content/public/browser/web_contents.h - Issue 2856653004: Require a process ID when looking up RFHs by FrameTreeNode ID.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: content/public/browser/web_contents.h

Issue 2856653004: Require a process ID when looking up RFHs by FrameTreeNode ID. (Closed)

Patch Set: Remove GetParentFtnId. Created 3 years, 8 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

Index: content/public/browser/web_contents.h

diff --git a/content/public/browser/web_contents.h b/content/public/browser/web_contents.h

index b4ac5c96864391a7ee595cda8f85ebe9f9d587f8..5cce1884fb5388669ba7e27bcaf5f683a727fca9 100644

--- a/content/public/browser/web_contents.h

+++ b/content/public/browser/web_contents.h

@@ -245,9 +245,21 @@ class WebContents : public PageNavigator,

virtual RenderFrameHost* GetFocusedFrame() = 0;

// Returns the current RenderFrameHost for a given FrameTreeNode ID if it is

- // part of this tab. See RenderFrameHost::GetFrameTreeNodeId for documentation

- // on this ID.

- virtual RenderFrameHost* FindFrameByFrameTreeNodeId(

+ // part of this tab. Returns nullptr if |process_id| does not match the

dmazzoni 2017/05/01 22:56:37 Is there a better term you can use than "tab"? Tha

Charlie Reis 2017/05/01 23:12:35 Thanks. I changed it to "frame tree," explicitly

+ // current RenderFrameHost's process ID, to avoid security bugs where callers

+ // do not realize a cross-process navigation (and thus privilege change) has

+ // taken place. See RenderFrameHost::GetFrameTreeNodeId for documentation on

+ // frame_tree_node_id.

+ virtual RenderFrameHost* FindFrameByFrameTreeNodeId(int frame_tree_node_id,

+ int process_id) = 0;

+ // NOTE: This is generally unsafe to use. Use FindFrameByFrameTreeNodeId

+ // instead.

+ // Returns the current RenderFrameHost for a given FrameTreeNode ID if it is

+ // part of this tab. This may not match the caller's expectation, if a

+ // cross-process navigation (and thus privilege change) has taken place.

+ // See RenderFrameHost::GetFrameTreeNodeId for documentation on this ID.

+ virtual RenderFrameHost* UnsafeFindFrameByFrameTreeNodeId(

int frame_tree_node_id) = 0;

// Calls |on_frame| for each frame in the currently active view.