summaryrefslogtreecommitdiffstats
path: root/chrome/renderer/extensions/user_script_slave.cc
diff options
context:
space:
mode:
authorzelidrag@chromium.org <zelidrag@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>2012-08-23 05:53:18 +0000
committerzelidrag@chromium.org <zelidrag@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98>2012-08-23 05:53:18 +0000
commit78bdfd66a90cb9425094aed19ab36eee18fe8171 (patch)
treee1ea3b7bcfa1827f73b9f33bcf62743592caec19 /chrome/renderer/extensions/user_script_slave.cc
parent6df3267e893f7ada7c45d6dcc07fc22760dab654 (diff)
downloadchromium_src-78bdfd66a90cb9425094aed19ab36eee18fe8171.zip
chromium_src-78bdfd66a90cb9425094aed19ab36eee18fe8171.tar.gz
chromium_src-78bdfd66a90cb9425094aed19ab36eee18fe8171.tar.bz2
Added check to prevent extensions from injecting scrips into pages hosted in iframe context of other extensions (other than itself).
BUG=126257 TEST=ExtensionApiTest.ContentScriptOtherExtensions, added new checks to ExtensionScriptAndCaptureVisibleTest.Permissions Review URL: https://chromiumcodereview.appspot.com/10863002 git-svn-id: svn://svn.chromium.org/chrome/trunk/src@152955 0039d316-1c4b-4281-b951-d872f2087c98
Diffstat (limited to 'chrome/renderer/extensions/user_script_slave.cc')
-rw-r--r--chrome/renderer/extensions/user_script_slave.cc1
1 files changed, 1 insertions, 0 deletions
diff --git a/chrome/renderer/extensions/user_script_slave.cc b/chrome/renderer/extensions/user_script_slave.cc
index f916663..c807516 100644
--- a/chrome/renderer/extensions/user_script_slave.cc
+++ b/chrome/renderer/extensions/user_script_slave.cc
@@ -281,6 +281,7 @@ void UserScriptSlave::InjectScripts(WebFrame* frame,
// Content scripts are not tab-specific.
int kNoTabId = -1;
if (!extension->CanExecuteScriptOnPage(data_source_url,
+ frame->top()->document().url(),
kNoTabId,
script,
NULL)) {
generated by cgit v1.1 at 2025-05-19 20:12:22 +0000