Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(116)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 793493003: Prepare to replicate sandbox flags for OOPIF (Closed)

Created:
5 years, 11 months ago by alexmos
Modified:
5 years, 11 months ago
Reviewers:
Nate Chapin, dcheng
CC:
dcheng, blink-reviews, blink-reviews-dom_chromium.org, dglazkov+blink, eae+blinkwatch, Nate Chapin, mlamouri+watch-blink_chromium.org, rwlbuis, sof, site-isolation-reviews_chromium.org
Base URL:
https://chromium.googlesource.com/chromium/blink.git@master
Target Ref:
refs/heads/master
Project:
blink
Visibility:
Public.

Description

Prepare to replicate sandbox flags for OOPIF. Corresponding Chromium side CL: https://codereview.chromium.org/837283003/ * Add a new enum to use sandbox flags from the Web layer. * Add plumbing to use flags passed from the browser process when creating LocalFrames with a remote parent (via RemoteBridgeFrameOwner). * Allow a RemoteSecurityContext to set replicated SandboxFlags. This will be used at SecurityContext init time to let a LocalFrame check whether its parent is sandboxed when the parent is a RemoteFrame (to ensure children of sandboxed frames are also sandboxed). This CL doesn't actually send sandbox flags to the browser process when new frames are created. This will happen in a follow-up CL (https://codereview.chromium.org/838903002), once the Chromium-side CL lands. BUG=426512 Committed: https://src.chromium.org/viewvc/blink?view=rev&revision=188409

Patch Set 1 #

Patch Set 2 : #

Total comments: 6

Patch Set 3 : Address dcheng's comments #

Patch Set 4 : Rebase #

Total comments: 6

Patch Set 5 : Second round of dcheng's comments #

Unified diffs Side-by-side diffs Delta from patch set Stats (+93 lines, -21 lines) Patch
M Source/web/AssertMatchingEnums.cpp View 1 2 3 2 chunks +13 lines, -0 lines 0 comments Download
M Source/web/WebRemoteFrameImpl.h View 1 2 3 2 chunks +4 lines, -0 lines 0 comments Download
M Source/web/WebRemoteFrameImpl.cpp View 1 2 3 4 4 chunks +35 lines, -19 lines 0 comments Download
M Source/web/tests/WebFrameTest.cpp View 1 2 3 1 chunk +1 line, -1 line 0 comments Download
M public/web/WebRemoteFrame.h View 1 2 chunks +7 lines, -1 line 0 comments Download
A public/web/WebSandboxFlags.h View 1 2 1 chunk +33 lines, -0 lines 0 comments Download

Messages

Total messages: 15 (3 generated)
alexmos
Daniel, could you please take a look? This is the first part of replicating sandbox ...
5 years, 11 months ago (2015-01-08 01:21:59 UTC) #2
dcheng
https://codereview.chromium.org/793493003/diff/20001/Source/web/WebRemoteFrameImpl.cpp File Source/web/WebRemoteFrameImpl.cpp (right): https://codereview.chromium.org/793493003/diff/20001/Source/web/WebRemoteFrameImpl.cpp#newcode809 Source/web/WebRemoteFrameImpl.cpp:809: OwnPtr<RemoteBridgeFrameOwner> owner = RemoteBridgeFrameOwner::create(child); OwnPtrWillBeRawPtr https://codereview.chromium.org/793493003/diff/20001/public/web/WebSandboxFlags.h File public/web/WebSandboxFlags.h (right): ...
5 years, 11 months ago (2015-01-08 22:50:45 UTC) #3
alexmos
Responses below, and I also rebased to properly include Nate's changes. https://codereview.chromium.org/793493003/diff/20001/Source/web/WebRemoteFrameImpl.cpp File Source/web/WebRemoteFrameImpl.cpp (right): ...
5 years, 11 months ago (2015-01-09 19:49:57 UTC) #4
dcheng
https://codereview.chromium.org/793493003/diff/60001/Source/web/WebRemoteFrameImpl.cpp File Source/web/WebRemoteFrameImpl.cpp (right): https://codereview.chromium.org/793493003/diff/60001/Source/web/WebRemoteFrameImpl.cpp#newcode51 Source/web/WebRemoteFrameImpl.cpp:51: SandboxFlags m_sandboxFlags; Since this can't change after creation, let's ...
5 years, 11 months ago (2015-01-09 22:46:12 UTC) #5
alexmos
https://codereview.chromium.org/793493003/diff/60001/Source/web/WebRemoteFrameImpl.cpp File Source/web/WebRemoteFrameImpl.cpp (right): https://codereview.chromium.org/793493003/diff/60001/Source/web/WebRemoteFrameImpl.cpp#newcode51 Source/web/WebRemoteFrameImpl.cpp:51: SandboxFlags m_sandboxFlags; On 2015/01/09 22:46:12, dcheng wrote: > Since ...
5 years, 11 months ago (2015-01-09 23:12:30 UTC) #6
dcheng
lgtm with nits https://codereview.chromium.org/793493003/diff/60001/Source/web/WebRemoteFrameImpl.cpp File Source/web/WebRemoteFrameImpl.cpp (right): https://codereview.chromium.org/793493003/diff/60001/Source/web/WebRemoteFrameImpl.cpp#newcode78 Source/web/WebRemoteFrameImpl.cpp:78: m_sandboxFlags = flags; Nit: just inline ...
5 years, 11 months ago (2015-01-10 00:01:00 UTC) #7
alexmos
https://codereview.chromium.org/793493003/diff/60001/Source/web/WebRemoteFrameImpl.cpp File Source/web/WebRemoteFrameImpl.cpp (right): https://codereview.chromium.org/793493003/diff/60001/Source/web/WebRemoteFrameImpl.cpp#newcode78 Source/web/WebRemoteFrameImpl.cpp:78: m_sandboxFlags = flags; On 2015/01/10 00:01:00, dcheng wrote: > ...
5 years, 11 months ago (2015-01-10 00:51:54 UTC) #8
alexmos
Nate, could you please review this for Source/web owner approval?
5 years, 11 months ago (2015-01-10 00:56:49 UTC) #10
alexmos
On 2015/01/10 00:56:49, alexmos wrote: > Nate, could you please review this for Source/web owner ...
5 years, 11 months ago (2015-01-14 17:48:54 UTC) #11
Nate Chapin
lgtm
5 years, 11 months ago (2015-01-14 18:14:54 UTC) #12
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/793493003/80001
5 years, 11 months ago (2015-01-14 18:17:31 UTC) #14
commit-bot: I haz the power
5 years, 11 months ago (2015-01-14 18:53:33 UTC) #15
Message was sent while issue was closed. 
Committed patchset #5 (id:80001) as
https://src.chromium.org/viewvc/blink?view=rev&revision=188409

Powered by Google App Engine
This is Rietveld 408576698