third_party/WebKit/Source/modules/fetch/FetchManager.cpp - Issue 1391583002: Introduce "navigate" mode in Requests

Side by Side Diff: third_party/WebKit/Source/modules/fetch/FetchManager.cpp

Issue 1391583002: Introduce "navigate" mode in Requests (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Created 5 years, 2 months ago

Use n/p to move between diff chunks; N/P to move between comments.

Jump to:

View unified diff |

« content/common/service_worker/service_worker_types.h ('K') | « third_party/WebKit/Source/core/loader/FrameLoadRequest.h ('k') | third_party/WebKit/Source/modules/fetch/Request.cpp » ('j') | third_party/WebKit/public/platform/WebURLRequest.h » ('J')
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

OLD	NEW
1 // Copyright 2014 The Chromium Authors. All rights reserved.	1 // Copyright 2014 The Chromium Authors. All rights reserved.

2 // Use of this source code is governed by a BSD-style license that can be	2 // Use of this source code is governed by a BSD-style license that can be

3 // found in the LICENSE file.	3 // found in the LICENSE file.

4	4

5 #include "config.h"	5 #include "config.h"

6 #include "modules/fetch/FetchManager.h"	6 #include "modules/fetch/FetchManager.h"

7	7

8 #include "bindings/core/v8/ExceptionState.h"	8 #include "bindings/core/v8/ExceptionState.h"

9 #include "bindings/core/v8/ScriptPromiseResolver.h"	9 #include "bindings/core/v8/ScriptPromiseResolver.h"

10 #include "bindings/core/v8/ScriptState.h"	10 #include "bindings/core/v8/ScriptState.h"

(...skipping 191 matching lines...) Loading...
202 void FetchManager::Loader::didReceiveResponse(unsigned long, const ResourceRespo nse& response, PassOwnPtr<WebDataConsumerHandle> handle)	202 void FetchManager::Loader::didReceiveResponse(unsigned long, const ResourceRespo nse& response, PassOwnPtr<WebDataConsumerHandle> handle)

203 {	203 {

204 ASSERT(handle);	204 ASSERT(handle);

205	205

206 m_responseHttpStatusCode = response.httpStatusCode();	206 m_responseHttpStatusCode = response.httpStatusCode();

207	207

208 // Recompute the tainting if the request was redirected to a different	208 // Recompute the tainting if the request was redirected to a different

209 // origin.	209 // origin.

210 if (!SecurityOrigin::create(response.url())->isSameSchemeHostPort(m_request- >origin().get())) {	210 if (!SecurityOrigin::create(response.url())->isSameSchemeHostPort(m_request- >origin().get())) {

211 switch (m_request->mode()) {	211 switch (m_request->mode()) {

	212 case WebURLRequest::FetchRequestModeNavigate:

	213 m_request->setResponseTainting(FetchRequestData::OpaqueTainting);
	horo 2015/10/14 10:05:31 I think this should be "ASSERT_NOT_REACHED();". T I think this should be "ASSERT_NOT_REACHED();". The request mode can't be "navigate" here. The redirect mode of "navigate" request must be "manual". When the redirect mode is manual, DocumentThreadableLoader doesn't follow the redirect response. So the origin of response url must be same as the request's origin. shiva.jm 2015/10/14 10:59:06 Done, had same opinion in patchset2, but miss read Show quoted text On 2015/10/14 10:05:31, horo wrote: > I think this should be "ASSERT_NOT_REACHED();". > > The request mode can't be "navigate" here. > The redirect mode of "navigate" request must be "manual". > When the redirect mode is manual, DocumentThreadableLoader doesn't follow the > redirect response. > So the origin of response url must be same as the request's origin. Done, had same opinion in patchset2, but miss read from git hub discussions. shall we maintain the order of request mode enums in Request.idl same as enum FetchRequestMode as in WebURLRequest.h ? hiroshige 2015/10/15 06:37:03 horo@, What poses this limitation? The current Fet Show quoted text > The redirect mode of "navigate" request must be "manual". horo@, What poses this limitation? The current Fetch spec text doesn't seem to do. horo 2015/10/15 11:43:05 "navigate" request is created only while "Navigati Show quoted text On 2015/10/15 06:37:03, hiroshige wrote: > > The redirect mode of "navigate" request must be "manual". > horo@, > What poses this limitation? > The current Fetch spec text doesn't seem to do. "navigate" request is created only while "Navigating across documents". https://html.spec.whatwg.org/multipage/browsers.html#navigating-across-documents https://github.com/whatwg/html/commit/80f052b44f3842084221b1104d1fecb02228699a Show quoted text > Set request's client to the source browsing context's active document's Window object's environment settings object, target browsing context to the browsing context being navigated, destination to "document", mode to "navigate", credentials mode to "include", use-URL-credentials flag, and redirect mode to "manual".
	214 break;

212 case WebURLRequest::FetchRequestModeSameOrigin:	215 case WebURLRequest::FetchRequestModeSameOrigin:

213 ASSERT_NOT_REACHED();	216 ASSERT_NOT_REACHED();

214 break;	217 break;

215 case WebURLRequest::FetchRequestModeNoCORS:	218 case WebURLRequest::FetchRequestModeNoCORS:

216 m_request->setResponseTainting(FetchRequestData::OpaqueTainting);	219 m_request->setResponseTainting(FetchRequestData::OpaqueTainting);

217 break;	220 break;

218 case WebURLRequest::FetchRequestModeCORS:	221 case WebURLRequest::FetchRequestModeCORS:

219 case WebURLRequest::FetchRequestModeCORSWithForcedPreflight:	222 case WebURLRequest::FetchRequestModeCORSWithForcedPreflight:

220 m_request->setResponseTainting(FetchRequestData::CORSTainting);	223 m_request->setResponseTainting(FetchRequestData::CORSTainting);

221 break;	224 break;

(...skipping 152 matching lines...) Loading...
374 // "- \|request\|'s url's scheme is 'about'"	377 // "- \|request\|'s url's scheme is 'about'"

375 // Note we don't support to call this method with \|CORS flag\|.	378 // Note we don't support to call this method with \|CORS flag\|.

376 if ((SecurityOrigin::create(m_request->url())->isSameSchemeHostPortAndSubori gin(m_request->origin().get()))	379 if ((SecurityOrigin::create(m_request->url())->isSameSchemeHostPortAndSubori gin(m_request->origin().get()))

377 \|\| (m_request->url().protocolIsData() && m_request->sameOriginDataURLFla g())	380 \|\| (m_request->url().protocolIsData() && m_request->sameOriginDataURLFla g())

378 \|\| (m_request->url().protocolIsAbout())) {	381 \|\| (m_request->url().protocolIsAbout())) {

379 // "The result of performing a basic fetch using request."	382 // "The result of performing a basic fetch using request."

380 performBasicFetch();	383 performBasicFetch();

381 return;	384 return;

382 }	385 }

383	386

	387 // "- \|request\|'s mode is \|navigate\|"

	388 if (m_request->mode() == WebURLRequest::FetchRequestModeNavigate) {

	389 // "The result of performing a basic fetch using \|request\|."

	390 performBasicFetch();

	391 return;

	392 }

	393

384 // "- \|request\|'s mode is \|same-origin\|"	394 // "- \|request\|'s mode is \|same-origin\|"

385 if (m_request->mode() == WebURLRequest::FetchRequestModeSameOrigin) {	395 if (m_request->mode() == WebURLRequest::FetchRequestModeSameOrigin) {

386 // "A network error."	396 // "A network error."

387 performNetworkError("Fetch API cannot load " + m_request->url().string() + ". Request mode is \"same-origin\" but the URL\'s origin is not same as the r equest origin " + m_request->origin()->toString() + ".");	397 performNetworkError("Fetch API cannot load " + m_request->url().string() + ". Request mode is \"same-origin\" but the URL\'s origin is not same as the r equest origin " + m_request->origin()->toString() + ".");

388 return;	398 return;

389 }	399 }

390	400

391 // "- \|request\|'s mode is \|no CORS\|"	401 // "- \|request\|'s mode is \|no CORS\|"

392 if (m_request->mode() == WebURLRequest::FetchRequestModeNoCORS) {	402 if (m_request->mode() == WebURLRequest::FetchRequestModeNoCORS) {

393 // "Set \|request\|'s response tainting to \|opaque\|."	403 // "Set \|request\|'s response tainting to \|opaque\|."

(...skipping 134 matching lines...) Loading...
528 }	538 }

529 if (m_request->credentials() == WebURLRequest::FetchCredentialsModeInclude)	539 if (m_request->credentials() == WebURLRequest::FetchCredentialsModeInclude)

530 resourceLoaderOptions.credentialsRequested = ClientRequestedCredentials;	540 resourceLoaderOptions.credentialsRequested = ClientRequestedCredentials;

531 resourceLoaderOptions.securityOrigin = m_request->origin().get();	541 resourceLoaderOptions.securityOrigin = m_request->origin().get();

532	542

533 ThreadableLoaderOptions threadableLoaderOptions;	543 ThreadableLoaderOptions threadableLoaderOptions;

534 threadableLoaderOptions.contentSecurityPolicyEnforcement = ContentSecurityPo licy::shouldBypassMainWorld(executionContext()) ? DoNotEnforceContentSecurityPol icy : EnforceConnectSrcDirective;	544 threadableLoaderOptions.contentSecurityPolicyEnforcement = ContentSecurityPo licy::shouldBypassMainWorld(executionContext()) ? DoNotEnforceContentSecurityPol icy : EnforceConnectSrcDirective;

535 if (corsPreflightFlag)	545 if (corsPreflightFlag)

536 threadableLoaderOptions.preflightPolicy = ForcePreflight;	546 threadableLoaderOptions.preflightPolicy = ForcePreflight;

537 switch (m_request->mode()) {	547 switch (m_request->mode()) {

	548 case WebURLRequest::FetchRequestModeNavigate:

	549 threadableLoaderOptions.crossOriginRequestPolicy = AllowCrossOriginReque sts;
	horo 2015/10/14 10:05:31 We don't need to allow cross origin requests. This We don't need to allow cross origin requests. This should be DenyCrossOriginRequests. shiva.jm 2015/10/14 10:59:06 Done, had same opinion in patchset2, but miss read Show quoted text On 2015/10/14 10:05:31, horo wrote: > We don't need to allow cross origin requests. > This should be DenyCrossOriginRequests. Done, had same opinion in patchset2, but miss read from git hub discussions. hiroshige 2015/10/15 06:37:03 horo@, I want to clarify why this should be DenyCr Show quoted text > We don't need to allow cross origin requests. horo@, I want to clarify why this should be DenyCrossOriginRequests here. The Fetch spec seems to allow cross-origin requests. horo 2015/10/15 11:43:05 "navigate" request is only available in ServiceWor Show quoted text On 2015/10/15 06:37:03, hiroshige wrote: > > We don't need to allow cross origin requests. > horo@, > I want to clarify why this should be DenyCrossOriginRequests here. > The Fetch spec seems to allow cross-origin requests. "navigate" request is only available in ServiceWorker. The request url's origin must be same as the SW's origin. The request's redirect mode is "manual". So we don't need to allow cross origin requests. yhirano 2015/10/16 18:15:53 (to: horo@) I feel it confusing. How about - usin Show quoted text On 2015/10/15 11:43:05, horo wrote: > On 2015/10/15 06:37:03, hiroshige wrote: > > > We don't need to allow cross origin requests. > > horo@, > > I want to clarify why this should be DenyCrossOriginRequests here. > > The Fetch spec seems to allow cross-origin requests. > > "navigate" request is only available in ServiceWorker. > The request url's origin must be same as the SW's origin. > The request's redirect mode is "manual". > So we don't need to allow cross origin requests. (to: horo@) I feel it confusing. How about - using AllowCrossOriginRequests, - adding an assertion checking that the request url's origin is this origin, - adding an assertion about the redirect mode and - adding comments? horo 2015/10/19 04:08:13 Yes, we should have comments. But I think we shoul Show quoted text On 2015/10/16 18:15:53, yhirano wrote: > On 2015/10/15 11:43:05, horo wrote: > > On 2015/10/15 06:37:03, hiroshige wrote: > > > > We don't need to allow cross origin requests. > > > horo@, > > > I want to clarify why this should be DenyCrossOriginRequests here. > > > The Fetch spec seems to allow cross-origin requests. > > > > "navigate" request is only available in ServiceWorker. > > The request url's origin must be same as the SW's origin. > > The request's redirect mode is "manual". > > So we don't need to allow cross origin requests. > (to: horo@) > I feel it confusing. How about > - using AllowCrossOriginRequests, > - adding an assertion checking that the request url's origin is this origin, > - adding an assertion about the redirect mode and > - adding comments? Yes, we should have comments. But I think we should use DenyCrossOriginRequests here to reduce the security risk. ASSERT() doesn't work in release build. So if there are any bugs in handling the request and the response, severe security accident could happen.
	550 break;

538 case WebURLRequest::FetchRequestModeSameOrigin:	551 case WebURLRequest::FetchRequestModeSameOrigin:

539 threadableLoaderOptions.crossOriginRequestPolicy = DenyCrossOriginReques ts;	552 threadableLoaderOptions.crossOriginRequestPolicy = DenyCrossOriginReques ts;

540 break;	553 break;

541 case WebURLRequest::FetchRequestModeNoCORS:	554 case WebURLRequest::FetchRequestModeNoCORS:

542 threadableLoaderOptions.crossOriginRequestPolicy = AllowCrossOriginReque sts;	555 threadableLoaderOptions.crossOriginRequestPolicy = AllowCrossOriginReque sts;

543 break;	556 break;

544 case WebURLRequest::FetchRequestModeCORS:	557 case WebURLRequest::FetchRequestModeCORS:

545 case WebURLRequest::FetchRequestModeCORSWithForcedPreflight:	558 case WebURLRequest::FetchRequestModeCORSWithForcedPreflight:

546 threadableLoaderOptions.crossOriginRequestPolicy = UseAccessControl;	559 threadableLoaderOptions.crossOriginRequestPolicy = UseAccessControl;

547 break;	560 break;

(...skipping 69 matching lines...) Loading...
617 loader->dispose();	630 loader->dispose();

618 }	631 }

619	632

620 DEFINE_TRACE(FetchManager)	633 DEFINE_TRACE(FetchManager)

621 {	634 {

622 visitor->trace(m_executionContext);	635 visitor->trace(m_executionContext);

623 visitor->trace(m_loaders);	636 visitor->trace(m_loaders);

624 }	637 }

625	638

626 } // namespace blink	639 } // namespace blink

OLD	NEW