Get ClientCertStore through ResourceContext.

chrome/browser/profiles/profile_io_data.cc

Index: chrome/browser/profiles/profile_io_data.cc
diff --git a/chrome/browser/profiles/profile_io_data.cc b/chrome/browser/profiles/profile_io_data.cc
index 99f3793c0157f18618222399755b10c33e6dcb0b..ec9d18f1b39609fa502a683c78f7c55d1bc09770 100644
--- a/chrome/browser/profiles/profile_io_data.cc
+++ b/chrome/browser/profiles/profile_io_data.cc
@@ -71,6 +71,8 @@
 #include "net/proxy/proxy_config_service_fixed.h"
 #include "net/proxy/proxy_script_fetcher_impl.h"
 #include "net/proxy/proxy_service.h"
+#include "net/ssl/client_cert_store.h"
+#include "net/ssl/client_cert_store_impl.h"
 #include "net/ssl/server_bound_cert_service.h"
 #include "net/url_request/data_protocol_handler.h"
 #include "net/url_request/file_protocol_handler.h"
@@ -710,6 +712,15 @@ net::URLRequestContext* ProfileIOData::ResourceContext::GetRequestContext()  {
   return request_context_;
 }
 
+scoped_ptr<net::ClientCertStore>
+ProfileIOData::ResourceContext::GetClientCertStore() {
+#if !defined(USE_OPENSSL)

[wtc, 2013/10/28 19:41:12]

Could you add a comment to explain this? This seems to imply SSL client auth is
not supported if USE_OPENSSL is defined, but that's not the case. So this is a
little confusing to me.

[mattm, 2013/10/28 23:56:16]

Done.

+  return scoped_ptr<net::ClientCertStore>(new net::ClientCertStoreImpl());

[wtc, 2013/10/28 19:41:12]

This looks more like a "CreateClientCertStore" method rather than a
"GetClientCertStore" method. I find this a little confusing.

[mattm, 2013/10/28 23:56:16]

Changed to CreateClientCertStore. If we implement the idea about pooling, the
name can be changed, since the return type would also need to be changed at the
same time anyway.

+#else
+  return scoped_ptr<net::ClientCertStore>();
+#endif
+}
+
 bool ProfileIOData::ResourceContext::AllowMicAccess(const GURL& origin) {
   return AllowContentAccess(origin, CONTENT_SETTINGS_TYPE_MEDIASTREAM_MIC);
 }