Introduce networkingPrivate.getCertificateLists

extensions/browser/api/networking_private/networking_private_api.cc

Index: extensions/browser/api/networking_private/networking_private_api.cc
diff --git a/extensions/browser/api/networking_private/networking_private_api.cc b/extensions/browser/api/networking_private/networking_private_api.cc
index eee73564bfce9f0ecdcc3e709794cb657a7c76ad..3498749b368be74e5f70a2dcb88b99b219ecd99a 100644
--- a/extensions/browser/api/networking_private/networking_private_api.cc
+++ b/extensions/browser/api/networking_private/networking_private_api.cc
@@ -1055,4 +1055,18 @@ NetworkingPrivateGetGlobalPolicyFunction::Run() {
       ArgumentList(private_api::GetGlobalPolicy::Results::Create(*policy)));
 }
 
+////////////////////////////////////////////////////////////////////////////////
+// NetworkingPrivateGetCertificateListsFunction
+
+NetworkingPrivateGetCertificateListsFunction::
+    ~NetworkingPrivateGetCertificateListsFunction() {}
+
+ExtensionFunction::ResponseAction
+NetworkingPrivateGetCertificateListsFunction::Run() {
+  std::unique_ptr<base::DictionaryValue> certificate_lists(

[tbarzic, 2017/05/17 22:35:57]

I guess we're OK with exposing this as part of the public networking.onc API?

[stevenjb, 2017/05/18 16:30:57]

semi-public :P It doesn't add any more vulnerability than, say, providing access
to the proxy configuration.

+      GetDelegate(browser_context())->GetCertificateLists());
+  DCHECK(certificate_lists);
+  return RespondNow(OneArgument(std::move(certificate_lists)));
+}
+
 }  // namespace extensions