What steps will reproduce the problem?
(1) Add cert A manually in Chrome cert store.
(2) Burn cert A on smart card and use middleware to provide it to Chrome OS.
(3) Go to website requiring certificate (use cacert for testing) - both certs are shown.
(4) Disable the middleware app providing cert (effectively removing one of the certs).
(5) Go to the website again (use incognito browsing to circumvent caching).

What is the expected output?
Cert selection dialog is shown with one cert.

What do you see instead?
Cert selection dialog is skipped, client cannot be authenticated to the website.


Bug description:

The bug is located in CertificateSelector::CertificateSelector. The code goes through the available certs and filters out the ones previously provided by an extension but since removed. The problem is caused by the fact that the manually added cert and the one provided by the extension cannot be distinguished from one another and so the code filters both out. The certificate selection dialog is hence empty and not shown.


Note:

This bug is a corner case (remove one cert) of a corner case (have two identical certs present), ie. not a very frequently occuring bug.


Temporary workaround:

Log out and log back into the account.