New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 763945 link

Starred by 0 users

Issue metadata

Status: Duplicate
Merged: issue 757279
Owner: ----
Closed: Sep 2017
Cc:
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux , Windows , Mac
Pri: 3
Type: Feature
Team-Security-UX



Sign in to add a comment

https 404 URL incorrectly shows connection is not secure

Reported by 13hu...@gmail.com, Sep 11 2017

Issue description

UserAgent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.79 Safari/537.36

Steps to reproduce the problem:
Visit a secure page that is 404 with no response data:
https://autosuggest.search.aol.com

What is the expected behavior?
Shows secure lock and "connection is secure" if site has working and strong HTTPS.

What went wrong?
"Your connection to this site is not secure".

Did this work before? N/A 

Chrome version: 61.0.3163.79  Channel: stable
OS Version: 
Flash Version:
 
chrome_404_https_insecure.png
35.2 KB View Download
Labels: Needs-Triage-M61
Cc: pbomm...@chromium.org
Components: -UI Internals>Network>Certificate
Labels: -Needs-Triage-M61 Needs-Bisect M-63 OS-Mac OS-Windows
Status: Untriaged (was: Unconfirmed)
Able t reproduce the issue on Latest Chrome stable i.e, 61.0.3163.79 on Windows 7/10, Mac and Linux.


Note : I see similar behavior on previous stable as well i.e., 60.0.3112.113
Cc: lgar...@chromium.org
Components: -Internals>Network>Certificate UI>Browser>Bubbles>PageInfo Internals>Network>SSL

Comment 4 Deleted

Cc: zakerinasab@chromium.org
Components: -Internals>Network>SSL -UI>Browser>Bubbles>PageInfo Internals>PageSecurityState
Labels: -Type-Bug -Pri-2 -M-63 Pri-3 Type-Feature
If I recall correctly, we've always shown net errors as neutral (or at least not secure) rather than secure. I don't know if there is an open bug specifically about higher-level HTTP error codes when the rest of the connection was secure, so I'll mark this as a new feature request.


zakerinasab@: Is comment #4 associated to the wrong bug?
Cc: pnangunoori@chromium.org
Labels: hasbisect-per-revision
Owner: mmenke@chromium.org
Status: Assigned (was: Untriaged)
Tested on latest Chrome Stable #61.0.3163.79,  Canary # 63.0.3213.0 on Windows 7, Mac 10.12.6 and Ubuntu 14.04 and able to reproduce the issue.

Using the per-revision bisect providing the bisect results,
Good build: 54.0.2817.0 (409416)
Bad build: 54.0.2819.0 (409769)

You are probably looking for a change made after 409565 (known good), but no later than 409568 (first known bad).

CHANGELOG URL:
The script might not always return single CL as suspect as some perf builds might get missing due to failure.

https://chromium.googlesource.com/chromium/src/+log/1a4008ea99084ea421a29e6b3500dc61faef7eb5..8e935ed8406619b0408bddcc8dba82548b7bdf91

https://chromium.googlesource.com/chromium/src/+/d485e9156b72ea4bb4682ffbf73ea0eb248ecb6c

From the CL above, assigning the issue to the owner concerned.

@mmenke: Could you please look into the issue, pardon me if it has nothing to do with your changes and if possible please assign it to owner concerned.

Review-URL: https://codereview.chromium.org/2190463008

Comment 7 by mmenke@chromium.org, Sep 12 2017

Cc: mmenke@chromium.org
Owner: ----
Status: Untriaged (was: Assigned)
This is the case for all network error pages as well (i.e., it was the case for error pages well before this).  I don't understand navigation or the security information well enough to change this, regardless, and I'm not entirely sure we want to.
Cc: -zakerinasab@chromium.org
lgarron@: yes. The bug number was wrong. I deleted the comments.
Labels: -Needs-Bisect
Mergedinto: 757279
Status: Duplicate (was: Untriaged)

Sign in to add a comment