Instantiate OriginBoundCertService in relevant places and do plumbing to pass it down to HttpNetw...

chrome/browser/io_thread.cc

Index: chrome/browser/io_thread.cc
===================================================================
--- chrome/browser/io_thread.cc	(revision 94628)
+++ chrome/browser/io_thread.cc	(working copy)
@@ -36,12 +36,14 @@
 #include "content/common/url_fetcher.h"
 #include "net/base/cert_verifier.h"
 #include "net/base/cookie_monster.h"
+#include "net/base/default_origin_bound_cert_store.h"
 #include "net/base/dnsrr_resolver.h"
 #include "net/base/host_cache.h"
 #include "net/base/host_resolver.h"
 #include "net/base/host_resolver_impl.h"
 #include "net/base/mapped_host_resolver.h"
 #include "net/base/net_util.h"
+#include "net/base/origin_bound_cert_service.h"
 #include "net/dns/async_host_resolver.h"
 #include "net/ftp/ftp_network_layer.h"
 #include "net/http/http_auth_filter.h"
@@ -254,7 +256,10 @@
   context->set_ftp_transaction_factory(
       globals->proxy_script_fetcher_ftp_transaction_factory.get());
   // In-memory cookie store.
-  context->set_cookie_store(new net::CookieMonster(NULL, NULL));
+  context->set_cookie_store(globals->cookie_store.get());
+  // In-memory origin-bound cert store.

[wtc, 2011/08/09 17:43:45]

The "In-memory cookie store" and "In-memory origin-bound cert store"
comments should now be removed from ConstructProxyScriptFetcherContext
and ConstructSystemRequestContext.

These comments should be moved to lines 503-506, where
we create the in-memory cookie store and origin-bound
cert store.

+  context->set_origin_bound_cert_service(
+      globals->origin_bound_cert_service.get());
   context->set_network_delegate(globals->system_network_delegate.get());
   return context;
 }
@@ -276,7 +281,10 @@
   context->set_ftp_transaction_factory(
       globals->system_ftp_transaction_factory.get());
   // In-memory cookie store.
-  context->set_cookie_store(new net::CookieMonster(NULL, NULL));
+  context->set_cookie_store(globals->cookie_store.get());
+  // In-memory origin bound cert-store.
+  context->set_origin_bound_cert_service(
+      globals->origin_bound_cert_service.get());
   return context;
 }
 
@@ -492,9 +500,15 @@
   // For the ProxyScriptFetcher, we use a direct ProxyService.
   globals_->proxy_script_fetcher_proxy_service.reset(
       net::ProxyService::CreateDirectWithNetLog(net_log_));
+  globals_->cookie_store = new net::CookieMonster(NULL, NULL);
+  globals_->origin_bound_cert_service.reset(
+      new net::OriginBoundCertService(
+          new net::DefaultOriginBoundCertStore(NULL)));
   net::HttpNetworkSession::Params session_params;
   session_params.host_resolver = globals_->host_resolver.get();
   session_params.cert_verifier = globals_->cert_verifier.get();
+  session_params.origin_bound_cert_service =
+      globals_->origin_bound_cert_service.get();
   session_params.proxy_service =
       globals_->proxy_script_fetcher_proxy_service.get();
   session_params.http_auth_handler_factory =
@@ -509,9 +523,8 @@
   globals_->proxy_script_fetcher_ftp_transaction_factory.reset(
       new net::FtpNetworkLayer(globals_->host_resolver.get()));
 
-  scoped_refptr<net::URLRequestContext> proxy_script_fetcher_context =
+  globals_->proxy_script_fetcher_context =
       ConstructProxyScriptFetcherContext(globals_, net_log_);
-  globals_->proxy_script_fetcher_context = proxy_script_fetcher_context;
 }
 
 void IOThread::CleanUp() {
@@ -718,6 +731,8 @@
   net::HttpNetworkSession::Params system_params;
   system_params.host_resolver = globals_->host_resolver.get();
   system_params.cert_verifier = globals_->cert_verifier.get();
+  system_params.origin_bound_cert_service =
+      globals_->origin_bound_cert_service.get();
   system_params.dnsrr_resolver = globals_->dnsrr_resolver.get();
   system_params.dns_cert_checker = NULL;
   system_params.ssl_host_info_factory = NULL;