Fix UMA stat for expiration of certificate memory decisions

chrome/browser/ssl/chrome_ssl_host_state_delegate.h

 // Copyright 2014 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #ifndef CHROME_BROWSER_SSL_CHROME_SSL_HOST_STATE_DELEGATE_H_
 #define CHROME_BROWSER_SSL_CHROME_SSL_HOST_STATE_DELEGATE_H_
 
 #include "base/gtest_prod_util.h"
 #include "base/memory/scoped_ptr.h"
 #include "base/time/time.h"
@@ skipping 99 matching lines @@
 
   // A BrokenHostEntry is a pair of (host, process_id) that indicates the host
   // contains insecure content in that renderer process.
   typedef std::pair<std::string, int> BrokenHostEntry;
 
   // Hosts which have been contaminated with insecure content in the
   // specified process.  Note that insecure content can travel between
   // same-origin frames in one processs but cannot jump between processes.
   std::set<BrokenHostEntry> ran_insecure_content_hosts_;
 
+  // This is a GUID to mark this unique session. Whenever a certificate decision
+  // expiration is set, the GUID is saved as well so Chrome can tell if it was
+  // last set during the current session. This is used by the
+  // FORGET_SSL_EXCEPTION_DECISIONS_AT_SESSION_END experimental group to
+  // determine if the expired_previous_decision bit should be set on queries.
+  //
+  // Why not just iterate over the set of current extensions and mark them all
+  // as expired when the session starts, rather than storing a GUID for the
+  // current session? Glad you asked! Unfortunately, content settings does not
+  // currently support iterating over all current *compound* content setting
+  // values (iteration only works for simple content settings). While this could
+  // be added, it would be a fair amount of work for what amounts to a temporary
+  // measurement problem, so it's not worth the complexity.
+  //
+  // TODO(jww): This is only used by the default and disable groups of the
+  // certificate memory decisions experiment to tell if a decision has expired
+  // since the last session. Since this is only used for UMA purposes, this
+  // should be removed after the experiment has finished, and a call to Clear()
+  // should be added to the constructor and destructor for members of the
+  // FORGET_SSL_EXCEPTION_DECISIONS_AT_SESSION_END groups.

[felt, 2014/09/30 01:50:59]

can you associate this TODO with a crbug? either 418631 (and keep it open) or a
new bug?

+  const std::string current_expiration_guid_;
+
   DISALLOW_COPY_AND_ASSIGN(ChromeSSLHostStateDelegate);
 };
 
 #endif  // CHROME_BROWSER_SSL_CHROME_SSL_HOST_STATE_DELEGATE_H_