SSLCertRequestInfo: Add |valid_cas| and |valid_key_types|

net/base/x509_certificate.h

Index: net/base/x509_certificate.h
diff --git a/net/base/x509_certificate.h b/net/base/x509_certificate.h
index c8ba0bf61f32584bbde1820d6632005647acc356..09b3ccd87787c43072281798fa9c3e709e666fb2 100644
--- a/net/base/x509_certificate.h
+++ b/net/base/x509_certificate.h
@@ -45,6 +45,7 @@ namespace net {
 
 class CRLSet;
 class CertVerifyResult;
+class SSLCertRequestInfo;
 
 typedef std::vector<scoped_refptr<X509Certificate> > CertificateList;
 
@@ -304,6 +305,10 @@ class NET_EXPORT X509Certificate
   CFArrayRef CreateOSCertChainForCert() const;
 #endif
 
+  // Does this certificate matches the SSL CertificateRequest parameters

[wtc1, 2012/12/15 00:56:18]

Typo: matches => match

+  // stored in |cert_info|.
+  bool IsValidClientCertificate(const SSLCertRequestInfo& cert_info);

[wtc1, 2012/12/15 00:56:18]

"Valid" is ambiguous. How about "Acceptable"?

Alternatively, this method can be named MatchesClientCertRequest.

+
 #if defined(OS_WIN)
   // Returns a new PCCERT_CONTEXT containing this certificate and its
   // intermediate certificates, or NULL on failure. The returned