chromium/src
0
Fork 0
Code Activity
Files
fead5233d7a5d143b176aa18b027e2fc3c8a1af4
src/net
History
Matt Reichhoff 6fbfb0308c Add bounds checks to CookieInclusionStatus operations 
While out-of-bounds accesses shouldn't happen in practice, a recent
bitset change uncovered that bounds checks were missing.

Note that CookieInclusionStatus is passed as an int32 via mojo, and
only the NUM_WARNING_REASONS and NUM_EXCLUSION_REASONS are read.

See https://github.com/llvm/llvm-project/pull/120685/files for info on
the bitset hardening change.

Change-Id: Iaea68330479a7f6c3340d4300893dd00fbbed181
Bug: 385924889
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/6142073
Reviewed-by: Steven Bingler <bingler@chromium.org>
Commit-Queue: Matt Reichhoff <mreichhoff@chromium.org>
Cr-Commit-Position: refs/heads/main@{#1401936}
2025-01-03 12:50:43 -08:00
..
android
Disable failing NetworkChangeNotifierTests
2024-12-19 10:38:25 -08:00
base
Make GetDomainAndRegistry Cache thread-safe
2025-01-02 08:48:36 -08:00
cert
test/cert_builder: Allow invalid URLs
2024-12-13 02:01:34 -08:00
cert_net
Cleanups from stricter span usage of size_t: net
2024-11-17 22:41:10 +00:00
cookies
Add bounds checks to CookieInclusionStatus operations
2025-01-03 12:50:43 -08:00
data
Remove Unused SpawnedTestServer Handlers
2024-11-15 15:02:46 +00:00
device_bound_sessions
[DBSC]Add checkings on if session is valid before creating.
2024-12-23 18:35:17 -08:00
disk_cache
Avoid windows.h in message_pump_win.h.
2024-12-31 18:08:02 -08:00
dns
dns: Refactor HostResolverManager::ServiceEndpointRequestImpl
2024-12-18 13:12:17 -08:00
docs
extras
Assert that database tag is valid at compile time
2024-12-18 15:25:28 -08:00
filter
first_party_sets
Revert "Remove underscores from test names to follow GTest conventions //net."
2024-12-03 06:56:26 +00:00
http
Automatic update from google3
2025-01-03 08:53:28 -08:00
log
HttpStreamPool: Add more NetLog events and sources
2024-12-18 12:05:22 -08:00
network_error_logging
Revert "Remove underscores from test names to follow GTest conventions //net."
2024-12-03 06:56:26 +00:00
nqe
C++11 std::array rewrite for memory safety [6/19]
2024-12-12 04:00:04 -08:00
ntlm
Misc. cleanup for span constructor usage, part 1
2024-12-12 12:16:17 -08:00
proxy_resolution
C++11 std::array rewrite for memory safety [6/19]
2024-12-12 04:00:04 -08:00
quic
Clean up TransportSecurityState interface
2024-12-18 12:13:08 -08:00
reporting
C++11 std::array rewrite for memory safety [6/19]
2024-12-12 04:00:04 -08:00
server
Use enum class for NextProto
2024-12-11 02:02:13 +00:00
shared_dictionary
Use enum class for NextProto
2024-12-11 02:02:13 +00:00
socket
Avoid windows.h in message_pump_win.h.
2024-12-31 18:08:02 -08:00
spdy
Clean up TransportSecurityState interface
2024-12-18 12:13:08 -08:00
ssl
Cert Management UI V2: Use certs from DB in chromeos client cert path building
2024-12-05 21:17:05 +00:00
storage_access_api
test
test/cert_builder: Allow invalid URLs (2)
2025-01-02 10:17:44 -08:00
third_party
Roll src/net/third_party/quiche/src/ 2f180e163..981c42446 (4 commits)
2024-12-18 00:30:28 -08:00
tools
net: add missing includes for the build with use_libcxx_modules
2024-12-16 00:14:37 -08:00
traffic_annotation
url_request
Don't depend directly on histogram_functions_internal_overloads.h.
2024-12-17 10:58:59 -08:00
websockets
Fix HstsHttpsToWebSocketNotApplied ChromeOS failure
2024-12-17 11:23:32 -08:00
BUILD.gn
HttpStreamPool: Log why stream attempts are canceled
2024-12-18 12:14:10 -08:00
COMMON_METADATA
DEPS
Use simdutf to base64 decode for data URLs
2024-12-05 01:31:36 +00:00
DIR_METADATA
features.gni
Enable compilation and unittests on mac
2024-12-18 15:26:56 -08:00
OWNERS
Remove myself from net/OWNERS and .../privacy_budget/OWNERS
2024-11-15 12:50:27 +00:00
PRESUBMIT.py
README.md

README.md

Chrome Networking Stack

This directory contains the code behind Chrome's networking stack. It is documented here.