Google Git
Sign in
chromium / chromium / src / third_party / tlslite / 1184aeaa1c776bcfed46d24e7ce18035886b0662
commit1184aeaa1c776bcfed46d24e7ce18035886b0662[log] [tgz]
authordavidben <davidben@chromium.org>Wed Apr 12 22:23:34 2017
committerCommit bot <commit-bot@chromium.org>Wed Apr 12 22:23:34 2017
tree9c4af46bb258087367d3b3e4d4b3950389f4abc2
parentebdb58d848dc3b4bcd43f7fd62c6877f00e781de [diff]
Add a dedicated error code for TLS 1.3 interference.

From the previous TLS 1.3 launch attempt, we learned that many
firewall, proxy, etc., products are buggy and interfere with TLS 1.3's
deployment, holding back a security and performance improvement across
the web.

To make diagnosing such issues easier, this CL implements a dedicated
error code based on a retry probe. On SSL connection failure, if TLS 1.3
was enabled and the error code is one of a handful which, in the past,
have potentially signaled version intolerance, we retry the connection
with TLS 1.3 disabled. If this connection succeeds, we still reject the
connection (otherwise a network attacker can break the security of the
version negotiation, cf. POODLE) and return
ERR_SSL_VERSION_INTERFERENCE.

This error code should hopefully give an easier target for search
metrics and others, as we otherwise cannot reliably classify
individual errors.

Unfortunately, such a probe is inherently flaky and is itself not
reliable. This error could mean one of three things:

1. This is a transient network error that will be resolved when the user
   reloads.

2. The server is buggy and does not implement TLS version negotiation
   correctly.

3. The user is behind a buggy network middlebox, firewall, or proxy which is
   interfering with TLS 1.3.

Based on server side probes, the lack of TLS 1.3 error reports until it
was enabled on the server, and a protocol change in TLS 1.3 intended to
avoid this, we do not believe (2) is common. (The difference between (2)
and (3) is whether the servers or middleboxes are at fault here.)

(1) is unavoidable. There is no way to reliably distinguish (1) and (3).
We can only make (1) less and less likely by spamming the user's network
with probes, which is undesirable.

Accordingly, though the error string is short and easily searchable, I
have left the network error page fairly non-descript, borrowing from the
ERR_CONNECTION_FAILED text, but with SUGGEST_PROXY_CONFIG and friends
enabled, to hint that users should, if their default reaction of mashing
reload (or the auto-reload feature) doesn't work, look there.

Screentshot:
https://drive.google.com/open?id=0B2ImyA6KAoPULVp3V0xPVEJHQms

BUG=694593,658863
CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.linux:closure_compilation

Review-Url: https://codereview.chromium.org/2800853008
Cr-Original-Commit-Position: refs/heads/master@{#464173}
Cr-Mirrored-From: https://chromium.googlesource.com/chromium/src
Cr-Mirrored-Commit: 095ebb57de0053925c4900bace0458f38bf5e051
5 files changed
tree: 9c4af46bb258087367d3b3e4d4b3950389f4abc2
  1. patches/
  2. scripts/
  3. tests/
  4. tlslite/
  5. BUILD.gn
  6. LICENSE
  7. Makefile
  8. MANIFEST.in
  9. OWNERS
  10. PKG-INFO
  11. README
  12. README.chromium
  13. setup.py