summaryrefslogtreecommitdiffstats
path: root/net/base
diff options
context:
space:
mode:
authorwtc@chromium.org <wtc@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>2013-06-14 20:58:36 +0000
committerwtc@chromium.org <wtc@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>2013-06-14 20:58:36 +0000
commite1c53dd6070b58d996c5fb7421cf8610659cbbd1 (patch)
treeb738fb7d5b643b176ae6acd1dc62105f64cff3b0 /net/base
parent42ac1cf408ba7e4835f5f1ac0fd97bbe3ebafebd (diff)
downloadchromium_src-e1c53dd6070b58d996c5fb7421cf8610659cbbd1.zip
chromium_src-e1c53dd6070b58d996c5fb7421cf8610659cbbd1.tar.gz
chromium_src-e1c53dd6070b58d996c5fb7421cf8610659cbbd1.tar.bz2
Report the new error ERR_SSL_DECRYPT_ERROR_ALERT when we receive the
TLS decrypt_error alert message from the peer. This prevents a bad signature in our CertificateVerify message from triggering a TLS version fallback. R=agl@chromium.org,rsleevi@chromium.org BUG=248355 TEST=none Review URL: https://chromiumcodereview.appspot.com/16478003 git-svn-id: svn://svn.chromium.org/chrome/trunk/src@206491 0039d316-1c4b-4281-b951-d872f2087c98
Diffstat (limited to 'net/base')
-rw-r--r--net/base/net_error_list.h5
1 files changed, 5 insertions, 0 deletions
diff --git a/net/base/net_error_list.h b/net/base/net_error_list.h
index 4e3f020..9ebb25a 100644
--- a/net/base/net_error_list.h
+++ b/net/base/net_error_list.h
@@ -287,6 +287,11 @@ NET_ERROR(CLIENT_AUTH_CERT_TYPE_UNSUPPORTED, -151)
// first was still being generated.
NET_ERROR(ORIGIN_BOUND_CERT_GENERATION_TYPE_MISMATCH, -152)
+// An SSL peer sent us a fatal decrypt_error alert. This typically occurs when
+// a peer could not correctly verify a signature (in CertificateVerify or
+// ServerKeyExchange) or validate a Finished message.
+NET_ERROR(SSL_DECRYPT_ERROR_ALERT, -153)
+
// Certificate error codes
//
// The values of certificate error codes must be consecutive.
generated by cgit v1.1 at 2025-03-19 09:58:49 +0000