New issue
Advanced search Search tips

Issue 729305 link

Starred by 4 users

Issue metadata

Status: Archived
Owner: ----
Closed: Oct 2017
Cc:
Components:
EstimatedDays: ----
NextAction: ----
OS: Windows
Pri: 3
Type: Bug



Sign in to add a comment

too many websites blocked

Reported by criss...@msn.com, Jun 3 2017

Issue description

<b>Chrome Version       : <Copy from: 'about:version'></b>
OS Version: 10.0
URLs (if applicable) :https://en-gb.facebook.com/ ; https://uk.yahoo.com/ ; https://en.wikipedia.org/
Other browsers tested:
  Add OK or FAIL after other browsers where you have tested this issue:
     Safari 5:OK
  Firefox 4.x:OK
     IE 7/8/9:

What steps will reproduce the problem?
1.
2.
3.

What is the expected result?


What happens instead of that?


Please provide any additional information below. Attach a screenshot if
possible.

please note the previous - https://productforums.google.com/forum/?utm_medium=email&utm_source=footer#!msg/chrome/iqjrlniX1nE/Qtg55Q8TAwAJ

 
bugscreenshot.png
37.3 KB View Download
Cc: nyerramilli@chromium.org
 Issue 729303  has been merged into this issue.
Labels: Needs-Feedback
Some software or hardware is likely intercepting your connections.  Please attach a net-internals log covering a blocked browse attempt:
http://dev.chromium.org/for-testers/providing-network-details
Components: Internals>Network>SSL
Labels: -Needs-Feedback
Reporter provided the attached net-internals log which demonstrates ERR_CERT_INVALID.
chrome-net-export-log (14).json
1.2 MB View Download
Labels: Needs-Feedback
Does it work in IE/Edge?

I can confirm that the certs resulting in ERR_CERT_INVALID are legitimate (not interception) certificates, so my first instinct is to suggest perhaps the local certificate store has been corrupted.

If you run Windows Update, does the problem persist?
Could you please let us know if the issue still persists? If it does, does it work in IE/Edge? Thank you!

Comment 6 by eroman@chromium.org, Jun 29 2017

Components: -Internals>Network>SSL Internals>Network>Certificate
Labels: -Needs-Feedback
(The reporter has provided more information in the forums already)

To summarize:

 * We have confirmed that the certificates seen by Chrome in the TLS handshake are the authentic Facebook ones (comment #3)

 * The user's cert store includes the needed root,  "DigiCert High Assurance EV Root CA"  (https://productforums.google.com/d/msg/chrome/iqjrlniX1nE/Qtg55Q8TAwAJ). The portion of the thumbprint visible in this screenshot is correct, so it is probably correct (https://15104268797498972201.googlegroups.com/attach/313a27db42049/DCH2.png?part=0.1&view=1&vt=ANaJVrHVqYHPlbtj7GPbIZpqfV--Bl2M6b3VnerXeSxzZZe50Rdx82cHccSZFy7Huuxbwp3KQdfYFQzbiGk1oCZyFE-AgFJDKprq1EWpkG4xSj9VvEiI8YE)

 * Edge and Firefox are working (although sounds like they experience different problems) - (https://productforums.google.com/d/msg/chrome/iqjrlniX1nE/btl7yD3dAAAJ)

 * Upgrading to Windows 10 did not resolve the problems


My guess is something is broken at the OS level, and will require a more forceful re-install of the OS. I don't think this is a Chrome specific issue. Although it is not clear why Edge would be working in this circumstance.
Possible next steps, which may be overly technical, would be enabling CAPI2 logging ( https://blogs.msdn.microsoft.com/benjaminperkins/2013/09/30/enable-capi2-event-logging-to-troubleshoot-pki-and-ssl-certificate-issues/ ) and attaching an export of the event logs after reproducing both in Edge and Chrome.

Comment 8 by ajha@chromium.org, Sep 27 2017

Cc: ajha@chromium.org
Labels: Needs-Milestone Needs-Feedback
There have been no update on this for long.

@reporter: If this is still an issue and if possible, could you please update the thread as per C#7 and attach the log

Thanks in advance!
Status: Archived (was: Unconfirmed)
Archiving bug due to lack of feedback from reporter. If the issue still persists, please create a new bug.

Sign in to add a comment