| Index: components/printing/renderer/print_web_view_helper.cc
|
| diff --git a/components/printing/renderer/print_web_view_helper.cc b/components/printing/renderer/print_web_view_helper.cc
|
| index b4bfe1bbef37d60416e563d80c24156c7976d172..d315efae36af809739af88afc543864211135365 100644
|
| --- a/components/printing/renderer/print_web_view_helper.cc
|
| +++ b/components/printing/renderer/print_web_view_helper.cc
|
| @@ -815,6 +815,7 @@ PrintWebViewHelper::PrintWebViewHelper(content::RenderView* render_view,
|
| print_node_in_progress_(false),
|
| is_loading_(false),
|
| is_scripted_preview_delayed_(false),
|
| + ipc_nesting_level_(0),
|
| weak_ptr_factory_(this) {
|
| if (!delegate_->IsPrintPreviewEnabled())
|
| DisablePreview();
|
| @@ -878,6 +879,15 @@ void PrintWebViewHelper::PrintPage(blink::WebLocalFrame* frame,
|
| }
|
|
|
| bool PrintWebViewHelper::OnMessageReceived(const IPC::Message& message) {
|
| + // The class is not designed to handle recursive messages. This is not
|
| + // expected during regular flow. However, during rendering of content for
|
| + // printing, lower level code may run nested message loop. E.g. PDF may has
|
| + // script to show message box http://crbug.com/502562. In that moment browser
|
| + // may receive updated printer capabilities and decide to restart print
|
| + // preview generation. When this happened message handling function may
|
| + // choose to ignore message or safely crash process.
|
| + ++ipc_nesting_level_;
|
| +
|
| bool handled = true;
|
| IPC_BEGIN_MESSAGE_MAP(PrintWebViewHelper, message)
|
| #if defined(ENABLE_BASIC_PRINTING)
|
| @@ -891,12 +901,15 @@ bool PrintWebViewHelper::OnMessageReceived(const IPC::Message& message) {
|
| IPC_MESSAGE_HANDLER(PrintMsg_SetScriptedPrintingBlocked,
|
| SetScriptedPrintBlocked)
|
| IPC_MESSAGE_UNHANDLED(handled = false)
|
| - IPC_END_MESSAGE_MAP()
|
| + IPC_END_MESSAGE_MAP()
|
| +
|
| + --ipc_nesting_level_;
|
| return handled;
|
| }
|
|
|
| void PrintWebViewHelper::OnPrintForPrintPreview(
|
| const base::DictionaryValue& job_settings) {
|
| + CHECK_LE(ipc_nesting_level_, 1);
|
| // If still not finished with earlier print request simply ignore.
|
| if (prep_frame_view_)
|
| return;
|
| @@ -978,6 +991,7 @@ bool PrintWebViewHelper::GetPrintFrame(blink::WebLocalFrame** frame) {
|
|
|
| #if defined(ENABLE_BASIC_PRINTING)
|
| void PrintWebViewHelper::OnPrintPages() {
|
| + CHECK_LE(ipc_nesting_level_, 1);
|
| blink::WebLocalFrame* frame;
|
| if (!GetPrintFrame(&frame))
|
| return;
|
| @@ -988,6 +1002,7 @@ void PrintWebViewHelper::OnPrintPages() {
|
| }
|
|
|
| void PrintWebViewHelper::OnPrintForSystemDialog() {
|
| + CHECK_LE(ipc_nesting_level_, 1);
|
| blink::WebLocalFrame* frame = print_preview_context_.source_frame();
|
| if (!frame) {
|
| NOTREACHED();
|
| @@ -1029,6 +1044,8 @@ bool PrintWebViewHelper::IsPrintToPdfRequested(
|
| }
|
|
|
| void PrintWebViewHelper::OnPrintPreview(const base::DictionaryValue& settings) {
|
| + CHECK_LE(ipc_nesting_level_, 1);
|
| +
|
| print_preview_context_.OnPrintPreview();
|
|
|
| UMA_HISTOGRAM_ENUMERATION("PrintPreview.PreviewEvent",
|
| @@ -1217,6 +1234,7 @@ bool PrintWebViewHelper::FinalizePrintReadyDocument() {
|
| }
|
|
|
| void PrintWebViewHelper::OnPrintingDone(bool success) {
|
| + CHECK_LE(ipc_nesting_level_, 1);
|
| notify_browser_of_print_failure_ = false;
|
| if (!success)
|
| LOG(ERROR) << "Failure in OnPrintingDone";
|
| @@ -1228,6 +1246,7 @@ void PrintWebViewHelper::SetScriptedPrintBlocked(bool blocked) {
|
| }
|
|
|
| void PrintWebViewHelper::OnInitiatePrintPreview(bool selection_only) {
|
| + CHECK_LE(ipc_nesting_level_, 1);
|
| blink::WebLocalFrame* frame = NULL;
|
| GetPrintFrame(&frame);
|
| DCHECK(frame);
|
|
|
Chromium Code Reviews
Issue 1228693002:
Crash on nested IPC handlers in PrintWebViewHelper (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master