mojo/shell/application_instance.cc - Issue 1287043004: Use CapabilityFilter to restrict what HTMLViewers can connect to.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: mojo/shell/application_instance.cc

Issue 1287043004: Use CapabilityFilter to restrict what HTMLViewers can connect to. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: . Created 5 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: mojo/shell/application_instance.cc

diff --git a/mojo/shell/application_instance.cc b/mojo/shell/application_instance.cc

index 45d3e4b05c97326e6b5de9c78dc6eabd5d063a7e..4ec5c0f3adc439591bdd472d059789b69d1040b9 100644

--- a/mojo/shell/application_instance.cc

+++ b/mojo/shell/application_instance.cc

@@ -14,6 +14,21 @@

namespace mojo {

namespace shell {

+// It's valid to specify mojo: URLs in the filter either as mojo:foo or

+// mojo://foo/ - but we store the filter in the latter form.

+CapabilityFilter CanonicalizeFilter(const CapabilityFilter& filter) {

+ CapabilityFilter canonicalized;

+ for (CapabilityFilter::const_iterator it = filter.begin();

+ it != filter.end();

+ ++it) {

+ if (it->first == "*")

+ canonicalized[it->first] = it->second;

+ else

+ canonicalized[GURL(it->first).spec()] = it->second;

+ }

+ return canonicalized;

ApplicationInstance::QueuedClientRequest::QueuedClientRequest()

: originator(nullptr) {}

@@ -30,7 +45,7 @@ ApplicationInstance::ApplicationInstance(

: manager_(manager),

originator_identity_(originator_identity),

identity_(identity),

- filter_(filter),

+ filter_(CanonicalizeFilter(filter)),

allow_any_application_(filter.size() == 1 && filter.count("*") == 1),

on_application_end_(on_application_end),

application_(application.Pass()),

@@ -95,11 +110,12 @@ void ApplicationInstance::ConnectToApplication(

ServiceProviderPtr exposed_services,

CapabilityFilterPtr filter) {

std::string url_string = app_request->url.To<std::string>();

- if (!GURL(url_string).is_valid()) {

+ GURL url(url_string);

+ if (!url.is_valid()) {

LOG(ERROR) << "Error: invalid URL: " << url_string;

return;

}

- if (allow_any_application_ || filter_.find(url_string) != filter_.end()) {

+ if (allow_any_application_ || filter_.find(url.spec()) != filter_.end()) {

CapabilityFilter capability_filter = GetPermissiveCapabilityFilter();

if (!filter.is_null())

capability_filter = filter->filter.To<CapabilityFilter>();

@@ -109,7 +125,7 @@ void ApplicationInstance::ConnectToApplication(

base::Closure());

} else {

DVLOG(1) << "CapabilityFilter prevented connection from: " <<

- identity_.url << " to: " << url_string;

+ identity_.url << " to: " << url.spec();

}

« mandoline/tab/frame_connection.cc ('K') | « mojo/application/public/cpp/lib/application_impl.cc ('k') | no next file » | no next file with comments »