Issue 2346023002: Ignore Javascript urls dropped on tabs (Mac version)

Issue 2346023002: Ignore Javascript urls dropped on tabs (Mac version) (Closed)

Created:
4 years, 3 months ago by elawrence

Modified:
4 years, 3 months ago

Reviewers:
*Avi (use Gerrit)

CC:
chromium-reviews

Target Ref:
refs/pending/heads/master

Project:
chromium

Visibility:
Public.

More Reviews

Description

Ignore Javascript urls dropped on tabs (Mac version) When a Javascript: url is dropped on a tab, it executes in the security context of the selected tab, representing a script injection attack ("Dropjacking"). We will match other browsers and disallow such drops. Mac handles URL drops using a different codepath than Windows; this change fixes the Mac codepath. BUG=639750 Committed: https://crrev.com/a2525d33673bd4a5987a9aa3dfb516f6c89fb6de Cr-Commit-Position: refs/heads/master@{#419266}

Patch Set 1 #

Total comments: 8

Patch Set 2 : Address feedback #

Total comments: 2

Patch Set 3 : Move return to a new line #

Created: 4 years, 3 months ago

Download [raw] [tar.bz2]

		Unified diffs	Side-by-side diffs	Delta from patch set	Stats (+11 lines, -0 lines)			Patch
	M	chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm	View	1 2	1 chunk	+4 lines, -0 lines	0 comments	Download
	M	chrome/browser/ui/cocoa/toolbar/toolbar_controller.mm	View	1 2	2 chunks	+7 lines, -0 lines	0 comments	Download

Messages

Total messages: 21 (13 generated)

Expand Messages | Collapse Messages | Show Generated Messages | Hide Generated Messages

Avi (use Gerrit)

Some minor nits. https://codereview.chromium.org/2346023002/diff/1/chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm File chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm (right): https://codereview.chromium.org/2346023002/diff/1/chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm#newcode2069 chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm:2069: // Security: Block JavaScript to prevent ...

4 years, 3 months ago (2016-09-16 18:31:09 UTC) #8

elawrence

Thanks for the fast review! https://codereview.chromium.org/2346023002/diff/1/chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm File chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm (right): https://codereview.chromium.org/2346023002/diff/1/chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm#newcode2069 chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm:2069: // Security: Block JavaScript ...

4 years, 3 months ago (2016-09-16 19:02:17 UTC) #9

Avi (use Gerrit)

LGTM with nits. https://codereview.chromium.org/2346023002/diff/20001/chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm File chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm (right): https://codereview.chromium.org/2346023002/diff/20001/chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm#newcode2063 chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm:2063: if (url->SchemeIs(url::kJavaScriptScheme)) return; Strictly speaking this ...

4 years, 3 months ago (2016-09-16 19:07:50 UTC) #10

elawrence

Fixed. Thanks again! https://codereview.chromium.org/2346023002/diff/20001/chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm File chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm (right): https://codereview.chromium.org/2346023002/diff/20001/chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm#newcode2063 chrome/browser/ui/cocoa/tabs/tab_strip_controller.mm:2063: if (url->SchemeIs(url::kJavaScriptScheme)) return; On 2016/09/16 19:07:49, ...

4 years, 3 months ago (2016-09-16 19:17:08 UTC) #11

commit-bot: I haz the power

CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.org/2346023002/40001

4 years, 3 months ago (2016-09-16 20:06:50 UTC) #18

commit-bot: I haz the power

4 years, 3 months ago (2016-09-16 20:16:34 UTC) #21

Message was sent while issue was closed.

Patchset 3 (id:??) landed as
https://crrev.com/a2525d33673bd4a5987a9aa3dfb516f6c89fb6de
Cr-Commit-Position: refs/heads/master@{#419266}

Expand Messages | Collapse Messages | Show Generated Messages | Hide Generated Messages