Kill renderers for bad password forms in --site-per-process.

content/public/browser/child_process_security_policy.h

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #ifndef CONTENT_PUBLIC_BROWSER_CHILD_PROCESS_SECURITY_POLICY_H_
 #define CONTENT_PUBLIC_BROWSER_CHILD_PROCESS_SECURITY_POLICY_H_
 
 #include <string>
 
 #include "base/basictypes.h"
 #include "content/common/content_export.h"
+#include "url/gurl.h"
 
 namespace base {
 class FilePath;
 }
 
 namespace content {
 
 // The ChildProcessSecurityPolicy class is used to grant and revoke security
 // capabilities for child processes.  For example, it restricts whether a child
 // process is permitted to load file:// URLs based on whether the process
@@ skipping 124 matching lines @@
   virtual bool CanDeleteFromFileSystem(int child_id,
                                        const std::string& filesystem_id) = 0;
 
   // Returns true if the specified child_id has been granted WebUI bindings.
   // The browser should check this property before assuming the child process
   // is allowed to use WebUI bindings.
   virtual bool HasWebUIBindings(int child_id) = 0;
 
   // Grants permission to send system exclusive message to any MIDI devices.
   virtual void GrantSendMidiSysExMessage(int child_id) = 0;
+
+  // Returns true if the process is permitted to read and modify the data for
+  // the given origin. This is currently used for cookies and passwords.
+  // Does not affect cookies attached to or set by network requests.
+  // Only might return false if the --site-per-process flag is used.
+  virtual bool CanAccessDataForOrigin(int child_id, const GURL& gurl) = 0;
 };
 
 }  // namespace content
 
 #endif  // CONTENT_PUBLIC_BROWSER_CHILD_PROCESS_SECURITY_POLICY_H_