Google Git
Sign in
chromium / chromium / src / c7d2c165957f5af4341582a648e6e14c7efee6ab
commitc7d2c165957f5af4341582a648e6e14c7efee6ab[log] [tgz]
authorJihad Hanna <jihadghanna@google.com>Tue Dec 05 23:50:58 2023
committerChromium LUCI CQ <chromium-scoped@luci-project-accounts.iam.gserviceaccount.com>Tue Dec 05 23:50:58 2023
treeffd9a8068c44b142fdc692efdec8a762b599027a
parent1d6699313b873dfda81a6625cedfac714584069e [diff]
Do not send FormData objects from the browser to the renderer

Undo removes fields to be sent to the renderer if it does not change
them. Another attribute of FormData is FormData::child_frames which
stores indices of fields in FormData::fields and so removing fields
from the list corrupts this particular data, resulting in mojo parsing
errors.

FormData::child_frames is only needed in
FormForest::UpdateTreeOfRendereForms which is only called in
renderer-to-browser communications.

Other filling functions could also in the future remove fields that are
not to-be filled by the renderer which could be problematic and on a
much larger scale.

This CL fixes the problem by only sending fields and the form renderer
id to the renderer instead of the whole form. This allows us to modify
FormData attributes freely in the browser.

Note that ApplyFormAction was the only mojo function sending a FormData
object from the browser to the renderer.

This CL is a no-op.

Bug: 1502814, 1441410
Change-Id: I479f953b6f5a75c5878313dfe6b3cd95a7b35f96
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/5033302
Reviewed-by: Arthur Sonzogni <arthursonzogni@chromium.org>
Reviewed-by: Christoph Schwering <schwering@google.com>
Code-Coverage: findit-for-me@appspot.gserviceaccount.com <findit-for-me@appspot.gserviceaccount.com>
Commit-Queue: Jihad Hanna <jihadghanna@google.com>
Cr-Commit-Position: refs/heads/main@{#1233646}
11 files changed
tree: ffd9a8068c44b142fdc692efdec8a762b599027a
  1. android_webview/
  2. apps/
  3. ash/
  4. base/
  5. build/
  6. build_overrides/
  7. buildtools/
  8. cc/
  9. chrome/
  10. chromecast/
  11. chromeos/
  12. codelabs/
  13. components/
  14. content/
  15. courgette/
  16. crypto/
  17. dbus/
  18. device/
  19. docs/
  20. extensions/
  21. fuchsia_web/
  22. gin/
  23. google_apis/
  24. google_update/
  25. gpu/
  26. headless/
  27. infra/
  28. ios/
  29. ipc/
  30. media/
  31. mojo/
  32. native_client_sdk/
  33. net/
  34. pdf/
  35. ppapi/
  36. printing/
  37. remoting/
  38. rlz/
  39. sandbox/
  40. services/
  41. skia/
  42. sql/
  43. storage/
  44. styleguide/
  45. testing/
  46. third_party/
  47. tools/
  48. ui/
  49. url/
  50. webkit/
  51. clank
  52. internal
  53. ios_internal
  54. native_client
  55. signing_keys
  56. v8
  57. .clang-format
  58. .clang-tidy
  59. .clangd
  60. .eslintrc.js
  61. .git-blame-ignore-revs
  62. .gitattributes
  63. .gitignore
  64. .gitmodules
  65. .gn
  66. .mailmap
  67. .rustfmt.toml
  68. .vpython3
  69. .yapfignore
  70. ATL_OWNERS
  71. AUTHORS
  72. BUILD.gn
  73. CODE_OF_CONDUCT.md
  74. codereview.settings
  75. DEPS
  76. DIR_METADATA
  77. LICENSE
  78. LICENSE.chromium_os
  79. OWNERS
  80. PRESUBMIT.py
  81. PRESUBMIT_test.py
  82. PRESUBMIT_test_mocks.py
  83. README.md
  84. WATCHLISTS
README.md

Logo Chromium

Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web.

The project's web site is https://www.chromium.org.

To check out the source code locally, don't use git clone! Instead, follow the instructions on how to get the code.

Documentation in the source is rooted in docs/README.md.

Learn how to Get Around the Chromium Source Code Directory Structure .

For historical reasons, there are some small top level directories. Now the guidance is that new top level directories are for product (e.g. Chrome, Android WebView, Ash). Even if these products have multiple executables, the code should be in subdirectories of the product.

If you found a bug, please file it at https://crbug.com/new.