[Webkit-unassigned] [Bug 27967] New: Decouple the code that deals with the main DB and quota management from the rest of the DB code
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon Aug 3 19:59:40 PDT 2009
https://bugs.webkit.org/show_bug.cgi?id=27967
Summary: Decouple the code that deals with the main DB and
quota management from the rest of the DB code
Product: WebKit
Version: 528+ (Nightly build)
Platform: All
OS/Version: All
Status: UNCONFIRMED
Severity: Normal
Priority: P2
Component: New Bugs
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: dumi at chromium.org
CC: andersca at apple.com, beidson at apple.com,
aroben at apple.com, dglazkov at chromium.org
In Chromium, we want to read/write to the main DB only in the browser process.
This will make sure that a malicious renderer cannot corrupt the main DB and
will not be able to "discover" all existing databases in the system. We also
need to move the quota management code to the browser process because it needs
to keep track of what's going on in all renderer processes.
We intend to do this in a few steps:
1. Add a "listener" interface for SQLTransaction. This would allow us to remove
SQLTransaction's dependencies on DatabaseTracker and OriginQuotaManager, as
well as allow us to "listen" to different SQLTransaction stages more easily in
the future, if needed.
2. Abstract out DatabaseTracker into an interface, and make all DB classes rely
on the interface only. The code that's currently in DatabaseTracker.cpp would
be WebCore's implementation of this interface.
3. Add the Chromium-specific implementations.
Patches for each step to come...
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list