CRLSet: don't crash if unrequested delta CRL set returned.

There are a handful of odd crashes that I can't explain in ApplyDelta (see
bug). After reviewing the code, one possibility (I still can't explain how it
could happen) is that Chrome receives a delta CRL from the update server when
it didn't have any CRL to apply it to.

Even if this isn't happening (which is probably true), Chrome should still be
resilient no matter what the update server sends it.

BUG=443292

Review URL: https://codereview.chromium.org/815793003

Cr-Commit-Position: refs/heads/master@{#310041}

1 files changed, 7 insertions, 0 deletions

diff --git a/chrome/browser/net/crl_set_fetcher.cc b/chrome/browser/net/crl_set_fetcher.cc
index 4035075..14841e94 100644
--- a/chrome/browser/net/crl_set_fetcher.cc
+++ b/chrome/browser/net/crl_set_fetcher.cc
@@ -185,6 +185,13 @@ bool CRLSetFetcher::Install(const base::DictionaryValue& manifest,
     return false;
   }
 
+  if (is_delta && !crl_set_.get()) {
+    // The update server gave us a delta update, but we don't have any base
+    // revision to apply it to.
+    LOG(WARNING) << "Received unsolicited delta update.";
+    return false;
+  }
+
   if (!is_delta) {
     if (!net::CRLSetStorage::Parse(crl_set_bytes, &crl_set_)) {
       LOG(WARNING) << "Failed to parse CRL set from update CRX";