Closed Bug 1486598 Opened 7 years ago Closed 6 months ago

Web Authn Origin Forgery through IPC

Categories

(Core :: DOM: Web Authentication, enhancement, P3)

Product:
Core
Component:
DOM: Web Authentication
Type:
enhancement

Tracking

()

Status:
RESOLVED FIXED
Milestone:
137 Branch
Project Flags:
Fission Milestone Future
Tracking Flags:
Tracking Status
firefox137 --- fixed

People

(Reporter: tjr, Assigned: jschanck)

References

(Depends on 1 open bug, Blocks 1 open bug)

Details

(Whiteboard: [domsecurity-backlog2] [webauthn])

Attachments

(2 files)

Bug 1486598 - part 1: evaluate WebAuthn RP ID in parent process. r=keeler
48 bytes, text/x-phabricator-request
Details | Review
Bug 1486598 - part 2: evaluate WebAuthn AppId in parent process. r=keeler
48 bytes, text/x-phabricator-request
Details | Review
While performing a cursory review of Web Authn IPC, it appears that the origin for a Web Authn request comes from the child (in Origin of WebAuthnGetAssertionInfo in https://searchfox.org/mozilla-central/source/dom/webauthn/PWebAuthnTransaction.ipdl ). In the future, we should validate that the origin provided matches the origin of the content process it comes from.
Priority: -- → P3
Whiteboard: [domsecurity-backlog2]
Whiteboard: [domsecurity-backlog2] → [domsecurity-backlog2] [webauthn]
Depends on: fission-ipc-map
Component: DOM: Security → DOM: Web Authentication

This bug is not a Fission MVP blocker.

Fission Milestone: --- → Future
Severity: normal → S3
Assignee: nobody → jschanck
Attachment #9466092 - Attachment description: WIP: Bug 1486598 - part 1: evaluate WebAuthn RP ID in parent process. r=keeler → Bug 1486598 - part 1: evaluate WebAuthn RP ID in parent process. r=keeler
Status: NEW → ASSIGNED
Attachment #9466093 - Attachment description: WIP: Bug 1486598 - part 2: evaluate WebAuthn AppId in parent process. r=keeler → Bug 1486598 - part 2: evaluate WebAuthn AppId in parent process. r=keeler
Pushed by jschanck@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/cad698f7305c part 1: evaluate WebAuthn RP ID in parent process. r=keeler https://hg.mozilla.org/integration/autoland/rev/ccedeb4daf05 part 2: evaluate WebAuthn AppId in parent process. r=keeler

https://hg.mozilla.org/mozilla-central/rev/cad698f7305c
https://hg.mozilla.org/mozilla-central/rev/ccedeb4daf05

Status: ASSIGNED → RESOLVED
Closed: 6 months ago
status-firefox137: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 137 Branch
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: