Upgrade Insecure Requests: bugfixes, tests, and support for OOPIF.

content/common/frame_replication_state.h

Index: content/common/frame_replication_state.h
diff --git a/content/common/frame_replication_state.h b/content/common/frame_replication_state.h
index 6fb755f758e540ffcaff2719bc5a1b759611bb70..20dac6ec77d799c01b1f7b01743e9f504fb9b411 100644
--- a/content/common/frame_replication_state.h
+++ b/content/common/frame_replication_state.h
@@ -44,6 +44,7 @@ struct CONTENT_EXPORT FrameReplicationState {
                         const std::string& unique_name,
                         blink::WebSandboxFlags sandbox_flags,
                         blink::WebInsecureRequestPolicy insecure_request_policy,
+                        const std::vector<unsigned>& insecure_navigations_set,
                         bool has_potentially_trustworthy_unique_origin);
   FrameReplicationState(const FrameReplicationState& other);
   ~FrameReplicationState();
@@ -120,6 +121,11 @@ struct CONTENT_EXPORT FrameReplicationState {
   // different processes.
   blink::WebInsecureRequestPolicy insecure_request_policy;
 
+  // The upgrade insecure navigations set that a frame's current document is
+  // enforcing. Updates are immediately sent to all frame proxies when frames
+  // live in different processes.
+  std::vector<unsigned> insecure_navigations_set;
+
   // True if a frame's origin is unique and should be considered potentially
   // trustworthy.
   bool has_potentially_trustworthy_unique_origin;