Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(936)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/browser/ui/webui/constrained_web_dialog_delegate_base.cc

Issue 2798583002: WebUI: prevent WebContent to hold invalid pointer. (Closed)
Patch Set: prevent ConstrainedWebDialogBase to hold an invalid pointer. Created 3 years, 8 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « chrome/browser/ui/webui/constrained_web_dialog_delegate_base.h ('k') | chrome/browser/ui/webui/constrained_web_dialog_ui.h » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/browser/ui/webui/constrained_web_dialog_delegate_base.cc
diff --git a/chrome/browser/ui/webui/constrained_web_dialog_delegate_base.cc b/chrome/browser/ui/webui/constrained_web_dialog_delegate_base.cc
index fc5275f224f37bb50e7f8be00abf2afa5c3ac54d..cd7d85e6ff5c00c1a003b6441652377bedd0f1de 100644
--- a/chrome/browser/ui/webui/constrained_web_dialog_delegate_base.cc
+++ b/chrome/browser/ui/webui/constrained_web_dialog_delegate_base.cc
@@ -34,6 +34,7 @@ ConstrainedWebDialogDelegateBase::ConstrainedWebDialogDelegateBase(
CHECK(delegate);
web_contents_.reset(
WebContents::Create(WebContents::CreateParams(browser_context)));
+ WebContentsObserver::Observe(web_contents_.get());
zoom::ZoomController::CreateForWebContents(web_contents_.get());
if (tab_delegate) {
override_tab_delegate_.reset(tab_delegate);
@@ -58,8 +59,12 @@ ConstrainedWebDialogDelegateBase::ConstrainedWebDialogDelegateBase(
}
ConstrainedWebDialogDelegateBase::~ConstrainedWebDialogDelegateBase() {
- if (release_contents_on_close_)
+ if (release_contents_on_close_ && web_contents_) {
+ // Remove reference to |this| in the WebContent since the lifetime of the
+ // WebContent may exceed the one of this object.
+ ConstrainedWebDialogUI::ClearConstrainedDelegate(web_contents_.get());
ignore_result(web_contents_.release());
+ }
}
const WebDialogDelegate*
@@ -114,6 +119,10 @@ gfx::Size ConstrainedWebDialogDelegateBase::GetPreferredSize() const {
return gfx::Size();
}
+void ConstrainedWebDialogDelegateBase::WebContentsDestroyed() {
+ web_contents_.release();
Lei Zhang 2017/04/07 00:55:22 This release() makes the ownership of |web_content
+}
+
void ConstrainedWebDialogDelegateBase::ResizeToGivenSize(
const gfx::Size size) {
NOTREACHED();
« no previous file with comments | « chrome/browser/ui/webui/constrained_web_dialog_delegate_base.h ('k') | chrome/browser/ui/webui/constrained_web_dialog_ui.h » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698