content/browser/renderer_host/render_process_host_impl.cc - Issue 11308360: Merge 170159

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: content/browser/renderer_host/render_process_host_impl.cc

Issue 11308360: Merge 170159 (Closed) Base URL: svn://svn.chromium.org/chrome/branches/1312/src/

Patch Set: Created 8 years ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: content/browser/renderer_host/render_process_host_impl.cc

===================================================================

--- content/browser/renderer_host/render_process_host_impl.cc (revision 171066)

+++ content/browser/renderer_host/render_process_host_impl.cc (working copy)

@@ -344,41 +344,6 @@

ChildProcessSecurityPolicyImpl::GetInstance()->Add(GetID());

- // Grant most file permissions to this renderer.

- // PLATFORM_FILE_TEMPORARY, PLATFORM_FILE_HIDDEN and

- // PLATFORM_FILE_DELETE_ON_CLOSE are not granted, because no existing API

- // requests them.

- // This is for the filesystem sandbox.

- ChildProcessSecurityPolicyImpl::GetInstance()->GrantPermissionsForFile(

- GetID(), storage_partition_impl->GetPath().Append(

- fileapi::SandboxMountPointProvider::kNewFileSystemDirectory),

- base::PLATFORM_FILE_OPEN |

- base::PLATFORM_FILE_CREATE |

- base::PLATFORM_FILE_OPEN_ALWAYS |

- base::PLATFORM_FILE_CREATE_ALWAYS |

- base::PLATFORM_FILE_OPEN_TRUNCATED |

- base::PLATFORM_FILE_READ |

- base::PLATFORM_FILE_WRITE |

- base::PLATFORM_FILE_EXCLUSIVE_READ |

- base::PLATFORM_FILE_EXCLUSIVE_WRITE |

- base::PLATFORM_FILE_ASYNC |

- base::PLATFORM_FILE_WRITE_ATTRIBUTES |

- base::PLATFORM_FILE_ENUMERATE);

- // This is so that we can read and move stuff out of the old filesystem

- // sandbox.

- ChildProcessSecurityPolicyImpl::GetInstance()->GrantPermissionsForFile(

- GetID(), storage_partition_impl_->GetPath().Append(

- fileapi::SandboxMountPointProvider::kOldFileSystemDirectory),

- base::PLATFORM_FILE_READ | base::PLATFORM_FILE_WRITE |

- base::PLATFORM_FILE_WRITE_ATTRIBUTES | base::PLATFORM_FILE_ENUMERATE);

- // This is so that we can rename the old sandbox out of the way so that we

- // know we've taken care of it.

- ChildProcessSecurityPolicyImpl::GetInstance()->GrantPermissionsForFile(

- GetID(), storage_partition_impl_->GetPath().Append(

- fileapi::SandboxMountPointProvider::kRenamedOldFileSystemDirectory),

- base::PLATFORM_FILE_CREATE | base::PLATFORM_FILE_CREATE_ALWAYS |

- base::PLATFORM_FILE_WRITE);

CHECK(!g_exited_main_message_loop);

RegisterHost(GetID(), this);

g_all_hosts.Get().set_check_on_null_data(true);

« no previous file with comments | « content/browser/fileapi/fileapi_message_filter.cc ('k') | content/browser/worker_host/worker_process_host.cc » ('j') | no next file with comments »