DescriptionHave all overloads of webcrypto::AlgorithmImplementation::DeserializeKeyForClone check the params type.
Presently neither this nor the calling code checks that the algorithm ID
and key params type correspond correctly. This code already knows what
the expected value is, so it seems a reasonable place to check.
BUG=669649
Committed: https://crrev.com/2e33aac2a71771c2e5780d4e2abb95540760fdcf
Cr-Commit-Position: refs/heads/master@{#435528}
Patch Set 1 #Patch Set 2 : add a test for a case similar to the one the fuzzer found #
Total comments: 4
Patch Set 3 : additional checks, per eroman #
Messages
Total messages: 25 (17 generated)
|