Chromium Code Reviews
|
|
Chromium Code Reviews
Issue
2387323002:
Fix blob URL blocking for apps that use <webview>. (Closed)
DescriptionFix blob URL blocking for apps that use <webview>.
It should be possible for an app to embed a <webview> and navigate it
to a blob URL that the app creates. In a previous security fix
(r419019), this navigation was unintentionally blocked, due to
<webview> being considered a main frame as well as being in an
untrusted web process which is requesting a blob URL in a
chrome-extension:// scheme.
BUG=652077, 645028
Committed: https://crrev.com/cd20702d3b3dd5224beaa7fd7b876313b33b6b70
Cr-Commit-Position: refs/heads/master@{#422954}
Patch Set 1 #Patch Set 2 : Done #Patch Set 3 : Cleanup #
Total comments: 2
Patch Set 4 : Fix comment #
Messages
Total messages: 33 (20 generated)
The CQ bit was checked by alexmos@chromium.org to run a CQ dry run
Dry run: CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...
The CQ bit was unchecked by commit-bot@chromium.org
Dry run: This issue passed the CQ dry run.
Description was changed from ========== Fix blob URL blocking for platform apps. BUG=652077 ========== to ========== Fix blob URL blocking for apps that use <webview>. It should be possible for an app to embed a <webview> and navigate it to a blob URL that the app creates. In a previous security fix (r419019), this navigation was unintentionally blocked, due to <webview> being considered a main frame as well as being in an untrusted web process which is requesting a blob URL in a chrome-extension:// scheme. BUG=652077 ==========
The CQ bit was checked by alexmos@chromium.org to run a CQ dry run
Description was changed from ========== Fix blob URL blocking for apps that use <webview>. It should be possible for an app to embed a <webview> and navigate it to a blob URL that the app creates. In a previous security fix (r419019), this navigation was unintentionally blocked, due to <webview> being considered a main frame as well as being in an untrusted web process which is requesting a blob URL in a chrome-extension:// scheme. BUG=652077 ========== to ========== Fix blob URL blocking for apps that use <webview>. It should be possible for an app to embed a <webview> and navigate it to a blob URL that the app creates. In a previous security fix (r419019), this navigation was unintentionally blocked, due to <webview> being considered a main frame as well as being in an untrusted web process which is requesting a blob URL in a chrome-extension:// scheme. BUG=652077 ==========
Dry run: CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...
alexmos@chromium.org changed reviewers: + creis@chromium.org, nasko@chromium.org, wjmaclean@chromium.org
Charlie/Nasko, please take a look. James: please review the new WebView test.
Thanks, LGTM. Please also list 645028 in the CL description. (Let's chat about whether there are ways around this that we should lock down further, but I think it makes sense to proceed with at least this much ASAP.) https://codereview.chromium.org/2387323002/diff/40001/chrome/test/data/extens... File chrome/test/data/extensions/platform_apps/web_view/shim/main.js (right): https://codereview.chromium.org/2387323002/diff/40001/chrome/test/data/extens... chrome/test/data/extensions/platform_apps/web_view/shim/main.js:2962: // This test verifies that mailto links are enabled. nit: Stale comment.
The CQ bit was checked by alexmos@chromium.org to run a CQ dry run
Dry run: CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...
https://codereview.chromium.org/2387323002/diff/40001/chrome/test/data/extens... File chrome/test/data/extensions/platform_apps/web_view/shim/main.js (right): https://codereview.chromium.org/2387323002/diff/40001/chrome/test/data/extens... chrome/test/data/extensions/platform_apps/web_view/shim/main.js:2962: // This test verifies that mailto links are enabled. On 2016/10/04 19:54:36, Charlie Reis wrote: > nit: Stale comment. Done.
On 2016/10/04 20:01:59, alexmos wrote: > https://codereview.chromium.org/2387323002/diff/40001/chrome/test/data/extens... > File chrome/test/data/extensions/platform_apps/web_view/shim/main.js (right): > > https://codereview.chromium.org/2387323002/diff/40001/chrome/test/data/extens... > chrome/test/data/extensions/platform_apps/web_view/shim/main.js:2962: // This > test verifies that mailto links are enabled. > On 2016/10/04 19:54:36, Charlie Reis wrote: > > nit: Stale comment. > > Done. LGTM, thanks!
Description was changed from ========== Fix blob URL blocking for apps that use <webview>. It should be possible for an app to embed a <webview> and navigate it to a blob URL that the app creates. In a previous security fix (r419019), this navigation was unintentionally blocked, due to <webview> being considered a main frame as well as being in an untrusted web process which is requesting a blob URL in a chrome-extension:// scheme. BUG=652077 ========== to ========== Fix blob URL blocking for apps that use <webview>. It should be possible for an app to embed a <webview> and navigate it to a blob URL that the app creates. In a previous security fix (r419019), this navigation was unintentionally blocked, due to <webview> being considered a main frame as well as being in an untrusted web process which is requesting a blob URL in a chrome-extension:// scheme. BUG=652077,645028 ==========
alexmos@chromium.org changed reviewers: + thestig@chromium.org
thestig@: can you please review chrome/browser/net/chrome_extensions_network_delegate.cc for OWNERS?
Wouldn't chrome/browser/net/OWNERS be better?
On 2016/10/04 20:45:31, Lei Zhang wrote: > Wouldn't chrome/browser/net/OWNERS be better? I saw that you touched large parts of that file, so thought you might be familiar with it. I'll try to find someone available in chrome/browser/net/. This is a pretty urgent fix that would be great to get into today's canary, as we need it to bake and merge to M54 before branch.
LGTM
On 2016/10/04 21:07:58, alexmos wrote: > On 2016/10/04 20:45:31, Lei Zhang wrote: > > Wouldn't chrome/browser/net/OWNERS be better? > > I saw that you touched large parts of that file, so thought you might be > familiar with it. I'll try to find someone available in chrome/browser/net/. > This is a pretty urgent fix that would be great to get into today's canary, as > we need it to bake and merge to M54 before branch. It's true, but IIRC, I mostly just refactored the code.
The CQ bit was unchecked by commit-bot@chromium.org
Dry run: This issue passed the CQ dry run.
eroman@chromium.org changed reviewers: + eroman@chromium.org
lgtm
The CQ bit was checked by alexmos@chromium.org
The patchset sent to the CQ was uploaded after l-g-t-m from creis@chromium.org Link to the patchset: https://codereview.chromium.org/2387323002/#ps60001 (title: "Fix comment")
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.or...
Message was sent while issue was closed.
Description was changed from ========== Fix blob URL blocking for apps that use <webview>. It should be possible for an app to embed a <webview> and navigate it to a blob URL that the app creates. In a previous security fix (r419019), this navigation was unintentionally blocked, due to <webview> being considered a main frame as well as being in an untrusted web process which is requesting a blob URL in a chrome-extension:// scheme. BUG=652077,645028 ========== to ========== Fix blob URL blocking for apps that use <webview>. It should be possible for an app to embed a <webview> and navigate it to a blob URL that the app creates. In a previous security fix (r419019), this navigation was unintentionally blocked, due to <webview> being considered a main frame as well as being in an untrusted web process which is requesting a blob URL in a chrome-extension:// scheme. BUG=652077,645028 ==========
Message was sent while issue was closed.
Committed patchset #4 (id:60001)
Message was sent while issue was closed.
Description was changed from ========== Fix blob URL blocking for apps that use <webview>. It should be possible for an app to embed a <webview> and navigate it to a blob URL that the app creates. In a previous security fix (r419019), this navigation was unintentionally blocked, due to <webview> being considered a main frame as well as being in an untrusted web process which is requesting a blob URL in a chrome-extension:// scheme. BUG=652077,645028 ========== to ========== Fix blob URL blocking for apps that use <webview>. It should be possible for an app to embed a <webview> and navigate it to a blob URL that the app creates. In a previous security fix (r419019), this navigation was unintentionally blocked, due to <webview> being considered a main frame as well as being in an untrusted web process which is requesting a blob URL in a chrome-extension:// scheme. BUG=652077,645028 Committed: https://crrev.com/cd20702d3b3dd5224beaa7fd7b876313b33b6b70 Cr-Commit-Position: refs/heads/master@{#422954} ==========
Message was sent while issue was closed.
Patchset 4 (id:??) landed as https://crrev.com/cd20702d3b3dd5224beaa7fd7b876313b33b6b70 Cr-Commit-Position: refs/heads/master@{#422954} |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
