Actually, that solution doesn't work at all for fixing the crash. I'll look into why the old path doesn't crash; maybe that can help us figure out what to do.

After looking into it a bit, I believe that existing unit tests are not triggering ChromeContentBrowserClient::AllowCertificateError() – i.e. the old place where CertificateReportingServiceCertReporter is constructed. And browser tests that trigger the function have the requisite Safe Browsing service.

The plan I described above should work, since it will continue to avoid constructing CertificateReportingServiceCertReporter for existing unit tests. However, there are two caveats:
- We still need to be able to tell the throttle to use a mock cert reporter for testing.
- We need to continue avoiding the actual interstitial construction path in unit tests, or create create the Safe Browsing service beforehand.

I think we can handle the former by taking a function that returns a cert reporter – essentially a thunk for the actual SSLErrorReporter. (Alternatively, we could have a SSLCertReporterFactory and a MockSSLCertReporterFactory, although the former would itself be a thin wrapper around CertificateReportingServiceFactory.)

estark@, how does that sound?

> In addition, meacer@ tells me that constructing a CertificateReportingServiceCertReporter is a little expensive for every havigation.

Actually this isn't correct. I was thinking about the CertificateReportingService. CertificateReportingServiceCertReporter constructor is pretty simple.

> In general, I would recommend against pre-loading a hard

Okay, then let's work around it and WontFix for now. I'll revive this if it turns to be needed again.