SSL_get_current_cipher(ssl_); |
| CHECK(cipher); |
| ssl_info->security_bits = SSL_CIPHER_get_bits(cipher, NULL); |
| @@ -593,11 +590,8 @@ bool SSLClientSocketOpenSSL::GetSSLInfo(SSLInfo* ssl_info) { |
| SSL_CIPHER_get_id(cipher), 0 /* no compression */, |
| GetNetSSLVersion(ssl_)); |
| - bool peer_supports_renego_ext = !!SSL_get_secure_renegotiation_support(ssl_); |
| - if (!peer_supports_renego_ext) |
| + if (!SSL_get_secure_renegotiation_support(ssl_)) |
| ssl_info->connection_status |= SSL_CONNECTION_NO_RENEGOTIATION_EXTENSION; |
| - UMA_HISTOGRAM_ENUMERATION("Net.RenegotiationExtensionSupported", |
| - implicit_cast<int>(peer_supports_renego_ext), 2); |
| if (ssl_config_.version_fallback) |
| ssl_info->connection_status |= SSL_CONNECTION_VERSION_FALLBACK; |
| @@ -890,6 +884,11 @@ int SSLClientSocketOpenSSL::DoHandshake() { |
| } |
| } |
| + RecordChannelIDSupport(channel_id_service_, |
| + channel_id_xtn_negotiated_, |
| + ssl_config_.channel_id_enabled, |
| + crypto::ECPrivateKey::IsSupported()); |
| + |
| // Verify the certificate. |
| const bool got_cert = !!UpdateServerCert(); |
| DCHECK(got_cert); |
| @@ -979,6 +978,7 @@ int SSLClientSocketOpenSSL::DoChannelIDLookupComplete(int result) { |
| int SSLClientSocketOpenSSL::DoVerifyCert(int result) { |
| DCHECK(server_cert_.get()); |
| + DCHECK(start_cert_verification_time_.is_null()); |
| GotoState(STATE_VERIFY_CERT_COMPLETE); |
| CertStatus cert_status; |
| @@ -990,6 +990,8 @@ int SSLClientSocketOpenSSL::DoVerifyCert(int result) { |
| return OK; |
| } |
| + start_cert_verification_time_ = base::TimeTicks::Now(); |
| + |
| int flags = 0; |
| if (ssl_config_.rev_checking_enabled) |
| flags |= CertVerifier::VERIFY_REV_CHECKING_ENABLED; |
| @@ -1014,6 +1016,15 @@ int SSLClientSocketOpenSSL::DoVerifyCert(int result) { |
| int SSLClientSocketOpenSSL::DoVerifyCertComplete(int result) { |
| verifier_.reset(); |
| + if (!start_cert_verification_time_.is_null()) { |
| + base::TimeDelta verify_time = |
| + base::TimeTicks::Now() - start_cert_verification_time_; |
| + if (result == OK) |
| + UMA_HISTOGRAM_TIMES("Net.SSLCertVerificationTime", verify_time); |
|
Alexei Svitkine (slow)
2014/08/22 18:49:14
Nit: Bad indentation.
davidben
2014/08/22 23:03:20
Done.
|
| + else |
| + UMA_HISTOGRAM_TIMES("Net.SSLCertVerificationTimeError", verify_time); |
| + } |
| + |
| bool sni_available = ssl_config_.version_max >= SSL_PROTOCOL_VERSION_TLS1 || |
| ssl_config_.version_fallback; |
| const CertStatus cert_status = server_cert_verify_result_.cert_status; |
