content/browser/frame_host/render_frame_host_impl.cc - Issue 2905763002: Deduplicating CanReadRequestBody code.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: content/browser/frame_host/render_frame_host_impl.cc

Issue 2905763002: Deduplicating CanReadRequestBody code. (Closed)

Patch Set: Rebasing... Created 3 years, 7 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« no previous file with comments | « content/browser/frame_host/render_frame_host_impl.h ('k') | content/browser/loader/resource_dispatcher_host_impl.cc » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: content/browser/frame_host/render_frame_host_impl.cc

diff --git a/content/browser/frame_host/render_frame_host_impl.cc b/content/browser/frame_host/render_frame_host_impl.cc

index 7e28d332730e878e86e9e13aa5603db59d315a56..c5c6b04749a9de5743278470bc877171e85f9b35 100644

--- a/content/browser/frame_host/render_frame_host_impl.cc

+++ b/content/browser/frame_host/render_frame_host_impl.cc

@@ -2208,7 +2208,8 @@ void RenderFrameHostImpl::OnBeginNavigation(

BeginNavigationParams validated_begin_params = begin_params;

GetProcess()->FilterURL(true, &validated_begin_params.searchable_form_url);

- if (!ValidateUploadParams(validated_params)) {

+ if (!ChildProcessSecurityPolicyImpl::GetInstance()->CanReadRequestBody(

+ GetSiteInstance(), validated_params.post_data)) {

bad_message::ReceivedBadMessage(GetProcess(),

bad_message::RFH_ILLEGAL_UPLOAD_PARAMS);

return;

@@ -4007,36 +4008,6 @@ void RenderFrameHostImpl::SetLastCommittedSiteUrl(const GURL& url) {

}

-bool RenderFrameHostImpl::ValidateUploadParams(

- const CommonNavigationParams& common_params) {

- if (!common_params.post_data.get())

- return true;

- // Check if the renderer is permitted to upload the requested files.

- const std::vector<ResourceRequestBodyImpl::Element>* uploads =

- common_params.post_data->elements();

- std::vector<ResourceRequestBodyImpl::Element>::const_iterator iter;

- ChildProcessSecurityPolicyImpl* security_policy =

- ChildProcessSecurityPolicyImpl::GetInstance();

- for (iter = uploads->begin(); iter != uploads->end(); ++iter) {

- if (iter->type() == ResourceRequestBodyImpl::Element::TYPE_FILE &&

- !security_policy->CanReadFile(GetProcess()->GetID(), iter->path())) {

- return false;

- }

- if (iter->type() ==

- ResourceRequestBodyImpl::Element::TYPE_FILE_FILESYSTEM) {

- StoragePartition* storage_partition = BrowserContext::GetStoragePartition(

- GetSiteInstance()->GetBrowserContext(), GetSiteInstance());

- storage::FileSystemURL url =

- storage_partition->GetFileSystemContext()->CrackURL(

- iter->filesystem_url());

- if (!security_policy->CanReadFileSystemFile(GetProcess()->GetID(), url))

- return false;

- }

- return true;

#if defined(OS_ANDROID)

class RenderFrameHostImpl::JavaInterfaceProvider

« no previous file with comments | « content/browser/frame_host/render_frame_host_impl.h ('k') | content/browser/loader/resource_dispatcher_host_impl.cc » ('j') | no next file with comments »