Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore: cherry-pick 2b978fb482 from chromium #32232

Merged
merged 2 commits into from Jan 4, 2022

Conversation

ppontes
Copy link
Member

@ppontes ppontes commented Dec 17, 2021

M96: [FileAPI] Move origin checks in BlobURLStore sooner.

Rather than waiting to verify if a valid origin was passed in until
register/revoke time, check if the origin is valid at the time the
mojo interface is requested. This avoids the need to pass the
delegate on to BlobURLStoreImpl, further decoupling this from
BlobRegistryImpl.

(cherry picked from commit 15cfa2bed3ce9dcdd0a06d3cd3b8330e3591acdc)

Bug: 1262183
Change-Id: I4889685d03501158abfe4f87c647dc468d005f78
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/3264353
Commit-Queue: Marijn Kruisselbrink mek@chromium.org
Reviewed-by: Alex Moshchuk alexmos@chromium.org
Cr-Original-Commit-Position: refs/heads/main@{#940015}
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/3285385
Bot-Commit: Rubber Stamper rubber-stamper@appspot.gserviceaccount.com
Cr-Commit-Position: refs/branch-heads/4664@{#1078}
Cr-Branched-From: 24dc4ee75e01a29d390d43c9c264372a169273a7-refs/heads/main@{#929512}

Notes: Backported fix for CVE-2021-4057.

@ppontes ppontes added security 🔒 semver/patch backport-check-skip 15-x-y labels Dec 17, 2021
@ppontes ppontes requested a review from as a code owner Dec 17, 2021
@ppontes ppontes force-pushed the cherry-pick/15-x-y/chromium/2b978fb482 branch from 58243dd to f43b780 Compare Dec 20, 2021
zcbenz
zcbenz approved these changes Jan 4, 2022
@zcbenz zcbenz merged commit e2cb437 into 15-x-y Jan 4, 2022
11 of 14 checks passed
@zcbenz zcbenz deleted the cherry-pick/15-x-y/chromium/2b978fb482 branch Jan 4, 2022
@release-clerk
Copy link

@release-clerk release-clerk bot commented Jan 4, 2022

Release Notes Persisted

Backported fix for CVE-2021-4057.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
15-x-y backport-check-skip security 🔒 semver/patch
Projects
None yet
Development

Successfully merging this pull request may close these issues.

None yet

4 participants