Extend the webRequest.onCompleted event details object with TLS/SSL information

extensions/browser/api/web_request/web_request_event_details.cc

 // Copyright 2016 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "extensions/browser/api/web_request/web_request_event_details.h"
 
 #include "base/callback.h"
 #include "base/strings/string_number_conversions.h"
 #include "content/public/browser/browser_thread.h"
 #include "content/public/browser/render_frame_host.h"
@@ skipping 181 matching lines @@
 void WebRequestEventDetails::OnDeterminedFrameData(
     std::unique_ptr<WebRequestEventDetails> self,
     const DeterminedFrameDataCallback& callback,
     const ExtensionApiFrameIdMap::FrameData& frame_data) {
   dict_.SetInteger(keys::kTabIdKey, frame_data.tab_id);
   dict_.SetInteger(keys::kFrameIdKey, frame_data.frame_id);
   dict_.SetInteger(keys::kParentFrameIdKey, frame_data.parent_frame_id);
   callback.Run(std::move(self));
 }
 
+void WebRequestEventDetails::SetSSLInfo(const net::URLRequest* request) {
+  const net::SSLInfo ssl_info = request->ssl_info();
+  base::DictionaryValue* info_dict = new base::DictionaryValue();
+
+  info_dict->Set(keys::kConnectionInfoKey,
+                 helpers::ExtractConnectionInfo(ssl_info));
+
+  base::DictionaryValue* built_dict = new base::DictionaryValue();
+  built_dict->SetBoolean(keys::kCertificateIssuedByKnownRootKey,
+                         ssl_info.is_issued_by_known_root);
+  built_dict->Set(keys::kChainKey,
+                  helpers::ExtractCertificateChain(ssl_info.cert));
+
+  base::ListValue* errors =
+      helpers::ParseCertificateStatusErrors(ssl_info.cert_status);
+  built_dict->SetBoolean(keys::kCertificateValidKey,
+                         ssl_info.is_valid() && errors->GetSize() == 0);
+  if (errors->GetSize() != 0)
+    built_dict->Set(keys::kErrorsKey, errors);
+
+  if (ssl_info.cert_status & net::CERT_STATUS_NON_UNIQUE_NAME)
+    built_dict->SetBoolean(keys::kNonUniqueNameKey, true);
+  if (ssl_info.cert_status & net::CERT_STATUS_SHA1_SIGNATURE_PRESENT)
+    built_dict->SetBoolean(keys::kSHA1SignaturePresentKey, true);
+  if (ssl_info.cert_status & net::CERT_STATUS_CT_COMPLIANCE_FAILED)
+    built_dict->SetBoolean(keys::kCTComplianceFailedKey, true);
+
+  built_dict->SetBoolean(keys::kEVCertificateKey,
+                         (ssl_info.cert_status & net::CERT_STATUS_IS_EV));
+  built_dict->SetBoolean(
+      keys::kRevocationCheckingEnabledKey,
+      (ssl_info.cert_status & net::CERT_STATUS_REV_CHECKING_ENABLED));
+
+  info_dict->Set(keys::kBuiltChainKey, built_dict);
+  info_dict->Set(keys::kSentChainKey,
+                 helpers::ExtractCertificateChain(ssl_info.unverified_cert));
+
+  dict_.Set(keys::kSSLInfoKey, info_dict);
+}
+
 }  // namespace extensions