Forget SSL error exceptions when good certs seen for regular requests.

content/public/browser/ssl_host_state_delegate.h

Index: content/public/browser/ssl_host_state_delegate.h
diff --git a/content/public/browser/ssl_host_state_delegate.h b/content/public/browser/ssl_host_state_delegate.h
index 4666471a14860c766395507fe52ac05b86d5778a..39589a5b73d61d8ee2baee5c23e307261f1e4f17 100644
--- a/content/public/browser/ssl_host_state_delegate.h
+++ b/content/public/browser/ssl_host_state_delegate.h
@@ -54,6 +54,16 @@ class SSLHostStateDelegate {
   virtual bool DidHostRunInsecureContent(const std::string& host,
                                          int pid) const = 0;
 
+  // Revokes all SSL certificate error allow exceptions made by the user for
+  // |host|.
+  virtual void RevokeUserAllowExceptions(const std::string& host) = 0;
+
+  // Returns whether the user has allowed a certificate error exception for
+  // |host|. This does not mean that *all* certificate errors are allowed, just
+  // that there exists an exception. To see if a particular certificate and
+  // error combination exception is allowed, use QueryPolicy().
+  virtual bool HasAllowException(const std::string& host) const = 0;
+
  protected:
   virtual ~SSLHostStateDelegate() {}
 };