Return specific cert verification errors on Android

net/android/cert_verify_result_android_list.h

Index: net/android/cert_verify_result_android_list.h
diff --git a/net/android/cert_verify_result_android_list.h b/net/android/cert_verify_result_android_list.h
new file mode 100644
index 0000000000000000000000000000000000000000..31535b5f2dca47f63176b9adfc22a6cf862f33a0
--- /dev/null
+++ b/net/android/cert_verify_result_android_list.h
@@ -0,0 +1,27 @@
+// Copyright (c) 2013 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+// This file intentionally does not have header guards, it's included
+// inside a macro to generate enum.
+
+// This file contains the list of certificate verification results returned
+// from Java side to the C++ side.
+
+// Certificate verification could not be conducted.
+CERT_VERIFY_RESULT_ANDROID(FAILED, -1)
+
+// Certificate is trusted.
+CERT_VERIFY_RESULT_ANDROID(OK, 0)
+
+// Certificate is not trusted due to non-trusted root of the certificate chain.
+CERT_VERIFY_RESULT_ANDROID(NO_TRUSTED_ROOT, 1)
+
+// Certificate is not trusted because it has expired.
+CERT_VERIFY_RESULT_ANDROID(EXPIRED, 2)
+
+// Certificate is not trusted because it is not valid yet.
+CERT_VERIFY_RESULT_ANDROID(NOT_YET_VALID, 3)
+
+// Certificate is not trusted because it could not be parsed.
+CERT_VERIFY_RESULT_ANDROID(UNABLE_TO_PARSE, 4)

[Ryan Sleevi, 2013/02/13 01:41:39]

For the values here, it seems better if you used either the net_error_list style
numbering (that is: consistently negative values) or you used the cert_status
flag style numbering (that is, a single bit for each possible error).

[ppi, 2013/02/13 12:34:56]

Thanks, I have moved to non-positive numbering (0 for OK, negative integers for
errors) in patch set 2.