commit | 220d502c977ee3d8617f42eef7aea68e6d8c77ac | [log] [tgz] |
---|---|---|
author | Aaron Colwell <acolwell@google.com> | Wed Jan 16 04:56:55 2019 |
committer | Commit Bot <commit-bot@chromium.org> | Wed Jan 16 04:56:55 2019 |
tree | 20589ffa770cac93807cc2eaaec79d9df64b0130 | |
parent | c0e1753cda72e2a13788506e4ec4d70d7c2059d5 [diff] |
Replace security state workaround in CanAccessDataForOrigin() - Replace workaround with code that is more strict about enforcing security policy during child process shutdown. The old code would always allow data access for IDs not in the security_state_ map. The new code adds a pending map so we can deal with UI/IO thread races during child process removal AND rejects any unknown IDs. - Fixed a test that depended on the old behavior where unknown IDs always allowed access. Bug: 898281, 600441, 915203 Change-Id: I4b164eb3ec1cbb110479b633e73bcd883ef9a604 Reviewed-on: https://chromium-review.googlesource.com/c/1409732 Commit-Queue: Aaron Colwell <acolwell@chromium.org> Reviewed-by: Charlie Reis <creis@chromium.org> Reviewed-by: Alex Moshchuk <alexmos@chromium.org> Cr-Commit-Position: refs/heads/master@{#623114}
Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web.
The project's web site is https://www.chromium.org.
Documentation in the source is rooted in docs/README.md.
Learn how to Get Around the Chromium Source Code Directory Structure .