This repository has been archived by the owner on Apr 3, 2020. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 212
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Measure inappropriate_fallback alerts from Google.
Some fraction of successful connections use the fallback, but only due to a spurious network failure. To estimate this fraction, compare handshakes to Google servers which succeed against those that fail with an inappropriate_fallback alert. Google servers are known to implement FALLBACK_SCSV, so a spurious network failure while connecting would trigger the fallback, successfully connect, but fail with this alert. BUG=459690 Review URL: https://codereview.chromium.org/1147453003 Cr-Commit-Position: refs/heads/master@{#330425} (cherry picked from commit 701ca98) [email protected],[email protected] Review URL: https://codereview.chromium.org/1148373002 Cr-Commit-Position: refs/branch-heads/2403@{#37} Cr-Branched-From: f54b809-refs/heads/master@{#330231}
- Loading branch information
Showing
3 changed files
with
44 additions
and
9 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -19457,6 +19457,17 @@ Therefore, the affected-histogram name has to have at least one dot in it. | |
</summary> | ||
</histogram> | ||
|
||
<histogram name="Net.GoogleConnectionInappropriateFallback" | ||
enum="BooleanInappropriateFallback"> | ||
<owner>[email protected]</owner> | ||
<summary> | ||
Records a sample for each HTTPS request to a Google server that either | ||
succeeded or received an inappropriate_fallback alert. This is used to | ||
estimate how frequently the fallback is used to recover from a spurious | ||
network failure. | ||
</summary> | ||
</histogram> | ||
|
||
<histogram name="Net.GoogleConnectionUsedSSLVersionFallback" | ||
enum="FallbackSSLVersion"> | ||
<obsolete> | ||
|
@@ -19477,8 +19488,8 @@ Therefore, the affected-histogram name has to have at least one dot in it. | |
<summary> | ||
For each successful HTTPS request to a Google server, whether it used the | ||
SSL version fallback. The value indicates the SSL version the request fell | ||
back on. Since Google servers support TLS 1.2, any fallback is an indication | ||
of network middleware problems. | ||
back on. Since Google servers support TLS 1.2 and FALLBACK_SCSV, any | ||
fallback is an indication of a broken local SSL MITM proxy. | ||
</summary> | ||
</histogram> | ||
|
||
|
@@ -48265,6 +48276,11 @@ Therefore, the affected-histogram name has to have at least one dot in it. | |
<int value="1" label="Ignored"/> | ||
</enum> | ||
|
||
<enum name="BooleanInappropriateFallback" type="int"> | ||
<int value="0" label="Handshake successful"/> | ||
<int value="1" label="inappropriate_fallback alert"/> | ||
</enum> | ||
|
||
<enum name="BooleanIsMobileOptimized" type="int"> | ||
<int value="0" label="Not mobile optimized web page"/> | ||
<int value="1" label="Mobile optimized web page"/> | ||
|