content/browser/download/save_file_resource_handler.cc - Issue 2075273002: Resource requests from Save-Page-As should go through CanRequestURL checks.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: content/browser/download/save_file_resource_handler.cc

Issue 2075273002: Resource requests from Save-Page-As should go through CanRequestURL checks. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Rebasing... Created 4 years, 5 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« content/browser/download/save_file_resource_handler.h ('K') | « content/browser/download/save_file_resource_handler.h ('k') | content/browser/download/save_item.h » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: content/browser/download/save_file_resource_handler.cc

diff --git a/content/browser/download/save_file_resource_handler.cc b/content/browser/download/save_file_resource_handler.cc

index 969e2db48052e32ebb5b615d27748ecb79373883..316bef4e0d75f31f4478d175ab4797254b74eecf 100644

--- a/content/browser/download/save_file_resource_handler.cc

+++ b/content/browser/download/save_file_resource_handler.cc

@@ -30,7 +30,8 @@ SaveFileResourceHandler::SaveFileResourceHandler(net::URLRequest* request,

render_frame_routing_id_(render_frame_routing_id),

url_(url),

content_length_(0),

- save_manager_(manager) {}

+ save_manager_(manager),

+ is_authorized_(true) {}

SaveFileResourceHandler::~SaveFileResourceHandler() {

}

@@ -57,12 +58,13 @@ bool SaveFileResourceHandler::OnResponseStarted(ResourceResponse* response,

}

bool SaveFileResourceHandler::OnWillStart(const GURL& url, bool* defer) {

- return true;

+ return is_authorized_;

}

bool SaveFileResourceHandler::OnWillRead(scoped_refptr<net::IOBuffer>* buf,

int* buf_size,

int min_size) {

+ DCHECK(is_authorized_);

DCHECK(buf && buf_size);

if (!read_buffer_.get()) {

*buf_size = min_size < 0 ? kReadBufSize : min_size;

@@ -73,6 +75,7 @@ bool SaveFileResourceHandler::OnWillRead(scoped_refptr<net::IOBuffer>* buf,

}

bool SaveFileResourceHandler::OnReadCompleted(int bytes_read, bool* defer) {

+ DCHECK(is_authorized_);

DCHECK(read_buffer_.get());

// We are passing ownership of this buffer to the save file manager.

scoped_refptr<net::IOBuffer> buffer;

@@ -88,6 +91,9 @@ void SaveFileResourceHandler::OnResponseCompleted(

const net::URLRequestStatus& status,

const std::string& security_info,

bool* defer) {

+ if (!is_authorized_)

+ DCHECK(!status.is_success());

BrowserThread::PostTask(

BrowserThread::FILE, FROM_HERE,

base::Bind(&SaveFileManager::SaveFinished, save_manager_, save_item_id_,