Google Git
Sign in
chromium/chromium/src/refs/heads/main
commit
29a7878dbb65e26c84e225039e93b63b50dd2c62
[log] [tgz]
author
lloydhuang <bzkirto@gmail.com>
Wed Mar 04 08:01:51 2026
committer
Chromium LUCI CQ <chromium-scoped@luci-project-accounts.iam.gserviceaccount.com>
Wed Mar 04 08:01:51 2026
tree
1b7cbc7deeb7634e1be779f8201428cae0d18d53
parent
51b173f571aab46cb9739e58ba33c0d2c1090d21 [diff]
Remove UNSAFE_TODO usages in file system utils

Replaced each UNSAFE_TODO with size-bounded container/view operations to
remove raw pointer arithmetic while preserving behavior. In
obfuscated_file_util_memory_delegate.cc, append/overwrite now use
IOBuffer::first(...) + vector::insert(...) /
span(...).subspan(...).copy_from(...) after existing offset/length
validation and resize, so both source and destination are explicitly
in-bounds. In file_system_util.cc, switched from indexed/pointer-offset
access (kSeparators[i], kXxxDir + 1) to range/string-view based
operations. In dump_file_system.cc, moved suffix handling to string
composition. Overall this keeps semantics unchanged but makes bounds
explicit and verifiable.

Bug: 40284755
Change-Id: Ic8042b3f8bae93fe6469f33b99693c698d308694
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7626019
Commit-Queue: kelsen liu <kelsenliu@chromium.org>
Reviewed-by: Ming-Ying Chung <mych@chromium.org>
Reviewed-by: Rakina Zata Amni <rakina@chromium.org>
Cr-Commit-Position: refs/heads/main@{#1593744}
3 files changed
tree: 1b7cbc7deeb7634e1be779f8201428cae0d18d53
  1. .agents/
  2. .claude/
  3. .gemini/
  4. .github/
  5. agents/
  6. android_webview/
  7. apps/
  8. ash/
  9. base/
  10. build/
  11. build_overrides/
  12. buildtools/
  13. cc/
  14. chrome/
  15. chromecast/
  16. chromeos/
  17. codelabs/
  18. components/
  19. content/
  20. crypto/
  21. dbus/
  22. device/
  23. docs/
  24. extensions/
  25. fuchsia_web/
  26. gin/
  27. google_apis/
  28. gpu/
  29. headless/
  30. infra/
  31. ios/
  32. ipc/
  33. media/
  34. mojo/
  35. net/
  36. pdf/
  37. printing/
  38. remoting/
  39. rlz/
  40. sandbox/
  41. services/
  42. skia/
  43. sql/
  44. storage/
  45. styleguide/
  46. testing/
  47. third_party/
  48. tools/
  49. ui/
  50. url/
  51. webkit/
  52. clank
  53. clusterfuzz-data
  54. internal
  55. ios_internal
  56. signing_keys
  57. v8
  58. .clang-format
  59. .clang-tidy
  60. .clangd
  61. .cursorignore
  62. .geminiignore
  63. .git-blame-ignore-revs
  64. .gitallowed
  65. .gitattributes
  66. .gitignore
  67. .gitmodules
  68. .gn
  69. .mailmap
  70. .rustfmt.toml
  71. .vpython3
  72. .yapfignore
  73. ATL_OWNERS
  74. AUTHORS
  75. BUILD.gn
  76. CODE_OF_CONDUCT.md
  77. codereview.settings
  78. CPPLINT.cfg
  79. CRYPTO_OWNERS
  80. DEPS
  81. DIR_METADATA
  82. LICENSE
  83. LICENSE.chromium_os
  84. OWNERS
  85. package.json
  86. PRESUBMIT.py
  87. PRESUBMIT_test.py
  88. PRESUBMIT_test_mocks.py
  89. README.md
  90. SECURITY_OWNERS
  91. WATCHLISTS
README.md

Logo Chromium

Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web.

The project's web site is https://www.chromium.org.

To check out the source code locally, don't use git clone! Instead, follow the instructions on how to get the code.

Documentation in the source is rooted in docs/README.md.

Learn how to Get Around the Chromium Source Code Directory Structure.

For historical reasons, there are some small top level directories. Now the guidance is that new top level directories are for product (e.g. Chrome, Android WebView, Ash). Even if these products have multiple executables, the code should be in subdirectories of the product.

If you found a bug, please file it at https://crbug.com/new.