Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(18)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: content/public/common/content_switches.cc

Issue 8496027: Enhance --enable-strict-site-isolation to prevent a site-isolated renderer (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src/
Patch Set: '' Created 9 years, 1 month ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch | Annotate | Revision Log
« content/browser/site_instance.cc ('K') | « content/browser/site_instance.cc ('k') | content/renderer/render_view_impl.cc » ('j') | content/renderer/render_view_impl.cc » ('J')
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright (c) 2011 The Chromium Authors. All rights reserved. 1 // Copyright (c) 2011 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 #include "content/public/common/content_switches.h" 5 #include "content/public/common/content_switches.h"
6 6
7 namespace switches { 7 namespace switches {
8 8
9 // By default, file:// URIs cannot read other file:// URIs. This is an 9 // By default, file:// URIs cannot read other file:// URIs. This is an
10 // override for developers who need the old behavior for testing. 10 // override for developers who need the old behavior for testing.
(...skipping 224 matching lines...) Expand 10 before | Expand all | Expand 10 after
235 // Cause the OS X sandbox write to syslog every time an access to a resource 235 // Cause the OS X sandbox write to syslog every time an access to a resource
236 // is denied by the sandbox. 236 // is denied by the sandbox.
237 const char kEnableSandboxLogging[] = "enable-sandbox-logging"; 237 const char kEnableSandboxLogging[] = "enable-sandbox-logging";
238 238
239 // Enable the seccomp sandbox (Linux only) 239 // Enable the seccomp sandbox (Linux only)
240 const char kEnableSeccompSandbox[] = "enable-seccomp-sandbox"; 240 const char kEnableSeccompSandbox[] = "enable-seccomp-sandbox";
241 241
242 // Enables StatsTable, logging statistics to a global named shared memory table. 242 // Enables StatsTable, logging statistics to a global named shared memory table.
243 const char kEnableStatsTable[] = "enable-stats-table"; 243 const char kEnableStatsTable[] = "enable-stats-table";
244 244
245 // Experimentally ensure each renderer process has pages from only one site. 245 // Experimentally ensures that each renderer process:
246 // 1) Only handles rendering for a single page.
247 // (Note that a page can reference content from multiple origins due to images,
248 // iframes, etc).
249 // 2) Only has authority to see or use cookies for the page's top-level origin.
250 // (So if a.com iframe's b.com, the b.com network request will be sent without
251 // cookies).
246 // This is expected to break compatibility with many pages for now. 252 // This is expected to break compatibility with many pages for now.
247 const char kEnableStrictSiteIsolation[] = "enable-strict-site-isolation"; 253 const char kEnableStrictSiteIsolation[] = "enable-strict-site-isolation";
248 254
249 // Enable multithreaded GPU compositing of web content. 255 // Enable multithreaded GPU compositing of web content.
250 const char kEnableThreadedCompositing[] = "enable-threaded-compositing"; 256 const char kEnableThreadedCompositing[] = "enable-threaded-compositing";
251 257
252 // Enable use of experimental TCP sockets API for sending data in the 258 // Enable use of experimental TCP sockets API for sending data in the
253 // SYN packet. 259 // SYN packet.
254 const char kEnableTcpFastOpen[] = "enable-tcp-fastopen"; 260 const char kEnableTcpFastOpen[] = "enable-tcp-fastopen";
255 261
(...skipping 288 matching lines...) Expand 10 before | Expand all | Expand 10 after
544 // instead of NSS for SSL. 550 // instead of NSS for SSL.
545 const char kUseSystemSSL[] = "use-system-ssl"; 551 const char kUseSystemSSL[] = "use-system-ssl";
546 #endif 552 #endif
547 553
548 #if !defined(OFFICIAL_BUILD) 554 #if !defined(OFFICIAL_BUILD)
549 // Causes the renderer process to throw an assertion on launch. 555 // Causes the renderer process to throw an assertion on launch.
550 const char kRendererCheckFalseTest[] = "renderer-check-false-test"; 556 const char kRendererCheckFalseTest[] = "renderer-check-false-test";
551 #endif 557 #endif
552 558
553 } // namespace switches 559 } // namespace switches
OLDNEW
« content/browser/site_instance.cc ('K') | « content/browser/site_instance.cc ('k') | content/renderer/render_view_impl.cc » ('j') | content/renderer/render_view_impl.cc » ('J')

Powered by Google App Engine
This is Rietveld 408576698