Google Git
Sign in
chromium / chromium / src / 9daac5851bdf990c58981921ada69b03c6c98fea
commit9daac5851bdf990c58981921ada69b03c6c98fea[log] [tgz]
authorLukasz Anforowicz <lukasza@chromium.org>Wed Feb 20 18:15:15 2019
committerCommit Bot <commit-bot@chromium.org>Wed Feb 20 18:15:15 2019
treeaf51afd7688dcea71b49eaabccdff608b7ef020b
parent3898a249af39991ea480cde04c10cfb4e2929b22 [diff]
Making Google Translate compatible with |request_initiator_site_lock|.

Google Translate executes its scripts inside "isolated worlds".  This is
quite similar to how extension content scripts execute and has a
consequence of using |request_initiator| set to the origin of the
isolated world (rather than to the origin of the page where the script
was injected).  This is problematic for 2 reasons:
1. It leads to renderer kills, when an AppCache verifies
   |request_initiator| using CPSPI::CanAccessDataForOrigin.
2. It leads to incompatibility between |request_initiator| and
   |request_initiator_site_lock| which can also cause wrong/harsh
   security decisions (e.g. CORB blocking of otherwise benign requests).

This CL addresses the problems above, by making sure that requests
initiated by the Translate's "isolated worls" will use a separate
URLLoaderFactory.
- For injecting and selecting the factory on the renderer side, the same
  mechanism is used as for extension content scripts (i.e.
  URLLoaderFactoryBundleInfo::initiator_specific_factory_infos is
  populated for the origin associated with the "isolated world").
- For simplicity and to avoid races, the separate URLLoaderFactory is
  sent from the browser to the renderer process in the same, single IPC
  that triggers script injection into an isolated world (i.e. in
  translate::mojom::Page::Translate method).

As a side effect, this CL also causes Translate's requests to go
directly to the NetworkService (rather than to the AppCache's
AppCacheSubresourceURLFactory).  This seems desirable.

Bug: 925457
Change-Id: I6227f9d8a43329510f4fae37ab9429c9dbf59f48
Reviewed-on: https://chromium-review.googlesource.com/c/1441277
Commit-Queue: Ɓukasz Anforowicz <lukasza@chromium.org>
Reviewed-by: anthonyvd <anthonyvd@chromium.org>
Reviewed-by: John Abd-El-Malek <jam@chromium.org>
Reviewed-by: Daniel Cheng <dcheng@chromium.org>
Cr-Commit-Position: refs/heads/master@{#633779}
18 files changed
tree: af51afd7688dcea71b49eaabccdff608b7ef020b
  1. android_webview/
  2. apps/
  3. ash/
  4. base/
  5. build/
  6. build_overrides/
  7. buildtools/
  8. cc/
  9. chrome/
  10. chrome_elf/
  11. chromecast/
  12. chromeos/
  13. cloud_print/
  14. components/
  15. content/
  16. courgette/
  17. crypto/
  18. dbus/
  19. device/
  20. docs/
  21. extensions/
  22. fuchsia/
  23. gin/
  24. google_apis/
  25. google_update/
  26. gpu/
  27. headless/
  28. infra/
  29. ios/
  30. ipc/
  31. jingle/
  32. media/
  33. mojo/
  34. native_client_sdk/
  35. net/
  36. pdf/
  37. ppapi/
  38. printing/
  39. remoting/
  40. rlz/
  41. sandbox/
  42. services/
  43. skia/
  44. sql/
  45. storage/
  46. styleguide/
  47. testing/
  48. third_party/
  49. tools/
  50. ui/
  51. url/
  52. .clang-format
  53. .eslintrc.js
  54. .git-blame-ignore-revs
  55. .gitattributes
  56. .gitignore
  57. .gn
  58. .vpython
  59. AUTHORS
  60. BUILD.gn
  61. CODE_OF_CONDUCT.md
  62. codereview.settings
  63. DEPS
  64. ENG_REVIEW_OWNERS
  65. LICENSE
  66. LICENSE.chromium_os
  67. OWNERS
  68. PRESUBMIT.py
  69. PRESUBMIT_test.py
  70. PRESUBMIT_test_mocks.py
  71. README.md
  72. WATCHLISTS
README.md

Logo Chromium

Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web.

The project's web site is https://www.chromium.org.

Documentation in the source is rooted in docs/README.md.

Learn how to Get Around the Chromium Source Code Directory Structure .