Added CreateOriginBound method to x509_certificate.h.

net/base/x509_certificate.h

Index: net/base/x509_certificate.h
diff --git a/net/base/x509_certificate.h b/net/base/x509_certificate.h
index 4c8dd01a99e7cb5dd6da227f5fd51b7f1f13f176..2f1b5fbad3201ffb1aee071bdd5145a0c1c953bc 100644
--- a/net/base/x509_certificate.h
+++ b/net/base/x509_certificate.h
@@ -187,6 +187,24 @@ class NET_EXPORT X509Certificate
                                            uint32 serial_number,
                                            base::TimeDelta valid_duration);
 
+  // Create an origin bound certificate containing the public key in |key|.
+  // Subject, web origin, serial number and validity period are given as

[wtc, 2011/08/19 18:18:08]

Remove "Subject, " from this line.

Remove lines 195-199.

Remove the |subject| input argument from CreateOriginBound().

[mdietz, 2011/08/22 20:09:00]

Done.

+  // parameters. The certificate is signed by the private key in |key|.
+  // The hashing algorithm for the signature is SHA-1.
+  //
+  // |subject| is a distinguished name defined in RFC4514.
+  //
+  // An example:
+  // CN=Michael Wong,O=FooBar Corporation,DC=foobar,DC=com
+  //
+  // See Internet Draft draft-balfanz-tls-obc-00 for more details:
+  // http://balfanz.github.com/tls-obc-spec/draft-balfanz-tls-obc-00.html
+  static X509Certificate* CreateOriginBound(crypto::RSAPrivateKey* key,
+                                            const std::string& subject,
+                                            const std::string& origin,
+                                            uint32 serial_number,
+                                            base::TimeDelta valid_duration);
+
   // Appends a representation of this object to the given pickle.
   void Persist(Pickle* pickle);