content/browser/fileapi/fileapi_message_filter.cc - Issue 46303005: Fix chrome upload with content uri

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: content/browser/fileapi/fileapi_message_filter.cc

Issue 46303005: Fix chrome upload with content uri (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: Created 7 years, 2 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« content/browser/child_process_security_policy_impl.h ('K') | « content/browser/child_process_security_policy_impl.cc ('k') | content/browser/loader/resource_dispatcher_host_impl.cc » ('j') | content/browser/loader/upload_data_stream_builder.cc » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: content/browser/fileapi/fileapi_message_filter.cc

diff --git a/content/browser/fileapi/fileapi_message_filter.cc b/content/browser/fileapi/fileapi_message_filter.cc

index 99439b742ac06bb8d7cef00da0376a8fb317f6cb..379f509c650a7bb1128d9bfecbecad3761ab26e0 100644

--- a/content/browser/fileapi/fileapi_message_filter.cc

+++ b/content/browser/fileapi/fileapi_message_filter.cc

@@ -63,7 +63,7 @@ namespace {

void RevokeFilePermission(int child_id, const base::FilePath& path) {

ChildProcessSecurityPolicyImpl::GetInstance()->RevokeAllPermissionsForFile(

- child_id, path);

+ child_id, path);

}

} // namespace

@@ -500,7 +500,7 @@ void FileAPIMessageFilter::OnCancel(

void FileAPIMessageFilter::OnOpenPepperFile(

int request_id, const GURL& path, int pp_open_flags) {

DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));

-FileSystemURL url(context_->CrackURL(path));

+ FileSystemURL url(context_->CrackURL(path));

if (!ValidateFileSystemURL(request_id, url))

return;

if (!CanOpenFileSystemURLWithPepperFlags(pp_open_flags, process_id_, url)) {

@@ -627,6 +627,13 @@ void FileAPIMessageFilter::OnAppendBlobDataItemToBlob(

ignore_result(blob_storage_host_->CancelBuildingBlob(uuid));

return;

}

+#if defined(OS_ANDROID)

+ if (item.type() == BlobData::Item::TYPE_CONTENT_URL &&

+ !security_policy_->CanReadContentUrl(process_id_, item.content_url())) {

+ ignore_result(blob_storage_host_->CancelBuildingBlob(uuid));

+ return;

+ }

+#endif

if (item.length() == 0) {

BadMessageReceived();

return;

@@ -692,7 +699,7 @@ void FileAPIMessageFilter::OnStartBuildingStream(

DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO));

// Only an internal Blob URL is expected here. See the BlobURL of the Blink.

if (!StartsWithASCII(

- url.path(), "blobinternal%3A///", true /* case_sensitive */)) {

+ url.path(), "blobinternal%3A///", true /* case_sensitive */)) {

NOTREACHED() << "Malformed Stream URL: " << url.spec();

BadMessageReceived();

return;

@@ -942,7 +949,7 @@ void FileAPIMessageFilter::DidCreateSnapshot(

// Return the file info and platform_path.

Send(new FileSystemMsg_DidCreateSnapshotFile(

- request_id, info, platform_path));

+ request_id, info, platform_path));

}

bool FileAPIMessageFilter::ValidateFileSystemURL(