update_engine: Reject XML with internal entity declarations. This helps avoid resource exhaustion problems. BUG=chromium:406546 TEST=New unit test + unit tests pass. Change-Id: Ib54f378cf533c200631b274c0414075c2ea4ff67 Reviewed-on: https://chromium-review.googlesource.com/214291 Reviewed-by: Chris Masone <cmasone@chromium.org> Reviewed-by: Alex Deymo <deymo@chromium.org> Commit-Queue: David Zeuthen <zeuthen@chromium.org> Tested-by: David Zeuthen <zeuthen@chromium.org>

commit: f3e2801f18bae14e41099e007de7c9a019735556 [log] [tgz]
author: David Zeuthen <zeuthen@chromium.org> Tue Aug 26 18:23:52 2014 -0400
committer: chrome-internal-fetch <chrome-internal-fetch@google.com> Thu Aug 28 04:23:40 2014 +0000
tree: 9c203dbe82efa9fc1ea692cc34a6dbf787e68a0b
parent: 4906c1c6dac2ef7916bfa7193cc9324e99b4d223 [diff] [blame]
diff --git a/update_manager/chromeos_policy.cc b/update_manager/chromeos_policy.cc
index af1d8ac..0dc0ad6 100644
--- a/update_manager/chromeos_policy.cc
+++ b/update_manager/chromeos_policy.cc

@@ -115,6 +115,7 @@
     case ErrorCode::kOmahaUpdateDeferredForBackoff:
     case ErrorCode::kPostinstallPowerwashError:
     case ErrorCode::kUpdateCanceledByChannelChange:
+    case ErrorCode::kOmahaRequestXMLHasEntityDecl:
       LOG(INFO) << "Not changing URL index or failure count due to error "
                 << chromeos_update_engine::utils::CodeToString(err_code)
                 << " (" << static_cast<int>(err_code) << ")";
commit	f3e2801f18bae14e41099e007de7c9a019735556	[log] [tgz]
author	David Zeuthen <zeuthen@chromium.org>	Tue Aug 26 18:23:52 2014 -0400
committer	chrome-internal-fetch <chrome-internal-fetch@google.com>	Thu Aug 28 04:23:40 2014 +0000
tree	9c203dbe82efa9fc1ea692cc34a6dbf787e68a0b
parent	4906c1c6dac2ef7916bfa7193cc9324e99b4d223 [diff] [blame]