binding: Moves the check for the first access to the initial document into BindingSecurity.

binding: Moves the check for the first access to the initial document into BindingSecurity.

Checks the access to the initial document and reports it not only at
securityCheck() in V8Window.cpp but also at every call to
BindingSecurity::shouldAllowAccessTo() because V8 only calls back
securityCheck() on property lookups, and not for function invocation.

BindingSecurity::shouldAllowAccessTo() is called with every possible
cross-origin window, which means every possible new window.  Thus,
shouldAllowAccessTo() should be the right place to check the access
to the initial document.

BUG=630662
Review-Url: https://codereview.chromium.org/2209303002
Cr-Commit-Position: refs/heads/master@{#412195}
(cherry picked from commit b8dcfeb065bbfd777cdc5f5433da9a87f25e6ec6)

Committed: https://chromium.googlesource.com/chromium/src/+/f9fcdb4834702f6e56d5bbbaf7ee9150884bebde

[Yuki, 2016-08-18 08:07:24]

Description was changed from

==========
binding: Moves the check for the first access to the initial document into
BindingSecurity.

Checks the access to the initial document and reports it not only at
securityCheck() in V8Window.cpp but also at every call to
BindingSecurity::shouldAllowAccessTo() because V8 only calls back
securityCheck() on property lookups, and not for function invocation.

BindingSecurity::shouldAllowAccessTo() is called with every possible
cross-origin window, which means every possible new window.  Thus,
shouldAllowAccessTo() should be the right place to check the access
to the initial document.

BUG=630662
TBR=benwells@chromium.org

Review-Url: https://codereview.chromium.org/2209303002
Cr-Commit-Position: refs/heads/master@{#412195}
(cherry picked from commit b8dcfeb065bbfd777cdc5f5433da9a87f25e6ec6)
==========

to

==========
binding: Moves the check for the first access to the initial document into
BindingSecurity.

Checks the access to the initial document and reports it not only at
securityCheck() in V8Window.cpp but also at every call to
BindingSecurity::shouldAllowAccessTo() because V8 only calls back
securityCheck() on property lookups, and not for function invocation.

BindingSecurity::shouldAllowAccessTo() is called with every possible
cross-origin window, which means every possible new window.  Thus,
shouldAllowAccessTo() should be the right place to check the access
to the initial document.

BUG=630662

Review-Url: https://codereview.chromium.org/2209303002
Cr-Commit-Position: refs/heads/master@{#412195}
(cherry picked from commit b8dcfeb065bbfd777cdc5f5433da9a87f25e6ec6)
==========

[Yuki, 2016-08-18 08:07:24]

yukishiino@chromium.org changed reviewers:
- benwells@chromium.org

[Yuki, 2016-08-18 08:12:11]

Description was changed from

==========
binding: Moves the check for the first access to the initial document into
BindingSecurity.

Checks the access to the initial document and reports it not only at
securityCheck() in V8Window.cpp but also at every call to
BindingSecurity::shouldAllowAccessTo() because V8 only calls back
securityCheck() on property lookups, and not for function invocation.

BindingSecurity::shouldAllowAccessTo() is called with every possible
cross-origin window, which means every possible new window.  Thus,
shouldAllowAccessTo() should be the right place to check the access
to the initial document.

BUG=630662

Review-Url: https://codereview.chromium.org/2209303002
Cr-Commit-Position: refs/heads/master@{#412195}
(cherry picked from commit b8dcfeb065bbfd777cdc5f5433da9a87f25e6ec6)
==========

to

==========
binding: Moves the check for the first access to the initial document into
BindingSecurity.

Checks the access to the initial document and reports it not only at
securityCheck() in V8Window.cpp but also at every call to
BindingSecurity::shouldAllowAccessTo() because V8 only calls back
securityCheck() on property lookups, and not for function invocation.

BindingSecurity::shouldAllowAccessTo() is called with every possible
cross-origin window, which means every possible new window.  Thus,
shouldAllowAccessTo() should be the right place to check the access
to the initial document.

BUG=630662

Review-Url: https://codereview.chromium.org/2209303002
Cr-Commit-Position: refs/heads/master@{#412195}
(cherry picked from commit b8dcfeb065bbfd777cdc5f5433da9a87f25e6ec6)

Committed:
https://chromium.googlesource.com/chromium/src/+/f9fcdb4834702f6e56d5bbbaf7ee...
==========

[Yuki, 2016-08-18 08:12:13]

Committed patchset #1 (id:1) manually as
f9fcdb4834702f6e56d5bbbaf7ee9150884bebde.