Support for client certs in ssl_server_socket.

net/socket/ssl_client_socket.h

Index: net/socket/ssl_client_socket.h
diff --git a/net/socket/ssl_client_socket.h b/net/socket/ssl_client_socket.h
index ad458b2665e97aab42136390e39fac6ed1ac33b0..bc7dc2b771d8c26bb59b7e640a97ecdfe7a3434b 100644
--- a/net/socket/ssl_client_socket.h
+++ b/net/socket/ssl_client_socket.h
@@ -15,6 +15,10 @@
 #include "net/socket/stream_socket.h"
 #include "net/ssl/ssl_failure_state.h"
 
+namespace crypto {
+class RSAPrivateKey;
+}
+
 namespace net {
 
 class CertPolicyEnforcer;
@@ -24,6 +28,7 @@ class CTVerifier;
 class SSLCertRequestInfo;
 struct SSLConfig;
 class SSLInfo;
+class SSLPrivateKey;
 class TransportSecurityState;
 class X509Certificate;
 
@@ -181,6 +186,12 @@ class NET_EXPORT SSLClientSocket : public SSLSocket {
   static std::vector<uint8_t> SerializeNextProtos(
       const NextProtoVector& next_protos);
 
+  // For unit testing only.
+  // Specify a client certificate and the RSA private key to be used with it.
+  virtual void ForceClientCertificateAndKeyForTest(
+      scoped_refptr<X509Certificate> client_cert,
+      scoped_ptr<SSLPrivateKey> client_private_key) {}
+
  private:
   FRIEND_TEST_ALL_PREFIXES(SSLClientSocket, SerializeNextProtos);
   // For signed_cert_timestamps_received_ and stapled_ocsp_response_received_.
@@ -192,6 +203,7 @@ class NET_EXPORT SSLClientSocket : public SSLSocket {
                            ConnectSignedCertTimestampsDisabled);
   FRIEND_TEST_ALL_PREFIXES(SSLClientSocketTest,
                            VerifyServerChainProperlyOrdered);
+  friend class SSLServerSocketTest;
 
   // True if SCTs were received via a TLS extension.
   bool signed_cert_timestamps_received_;