content/common/frame_messages.h - Issue 2557063002: Upgrade Insecure Requests: bugfixes, tests, and support for OOPIF.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: content/common/frame_messages.h

Issue 2557063002: Upgrade Insecure Requests: bugfixes, tests, and support for OOPIF.

Patch Set: Addressed comments (@nasko #2). Created 4 years ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: content/common/frame_messages.h

diff --git a/content/common/frame_messages.h b/content/common/frame_messages.h

index 64bf4d7a1af75a70eb37dddc37a7598a008848fa..8e4b0a31b067d56da4e36f984f598c8b329629a7 100644

--- a/content/common/frame_messages.h

+++ b/content/common/frame_messages.h

@@ -289,6 +289,10 @@ IPC_STRUCT_BEGIN_WITH_PARENT(FrameHostMsg_DidCommitProvisionalLoad_Params,

// The insecure request policy the document for the load is enforcing.

IPC_STRUCT_MEMBER(blink::WebInsecureRequestPolicy, insecure_request_policy)

+ // The upgrade insecure navigations set the document for the load is

+ // enforcing.

+ IPC_STRUCT_MEMBER(std::vector<uint32_t>, insecure_navigations_set)

// True if the document for the load is a unique origin that should be

// considered potentially trustworthy.

IPC_STRUCT_MEMBER(bool, has_potentially_trustworthy_unique_origin)

@@ -405,6 +409,7 @@ IPC_STRUCT_TRAITS_BEGIN(content::FrameReplicationState)

IPC_STRUCT_TRAITS_MEMBER(accumulated_csp_headers)

IPC_STRUCT_TRAITS_MEMBER(scope)

IPC_STRUCT_TRAITS_MEMBER(insecure_request_policy)

+ IPC_STRUCT_TRAITS_MEMBER(insecure_navigations_set)

IPC_STRUCT_TRAITS_MEMBER(has_potentially_trustworthy_unique_origin)

IPC_STRUCT_TRAITS_END()

@@ -741,6 +746,11 @@ IPC_MESSAGE_ROUTED0(FrameMsg_ResetContentSecurityPolicy)

IPC_MESSAGE_ROUTED1(FrameMsg_EnforceInsecureRequestPolicy,

blink::WebInsecureRequestPolicy)

+// Update a proxy's replicated set for enforcement of insecure navigations.

+// Used when the frame's set is changed in another process.

+IPC_MESSAGE_ROUTED1(FrameMsg_EnforceInsecureNavigationsSet,

+ std::vector<uint32_t> /* set */)

// Update a proxy's replicated origin. Used when the frame is navigated to a

// new origin.

IPC_MESSAGE_ROUTED2(FrameMsg_DidUpdateOrigin,

@@ -1005,6 +1015,14 @@ IPC_MESSAGE_ROUTED1(FrameHostMsg_DidAddContentSecurityPolicy,

IPC_MESSAGE_ROUTED1(FrameHostMsg_EnforceInsecureRequestPolicy,

blink::WebInsecureRequestPolicy)

+// Sent when the frame starts enforcing an upgrade insecure navigations set.

+// Sending this information in DidCommitProvisionalLoad isn't sufficient; this

+// message is needed because, for example, a document can dynamically insert a

+// <meta> tag that causes "Upgrade Insecure Request" to be enabled and the

+// upgrade insecure navigations set to be augmented.

+IPC_MESSAGE_ROUTED1(FrameHostMsg_EnforceInsecureNavigationsSet,

+ std::vector<uint32_t>)

// Sent when the frame is set to a unique origin. TODO(estark): this IPC

// only exists to support dynamic sandboxing via a CSP delivered in a

// <meta> tag. This is not supposed to be allowed per the CSP spec and

« no previous file with comments | « content/browser/frame_host/render_frame_host_manager.cc ('k') | content/common/frame_replication_state.h » ('j') | no next file with comments »