| OLD | NEW |
|---|
| 1 // Copyright (c) 2011 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2011 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 // | 4 // |
| 5 // This protobuffer is intended to store reports from Chrome users of | 5 // This protobuffer is intended to store reports from Chrome users of |
| 6 // certificate pinning errors. A report will be sent from Chrome when it gets | 6 // certificate pinning errors. A report will be sent from Chrome when it gets |
| 7 // e.g. a certificate for google.com that chains up to a root CA not expected by | 7 // e.g. a certificate for google.com that chains up to a root CA not expected by |
| 8 // Chrome for that origin, such as DigiNotar (compromised in July 2011), or | 8 // Chrome for that origin, such as DigiNotar (compromised in July 2011), or |
| 9 // other pinning errors such as a blacklisted cert in the chain. The | 9 // other pinning errors such as a blacklisted cert in the chain. The |
| 10 // report from the user will include the hostname being accessed, | 10 // report from the user will include the hostname being accessed, |
| (...skipping 20 matching lines...) Expand all Loading... |
| 31 required string cert_chain = 2; | 31 required string cert_chain = 2; |
| 32 // The time (in usec since the epoch) when the client attempted to access the | 32 // The time (in usec since the epoch) when the client attempted to access the |
| 33 // site generating the pinning error. | 33 // site generating the pinning error. |
| 34 required int64 time_usec = 3; | 34 required int64 time_usec = 3; |
| 35 // public_key_hash contains the string forms of the hashes calculated for | 35 // public_key_hash contains the string forms of the hashes calculated for |
| 36 // the chain. (I.e. "sha1/<base64 data>".) | 36 // the chain. (I.e. "sha1/<base64 data>".) |
| 37 repeated string public_key_hash = 4; | 37 repeated string public_key_hash = 4; |
| 38 // pin contains the string forms of the pins that were matched against for | 38 // pin contains the string forms of the pins that were matched against for |
| 39 // this host. | 39 // this host. |
| 40 repeated string pin = 5; | 40 repeated string pin = 5; |
| 41 optional string unverified_server_cert_chain = 6; |
| 41 }; | 42 }; |
| 42 | 43 |
| 43 // The response sent back to the user. | 44 // The response sent back to the user. |
| 44 message CertLoggerResponse { | 45 message CertLoggerResponse { |
| 45 enum ResponseCode { | 46 enum ResponseCode { |
| 46 OK = 1; | 47 OK = 1; |
| 47 MALFORMED_CERT_DATA = 2; | 48 MALFORMED_CERT_DATA = 2; |
| 48 HOST_CERT_DONT_MATCH = 3; | 49 HOST_CERT_DONT_MATCH = 3; |
| 49 ROOT_NOT_RECOGNIZED = 4; | 50 ROOT_NOT_RECOGNIZED = 4; |
| 50 ROOT_NOT_UNEXPECTED = 5; | 51 ROOT_NOT_UNEXPECTED = 5; |
| 51 OTHER_ERROR = 6; | 52 OTHER_ERROR = 6; |
| 52 }; | 53 }; |
| 53 required ResponseCode response = 1; | 54 required ResponseCode response = 1; |
| 54 }; | 55 }; |
| 55 | 56 |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 949633002:
Include both certificate chains in invalid cert reporting (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master