Hi guys, I'm currently looking to add taint-tracking to Chrome, esp. considering data coming from the DOM. The idea is to tag each (in the first iteration) String with an ID containing its origin. I was now looking for a good place for a global lookup table, matching the IDs to the actual source in the DOM. My first idea was to attach it to the context - however as far as I gather a new context is created if e.g. I use an iframe. If the iframe has the same origin as the embedding site, it can get the data from its parent - but then my ID would point no-where if the lookup table is stored in the Context.
Any suggestions on that? Cheers, Ben -- v8-dev mailing list [email protected] http://groups.google.com/group/v8-dev
