Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(370)

Issue 1754713006: CORS-RFC1918: Introduce the 'addressSpace' IDL attributes. (Closed)

Created:
4 years, 9 months ago by Mike West
Modified:
4 years, 9 months ago
CC:
blink-reviews, blink-reviews-dom_chromium.org, blink-worker-reviews_chromium.org, chromium-reviews, darin-cc_chromium.org, dglazkov+blink, eae+blinkwatch, falken, gavinp+loader_chromium.org, horo+watch_chromium.org, jam, Nate Chapin, kinuko+worker_chromium.org, loading-reviews_chromium.org, mkwst+watchlist-csp_chromium.org, rwlbuis, sof, tyoshino+watch_chromium.org, Yoav Weiss
Base URL:
https://chromium.googlesource.com/chromium/src.git@master
Target Ref:
refs/pending/heads/master
Project:
chromium
Visibility:
Public.

Description

CORS-RFC1918: Introduce the 'addressSpace' IDL attributes. As defined at https://mikewest.github.io/cors-rfc1918/#feature-detect, this patch adds attributes to 'Document' and 'WorkerGlobalScope' in order to detect both support for the CORS-RFC1918 preflight mechanism, as well as the current state of the context. This patch also fixes a pretty bad bug with our counting of IPv6 addresses by ensuring that they're properly bracketed before being processed as "reserved" or not. Alas, this means that we've been miscategorizing some unknown subset of documents and resources as "public" that should have been "private". I'm not sure if this is going to make the numbers at https://www.chromestatus.com/metrics/feature/timeline/popularity/530 better or worse. :/ BUG=591672 Committed: https://crrev.com/ba0ae85476038f7fdb7394e9f18e8a0c73fc0855 Cr-Commit-Position: refs/heads/master@{#379282}

Patch Set 1 #

Patch Set 2 : webexposed/ #

Total comments: 1

Patch Set 3 : moar webexposed #

Total comments: 26

Patch Set 4 : philip #

Total comments: 1
Unified diffs Side-by-side diffs Delta from patch set Stats (+174 lines, -17 lines) Patch
M content/child/web_url_loader_impl.cc View 1 2 3 1 chunk +1 line, -1 line 0 comments Download
M content/child/web_url_loader_impl_unittest.cc View 1 2 3 2 chunks +28 lines, -0 lines 0 comments Download
A third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/addressspace-document-basic.html View 1 2 3 1 chunk +11 lines, -0 lines 1 comment Download
A third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/addressspace-document-csp.html View 1 2 3 1 chunk +12 lines, -0 lines 0 comments Download
A third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/addressspace-worker-basic.html View 1 2 3 1 chunk +14 lines, -0 lines 0 comments Download
A third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/addressspace-worker-basic-expected.txt View 1 2 3 1 chunk +7 lines, -0 lines 0 comments Download
A third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/resources/addressspace-test.js View 1 2 3 1 chunk +29 lines, -0 lines 0 comments Download
A third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/resources/post-addressspace-from-worker.html View 1 chunk +7 lines, -0 lines 0 comments Download
A third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/resources/post-addressspace-to-owner.js View 1 2 3 1 chunk +6 lines, -0 lines 0 comments Download
A third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/resources/post-addressspace-to-parent.html View 1 2 3 1 chunk +13 lines, -0 lines 0 comments Download
M third_party/WebKit/LayoutTests/http/tests/serviceworker/webexposed/global-interface-listing-service-worker-expected.txt View 1 2 1 chunk +1 line, -0 lines 0 comments Download
M third_party/WebKit/LayoutTests/webexposed/global-interface-listing-dedicated-worker-expected.txt View 1 1 chunk +1 line, -0 lines 0 comments Download
M third_party/WebKit/LayoutTests/webexposed/global-interface-listing-expected.txt View 1 1 chunk +1 line, -0 lines 0 comments Download
M third_party/WebKit/LayoutTests/webexposed/global-interface-listing-shared-worker-expected.txt View 1 1 chunk +1 line, -0 lines 0 comments Download
M third_party/WebKit/Source/core/dom/Document.cpp View 1 2 3 2 chunks +9 lines, -2 lines 0 comments Download
M third_party/WebKit/Source/core/dom/Document.idl View 1 2 3 2 chunks +7 lines, -0 lines 0 comments Download
M third_party/WebKit/Source/core/dom/SecurityContext.h View 1 2 3 2 chunks +4 lines, -3 lines 0 comments Download
M third_party/WebKit/Source/core/dom/SecurityContext.cpp View 1 2 3 2 chunks +13 lines, -5 lines 0 comments Download
M third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.cpp View 1 2 3 1 chunk +1 line, -1 line 0 comments Download
M third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicyTest.cpp View 2 chunks +2 lines, -2 lines 0 comments Download
M third_party/WebKit/Source/core/loader/FrameFetchContextTest.cpp View 1 2 3 2 chunks +2 lines, -3 lines 0 comments Download
M third_party/WebKit/Source/core/workers/WorkerGlobalScope.idl View 1 2 3 1 chunk +4 lines, -0 lines 0 comments Download

Dependent Patchsets:

Messages

Total messages: 15 (4 generated)
Mike West
Mind taking a look at this Philip? It's all behind a flag, so there shouldn't ...
4 years, 9 months ago (2016-03-03 11:11:22 UTC) #2
Mike West
https://codereview.chromium.org/1754713006/diff/20001/third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/addressspace-worker-basic.html File third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/addressspace-worker-basic.html (right): https://codereview.chromium.org/1754713006/diff/20001/third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/addressspace-worker-basic.html#newcode21 third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/addressspace-worker-basic.html:21: // TODO(mkwst): Broken. These will be unbroken in https://codereview.chromium.org/1760523004, ...
4 years, 9 months ago (2016-03-03 12:04:49 UTC) #3
philipj_slow
lgtm https://codereview.chromium.org/1754713006/diff/40001/content/child/web_url_loader_impl.cc File content/child/web_url_loader_impl.cc (right): https://codereview.chromium.org/1754713006/diff/40001/content/child/web_url_loader_impl.cc#newcode958 content/child/web_url_loader_impl.cc:958: WebString::fromUTF8(info.socket_address.HostForURL())); Is this the "pretty bad bug"? I ...
4 years, 9 months ago (2016-03-04 04:35:09 UTC) #4
Mike West
Thanks Philip! I'll address your comments for reals once I'm in the office later this ...
4 years, 9 months ago (2016-03-04 05:53:54 UTC) #5
Mike West
Philip: The latest patchset should address your feedback. Jochen: Would you mind reviewing the change ...
4 years, 9 months ago (2016-03-04 08:58:21 UTC) #7
philipj_slow
https://codereview.chromium.org/1754713006/diff/40001/third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/addressspace-document-basic.html File third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/addressspace-document-basic.html (right): https://codereview.chromium.org/1754713006/diff/40001/third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/addressspace-document-basic.html#newcode2 third_party/WebKit/LayoutTests/http/tests/security/cors-rfc1918/addressspace-document-basic.html:2: <html> On 2016/03/04 05:53:54, Mike West wrote: > On ...
4 years, 9 months ago (2016-03-04 10:42:12 UTC) #8
philipj_slow
Thanks, still LGTM! https://codereview.chromium.org/1754713006/diff/40001/third_party/WebKit/Source/core/dom/SecurityContext.cpp File third_party/WebKit/Source/core/dom/SecurityContext.cpp (right): https://codereview.chromium.org/1754713006/diff/40001/third_party/WebKit/Source/core/dom/SecurityContext.cpp#newcode84 third_party/WebKit/Source/core/dom/SecurityContext.cpp:84: NOTREACHED(); On 2016/03/04 05:53:54, Mike West ...
4 years, 9 months ago (2016-03-04 10:47:14 UTC) #9
jochen (gone - plz use gerrit)
lgtm
4 years, 9 months ago (2016-03-04 13:02:46 UTC) #10
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1754713006/60001 View timeline at https://chromium-cq-status.appspot.com/patch-timeline/1754713006/60001
4 years, 9 months ago (2016-03-04 14:21:24 UTC) #12
commit-bot: I haz the power
Committed patchset #4 (id:60001)
4 years, 9 months ago (2016-03-04 14:26:57 UTC) #13
commit-bot: I haz the power
4 years, 9 months ago (2016-03-04 14:28:01 UTC) #15
Message was sent while issue was closed.
Patchset 4 (id:??) landed as
https://crrev.com/ba0ae85476038f7fdb7394e9f18e8a0c73fc0855
Cr-Commit-Position: refs/heads/master@{#379282}

Powered by Google App Engine
This is Rietveld 408576698