New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 760637 link

Starred by 2 users
Status: WontFix
Owner:
lukasza@chromium.org
Closed: Sep 2017
Cc:
nverne@chromium.org
nick@chromium.org
wfh@chromium.org
creis@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: 3
Type: Bug



Sign in to add a comment

Routing ID from ChromePluginPlaceholder::CreateRoutingId() is used without a process context

Project Member Reported by lukasza@chromium.org, Aug 30 2017 
Routing ID from ChromePluginPlaceholder::CreateRoutingId() is used without a process context.

Example #1: Sending an IPC to a potentially wrong process in PluginObserver::PluginPlaceholderHost::DownloadFinished

Example #2: Using the routing ID as a key for PluginObserver::plugin_placeholders_ map (which AFAIU can be populated based on input from multiple processes).

Example #3: Key in PluginObserver::component_observers_ map

Example #4: Sending an IPC to a potentially wrong process in PluginObserver::ComponentObserver::OnEvent


Notes:

- The list of problems above is not necessary exhaustive / complete.

- This bug is a follow-up for a CR comment at https://chromium-review.googlesource.com/c/chromium/src/+/630416/4/chrome/browser/plugins/plugin_observer.cc#140

Comment 1 by lukasza@chromium.org, Sep 5 2017

Status: Started (was: Assigned)
CL under review at https://chromium-review.googlesource.com/c/chromium/src/+/644507

Comment 2 by lukasza@chromium.org, Sep 7 2017

Cc: nverne@chromium.org
Status: WontFix (was: Started)
This bug is no applicable after r500213.  Thanks nverne@!

Comment 3 by nverne@chromium.org, Sep 8 2017 

You're welcome!

Sign in to add a comment