Proposal: SecurityInfo in WebRequest
#899
Open
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
philwo
pushed a commit
to philwo/chromium
that referenced
this pull request
Nov 6, 2025
This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 7, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 10, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 10, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 11, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 14, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 14, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 18, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 18, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
Author
|
@Rob--W Hi, any comments on the proposal? |
aarongable
pushed a commit
to chromium/chromium
that referenced
this pull request
Nov 19, 2025
The change parses SecurityInfo object according to specification: w3c/webextensions#899 @devlin has given approval to start working on this feature before the spec is finalized. Fixed: 460072357 Change-Id: I160c4b61c0d2da46eab10fae4e0794c7f692d26f Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7167074 Commit-Queue: Vlad Krot <[email protected]> Reviewed-by: Dominic Battre <[email protected]> Cr-Commit-Position: refs/heads/main@{#1547169}
Member
I'm still in Japan following TPAC last week. I also have not had the chance to query for API usage (which I mentioned in https://github.com/w3c/webextensions/blob/main/_minutes/2025-11-06-wecg.md ), but that does not have to block my review. The most important part is to verify that similar names and properties have equivalent meanings across browsers. I am not available until mid December, but if this is really pressing I can ask another team member to assist in the verification (or do that myself when idle). On what timeframe do you need feedback? |
Author
|
@Rob--W It is fine for me to wait a week or two. |
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 19, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
AlexeyBarabash
pushed a commit
to brave/brave-core
that referenced
this pull request
Nov 19, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 20, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 21, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 25, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 25, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 25, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 26, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 26, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 28, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
aarongable
pushed a commit
to chromium/chromium
that referenced
this pull request
Nov 28, 2025
This CL adds main logic for intercepting TLS certificate info in Web Request. @devlin has given his approval to start implementation while the proposal is still not approved. The feature is behind feature flag. The presubmit.py was modified to allow --ignore-certificate-errors in tests. The flag is necessary because tests need to check code path with expired certificate. The flag network::switches::kIgnoreCertificateErrorsSPKIList does not work for this case, because it treats invalid cert as valid, producing state="secure". Proposal: w3c/webextensions#899 Regarding low coverage reason, the mentioned files are tested via api test currently chrome/browser/extensions/api/web_request/web_request_apitest.cc and I consider it out of scope of my CL to introduce unit tests from 0 to existing files. Low-Coverage-Reason: HARD_TO_TEST Bug: 458045659 Change-Id: I29af4f38591457fb1e09c641b6385c5b7c6e8f7b Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7166297 Reviewed-by: Andrew Grieve <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Reviewed-by: Tim <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Kelvin Jiang <[email protected]> Cr-Commit-Position: refs/heads/main@{#1551464}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Nov 28, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 1, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 1, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 2, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 2, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 3, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 3, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
aarongable
pushed a commit
to chromium/chromium
that referenced
this pull request
Dec 4, 2025
This CL adds logic to proxy web socket to obtain ssl info from there. This follows previous CL - https://chromium-review.googlesource.com/c/chromium/src/+/7166297/1 Proposal: w3c/webextensions#899 Bug: 458045659 Change-Id: Id0773cee906ee5c145faae642b5de71f40e087f3 Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7165511 Reviewed-by: Finnur Thorarinsson <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1553911}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 4, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 7, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
Author
|
Hi @Rob--W |
Member
I'll try to do so, yes. I wrote "mid December" before to have a bit of buffer, but I actually put this issue on my todo list for this week. |
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 8, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 9, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 10, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 10, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 11, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 12, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
emerick
pushed a commit
to brave/brave-core
that referenced
this pull request
Dec 12, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 15, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
Rob--W
reviewed
Dec 15, 2025
Member
Rob--W
left a comment
Rob--W
left a comment
There was a problem hiding this comment.
Thanks for the patience; this feedback took longer than expected because I wanted to complete the API usage analysis first (shared in the issue at #882 (comment)).
| /** | ||
| * State of the connection. | ||
| */ | ||
| state: ConnectionState; |
Member
There was a problem hiding this comment.
As commented in #882 (comment), just state is not enough to tell the difference between trusted and untrusted. Can we add at least isUntrusted?
I see that you have specified the "broken" behavior for the scenario of "user has explicitely allowed it in the browser UI", below. This is not what Firefox has currently implemented. "broken" is a really broken state; if the certificate is good other than the expiry date, and the user accepted it, then the state is considered "secure" in Firefox.
| sha256: string; | ||
| } | ||
|
|
||
| export interface CertificateInfo { |
Member
There was a problem hiding this comment.
Firefox includes more properties in certificateInfo. In theory, all properties could be parsed from the certificate information with a JS library, except for isBuiltInRoot. This bit is not inherently a part of the certificate itself, but of the browser.
Question: Did you consciously choose to omit the other documented fields? Was there any particular reason to do so?
extraInfoSpec is specified to accept securityInfo and securityInfoRawDer, but without other properties the securityInfo option is of limited use. Most extensions don't pass the rawDER option
Author
There was a problem hiding this comment.
"Did you consciously choose to omit the other documented fields? Was there any particular reason to do so?" - So I only included fields necessary to accomplish "google internal" goal. I did not evaluate deeply how extension devs would use it. Thank you for this research.
Author
There was a problem hiding this comment.
I agree with you on this: extraInfoSpec is specified to accept securityInfo and securityInfoRawDer, but without other properties the securityInfo option is of limited use. Most extensions don't pass the rawDER option
However, rawDER is absolute must to include for "google-internal" needs. And yes, securityInfo then is not super useful, only fingerprint and state.
Is it a blocker to not have enough fields?
| * To receive this information, an extension **must** include `"securityInfo"` or `"securityInfoRawDer"` in the `extraInfoSpec` array when calling `addListener`. This opt-in design prevents performance overhead for the majority of extensions that don't need this data. | ||
|
|
||
| * The `securityInfo` object will only be populated for requests made over a secure protocol (e.g., HTTPS, WSS) where the TLS/QUIC handshake has successfully completed or also in case of certificate errors. | ||
| Browsers interrupt connections when there's a certificate error, unless user has explicitely allowed it in the browser UI, only in this case it is possible to have SecurityInfo with `state = "broken"`. |
Member
There was a problem hiding this comment.
I have commented elsewhere; in Firefox state is still "secure"` if the user intentionally accepted an expired certificate.
| * The `securityInfo` object will only be populated for requests made over a secure protocol (e.g., HTTPS, WSS) where the TLS/QUIC handshake has successfully completed or also in case of certificate errors. | ||
| Browsers interrupt connections when there's a certificate error, unless user has explicitely allowed it in the browser UI, only in this case it is possible to have SecurityInfo with `state = "broken"`. | ||
|
|
||
| * `certificates` - will contain only the leaf server certificate. This is done for future extensibility and Firefox API compatibility, because there they also provide a leaf if [certificateChain](https://developer.mozilla.org/en-US/docs/Mozilla/Add-ons/WebExtensions/API/webRequest/getSecurityInfo#certificatechain) is not included in getSecurityInfo options. |
Member
There was a problem hiding this comment.
FYI: the majority of extensions calling getSecurityInfo also set the certificateChain option to true. Not including all certificate information may be too limiting in practice.
Author
There was a problem hiding this comment.
I totally agree, but still I would prefer to leave this for another iteration of the API, which was developed to be compatible with this option.
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 16, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
|
thanks for this |
emerick
pushed a commit
to brave/brave-core
that referenced
this pull request
Dec 19, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
cdesouza-chromium
added a commit
to brave/brave-core
that referenced
this pull request
Dec 21, 2025
This affects the override we have, however there is no use for this argument in our use-case. Chromium changes: https://chromium.googlesource.com/chromium/src/+/c62fa5cbaa4542755128cda06cfd1ea813e41103 commit c62fa5cbaa4542755128cda06cfd1ea813e41103 Author: Vlad Krot <[email protected]> Date: Thu Nov 6 03:07:35 2025 -0800 Add ssl info to TrustedHeaderClient This change allows to get ssl_info in TrustedHeaderClient, which is used by url_loader and web_socket. The change won't impact performance of url_loader or web_socket, that does not use trusted_headers_client, which is only used in two places, and this is where ssl_info is needed for extensions api in future: extensions/browser/api/web_request/web_request_proxying_websocket.cc extensions/browser/api/web_request/web_request_proxying_url_loader_factory.cc Extensions proposal: w3c/webextensions#899 Isolated Web App API proposal: explainers-by-googlers/security-info-web-request#1 I have added low coverage reason because websocket.cc is not tested via unit tests, but with chrome/browser/net/websocket_browsertest.cc. It is out of scope of my CL to investigate why unit tests are absent for websocket.cc. Change-Id: I40f0fcb40db7a5efeaaf18276d6cc9bf6c7b48e3 Bug: 458045659 Low-Coverage-Reason: HARD_TO_TEST Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7106780 Reviewed-by: Adam Rice <[email protected]> Reviewed-by: Arthur Sonzogni <[email protected]> Reviewed-by: Finnur Thorarinsson <[email protected]> Reviewed-by: Andrew Rayskiy <[email protected]> Commit-Queue: Vlad Krot <[email protected]> Cr-Commit-Position: refs/heads/main@{#1541131}
Co-authored-by: Rob Wu <[email protected]>
…cell/webextensions into security_info_web_request
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
The proposal following discussion at #882