state_ == State::kResponseTaken || state_ == State::kRedirectReceived)
Andrey KosyakovI think that something looks broken but I have not investigated what it could be yet
Alex RudenkoYeah, it looks like it can easily happen in response to FollowRedirect():
https://source.chromium.org/chromium/chromium/src/+/main:services/network/url_loader.cc;l=1281;drc=0afc9ac9afcaab79fc54299039f4d27abf3a086d;bpv=1;bpt=1Any chance you could reproduce hitting this in a test?
I wonder if we should provide some error response to client in such case.
Oh, right, good point. Added a test and validation.
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
Or is something broken here?
Alex RudenkoPlease update this before landing.
Done
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
Code-Review | +1 |
template <typename Callback>
You don't really need it templated, given it's only called once.
if (!ValidateHeadersForRequest(entry.get(), callback.get())) {
Should we just move `ValidateHeaders()` call above into `ValidateHeadersForRequest()`?
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
You don't really need it templated, given it's only called once.
Done
if (!ValidateHeadersForRequest(entry.get(), callback.get())) {
Should we just move `ValidateHeaders()` call above into `ValidateHeadersForRequest()`?
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |
5 is the latest approved patch-set.
The change was submitted with unreviewed changes in the following files:
```
The name of the file: content/browser/devtools/protocol/fetch_handler.cc
Insertions: 6, Deletions: 4.
The diff is too large to show. Please review the diff.
```
DevTools: validate unsafe headers
If request headers that are considered to be unsafe by the network
service are used in DevTools request interceptions, DCHECKs will be
hit. This CL adds validation for request headers in continueRequest to
disallow unsafe headers.
Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. | Gerrit |