Index: chrome/browser/chrome_security_exploit_browsertest.cc |
diff --git a/chrome/browser/chrome_security_exploit_browsertest.cc b/chrome/browser/chrome_security_exploit_browsertest.cc |
index 16a0df3f412eac1596b776e7ea9c43256c3a668c..a3ed72d104433441576a7b39825e6241925049f3 100644 |
--- a/chrome/browser/chrome_security_exploit_browsertest.cc |
+++ b/chrome/browser/chrome_security_exploit_browsertest.cc |
@@ -99,16 +99,11 @@ IN_PROC_BROWSER_TEST_F(ChromeSecurityExploitBrowserTest, |
std::vector<storage::DataElement> data_elements(1); |
data_elements[0].SetToBytes(blob_contents.c_str(), blob_contents.size()); |
- // Set up a blob ID and populate it with attacker-controlled value. These two |
- // messages are allowed, because this data is not in any origin. |
+ // Set up a blob ID and populate it with attacker-controlled value. This |
+ // message is allowed, because this data is not in any origin. |
IPC::IpcSecurityTestUtil::PwnMessageReceived( |
rfh->GetProcess()->GetChannel(), |
- BlobStorageMsg_RegisterBlobUUID(blob_id, blob_type, "", |
- std::set<std::string>())); |
- |
- IPC::IpcSecurityTestUtil::PwnMessageReceived( |
- rfh->GetProcess()->GetChannel(), |
- BlobStorageMsg_StartBuildingBlob(blob_id, data_elements)); |
+ BlobStorageMsg_RegisterBlob(blob_id, blob_type, "", data_elements)); |
// This IPC should result in a kill because |target_origin| is not commitable |
// in |rfh->GetProcess()|. |