content/browser/frame_host/render_frame_host_impl.cc - Issue 1759123002: Ensure RenderFrameHost & NavigationHandle are not destroyed during commit

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: content/browser/frame_host/render_frame_host_impl.cc

Issue 1759123002: Ensure RenderFrameHost & NavigationHandle are not destroyed during commit (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Created 4 years, 9 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: content/browser/frame_host/render_frame_host_impl.cc

diff --git a/content/browser/frame_host/render_frame_host_impl.cc b/content/browser/frame_host/render_frame_host_impl.cc

index 10615f42110f563377626bbb59613d51d09357ba..6182d2e7472e029d8ae4b2e7b2331f3b2866f243 100644

--- a/content/browser/frame_host/render_frame_host_impl.cc

+++ b/content/browser/frame_host/render_frame_host_impl.cc

@@ -208,6 +208,7 @@ RenderFrameHostImpl::RenderFrameHostImpl(SiteInstance* site_instance,

web_ui_type_(WebUI::kNoWebUI),

pending_web_ui_type_(WebUI::kNoWebUI),

should_reuse_web_ui_(false),

+ is_in_commit_(false),

weak_ptr_factory_(this) {

bool is_swapped_out = !!(flags & CREATE_RF_SWAPPED_OUT);

bool hidden = !!(flags & CREATE_RF_HIDDEN);

@@ -261,6 +262,8 @@ RenderFrameHostImpl::~RenderFrameHostImpl() {

// RenderFrameHost during cleanup.

ClearAllWebUI();

+ CHECK(!is_in_commit_);

GetProcess()->RemoveRoute(routing_id_);

g_routing_id_frame_map.Get().erase(

RenderFrameHostID(GetProcess()->GetID(), routing_id_));

@@ -1085,9 +1088,20 @@ void RenderFrameHostImpl::OnDidCommitProvisionalLoad(const IPC::Message& msg) {

}

+ // TODO(clamy): Remove this once enough data has been gathered for

+ // crbug.com/589365.

+ is_in_commit_ = true;

+ navigation_handle_->set_is_in_commit(true);

accessibility_reset_count_ = 0;

frame_tree_node()->navigator()->DidNavigate(this, validated_params);

+ // TODO(clamy): Remove this once enough data has been gathered for

+ // crbug.com/589365.

+ is_in_commit_ = false;

+ if (navigation_handle_.get())

nasko 2016/03/15 14:10:34 Shouldn't the handle be destroyed once we've commi

clamy 2016/03/15 14:16:16 No, hence the TODO in Navigator.

+ navigation_handle_->set_is_in_commit(false);

// For a top-level frame, there are potential security concerns associated

// with displaying graphics from a previously loaded page after the URL in

// the omnibar has been changed. It is unappealing to clear the page

« content/browser/frame_host/navigator_impl.cc ('K') | « content/browser/frame_host/render_frame_host_impl.h ('k') | no next file » | no next file with comments »