Handle Mojo SafeBrowsing lookups from SharedWorker and ServiceWorker |
|||
Issue descriptionWebSocket SafeBrowsing had a crash bug which would cause crashes when a WebSocket was opened from a SharedWorker or ServiceWorker: issue 750278 . The problem is that content::RenderFrame::FromWebFrame(frame); returns a null pointer in this case. Based on code inspection, it appears that the http Mojo SafeBrowsing path also has the same issue. See https://chromium-review.googlesource.com/c/602088 for the WebSocket fix.
,
Aug 11 2017
,
Aug 15 2017
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/3a0411351a55560fc38c1ee49061380584c689d8 commit 3a0411351a55560fc38c1ee49061380584c689d8 Author: Yuzhu Shen <yzshen@chromium.org> Date: Tue Aug 15 18:49:46 2017 Renderer-side SafeBrowsing: handle content::RenderFrame::FromWebFrame() returning null. Without this change, the safe browsing path shouldn't crash either: RenderFrame::FromWebFrame(frame) is done in ChromeContentRendererClient::WillSendRequest(). This method is called by RenderFrameImpl::WillSendRequest() supplying its own blink::WebLocalFrame. In this case RenderFrame::FromWebFrame(frame) will never be null I think. But this might be implicit and fragile, a null check might be better. Bug: 754217 Change-Id: I6f424bca03e007deef332b2b816ec3c36e771b62 Reviewed-on: https://chromium-review.googlesource.com/614626 Commit-Queue: Yuzhu Shen <yzshen@chromium.org> Reviewed-by: John Abd-El-Malek <jam@chromium.org> Cr-Commit-Position: refs/heads/master@{#494469} [modify] https://crrev.com/3a0411351a55560fc38c1ee49061380584c689d8/chrome/renderer/chrome_content_renderer_client.cc
,
Aug 15 2017
|
|||
►
Sign in to add a comment |
|||
Comment 1 by yzshen@chromium.org
, Aug 10 2017