[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-commits] [tor-browser] 34/76: Bug 1755621 - Check webauthn extensions r=dveditz, a=RyanVM

To: tor-commits@xxxxxxxxxxxxxxxxxxxx, tbb-commits@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-commits] [tor-browser] 34/76: Bug 1755621 - Check webauthn extensions r=dveditz, a=RyanVM
From: gitolite role <git@xxxxxxxxxxxxxxxxxxxxx>
Date: Wed, 30 Mar 2022 20:40:02 +0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 30 Mar 2022 16:42:27 -0400
In-reply-to: <164867276779.22664.6001095401744486780@cupani.torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-commits/>
List-help: <mailto:tor-commits-request@lists.torproject.org?subject=help>
List-id: "auto: code repository commits" <tor-commits.lists.torproject.org>
List-post: <mailto:tor-commits@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=unsubscribe>
References: <164867276779.22664.6001095401744486780@cupani.torproject.org>
Reply-to: "R. Martinho Fernandes" <bugs@xxxxxx>
Sender: "tor-commits" <tor-commits-bounces@xxxxxxxxxxxxxxxxxxxx>
Thread-index: AQAAEjRWKr6M6jkhTNqDA3UcfXdmyA==

This is an automated email from the git hooks/post-receive script.

richard pushed a commit to branch tor-browser-91.8.0esr-11.0-1
in repository tor-browser.

commit d54411c31e49579497e4d9d0f976ab6136e3980d
Author: R. Martinho Fernandes <bugs@xxxxxx>
AuthorDate: Fri Mar 11 20:32:34 2022 +0000

    Bug 1755621 - Check webauthn extensions r=dveditz, a=RyanVM
    
    Differential Revision: https://phabricator.services.mozilla.com/D139499
---
 dom/webauthn/WinWebAuthnManager.cpp | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/dom/webauthn/WinWebAuthnManager.cpp b/dom/webauthn/WinWebAuthnManager.cpp
index eec3a78b6c3d5..1c1b162ac6725 100644
--- a/dom/webauthn/WinWebAuthnManager.cpp
+++ b/dom/webauthn/WinWebAuthnManager.cpp
@@ -288,10 +288,12 @@ void WinWebAuthnManager::Register(
         break;
     }
 
+    if (extra.Extensions().Length() > (int)(sizeof(rgExtension) / sizeof(rgExtension[0]))) {
+      nsresult aError = NS_ERROR_DOM_INVALID_STATE_ERR;
+      MaybeAbortRegister(aTransactionId, aError);
+      return;
+    }
     for (const WebAuthnExtension& ext : extra.Extensions()) {
-      MOZ_ASSERT(cExtensions <
-                 (int)(sizeof(rgExtension) / sizeof(rgExtension[0])));
-
       if (ext.type() == WebAuthnExtension::TWebAuthnExtensionHmacSecret) {
         HmacCreateSecret =
             ext.get_WebAuthnExtensionHmacSecret().hmacCreateSecret() == true;

-- 
To stop receiving notification emails like this one, please contact
the administrator of this repository.
_______________________________________________
tor-commits mailing list
tor-commits@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits

References:
- [tor-commits] [tor-browser] branch tor-browser-91.8.0esr-11.0-1 created (now a981804052f46)
  - From: gitolite role

Prev by Author: [tor-commits] [tor-browser] 52/76: Bug 1757476: Align spills of ARM64 double registers r=jseward a=RyanVM
Next by Author: [tor-commits] [tor-browser] 28/73: Bug 21830: Copying large text from web console leaks to /tmp
Previous by thread: [tor-commits] [tor-browser] 33/76: Bug 1753508 - Make `EditorBase::AutoEditActionDataSetter::UpdateSelectionCache` clean up and restart selection batch which the editor started. r=smaug, a=RyanVM
Next by thread: [tor-commits] [tor-browser] 31/76: Bug 1758509 - Update regex crate to 1.5.5 r=emilio, a=RyanVM
Index(es):
- Author
- Thread