commit 1adff06dc95bd50ac0d6973be2316a3b08f46090
author mpcomplete@google.com <mpcomplete@google.com@0039d316-1c4b-4281-b951-d872f2087c98> Tue Jun 02 18:39:55 2009
committer mpcomplete@google.com <mpcomplete@google.com@0039d316-1c4b-4281-b951-d872f2087c98> Tue Jun 02 18:39:55 2009
tree e3f394d8b1d37799f2b339f61cb10b23a08840fc
parent 8616bbce6d475d10f4db846699dc19bc05f985fe

Add some browser-level checks to prohibit access to extension bindings by
non-extension renderers.  Also add a check so that bindings are only exposed
if the top-level frame is the chrome-extension scheme.

BUG=11545
BUG=11993
TEST=none
Review URL: http://codereview.chromium.org/119014

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@17408 0039d316-1c4b-4281-b951-d872f2087c98

chrome/browser/child_process_security_policy.h

diff --git a/chrome/browser/child_process_security_policy.h b/chrome/browser/child_process_security_policy.h
index ae1eb41..22db422 100644
--- a/chrome/browser/child_process_security_policy.h
+++ b/chrome/browser/child_process_security_policy.h
@@ -78,6 +78,9 @@
   // Grant this renderer the ability to use DOM UI Bindings.
   void GrantDOMUIBindings(int renderer_id);
 
+  // Grant this renderer the ability to use extension Bindings.
+  void GrantExtensionBindings(int renderer_id);
+
   // Before servicing a renderer's request for a URL, the browser should call
   // this method to determine whether the renderer has the capability to
   // request the URL.
@@ -93,6 +96,11 @@
   // allowed to use DOMUIBindings.
   bool HasDOMUIBindings(int renderer_id);
 
+  // Returns true of the specified renderer_id has been granted DOMUIBindings.
+  // The browser should check this property before assuming the renderer is
+  // allowed to use extension bindings.
+  bool HasExtensionBindings(int renderer_id);
+
  private:
   friend class ChildProcessSecurityPolicyInProcessBrowserTest;
   FRIEND_TEST(ChildProcessSecurityPolicyInProcessBrowserTest, NoLeak);