Open
Bug 1490252
Opened 7 years ago
Updated 3 years ago
Assert that referrer and triggeringPrincipal are identicial for docshell loads
Categories
(Core :: DOM: Security, enhancement, P3)
Core
DOM: Security
Tracking
()
NEW
People
(Reporter: ckerschb, Unassigned)
References
(Depends on 2 open bugs)
Details
(Whiteboard: [domsecurity-backlog1])
Attachments
(1 file)
Once we have a valid triggeringPrincipal on all docshell loads (Bug 1333030) we should make sure that the triggeringPrincipal and the referrer match.
In fact, if there is a referrer, the triggeringPrincipal should be a CodeBasePrincipal and the URI of that CodeBasePrincipals should match the referrer URI.
Let's have a look how far we are away from adding such an assertion:
https://treeherder.mozilla.org/#/jobs?repo=try&revision=e78c1303b879641575c03f4212aff627b7bc25e9
|
Reporter | |
Updated•7 years ago
|
Depends on: require-triggering-principal
|
|
Reporter | |
Updated•7 years ago
|
Priority: -- → P3
Whiteboard: [domsecurity-backlog1]
|
||
Comment 1•7 years ago
|
||
Why would this always be the case? What if new document loads are triggered by a webextension but with the referrer set to the currently-loaded doc, for instance?
Flags: needinfo?(ckerschb)
|
|
Reporter | |
Comment 2•7 years ago
|
||
(In reply to :Gijs (he/him) from comment #1)
> Why would this always be the case? What if new document loads are triggered
> by a webextension but with the referrer set to the currently-loaded doc, for
> instance?
I agree that there will be exceptions to that rule, but hopefully we can filter them out for the purpose of the assertion. What I want to make sure is that there is no misalignment of referrer and triggeringPrincipal when they in fact should match, which I would imagine is the case for a vast majority of loads.
Currently in the tree we even create the triggeringPrincpal from the referrer if no triggeringPrincipal is passed explicitly, but we hopefully should be able to remove that fallback (see Bug 1490257) soon.
Flags: needinfo?(ckerschb)
|
||
Updated•7 years ago
|
Assignee: nobody → jkt
|
|
||
Comment 3•7 years ago
|
||
Try run here: https://treeherder.mozilla.org/#/jobs?repo=try&revision=852f87901624f22cfccf56ae84f72e5123e3ccc1
Patch depends on: Bug 1508654 and Bug 1508609
|
|
||
Comment 4•7 years ago
|
||
|
|
||
Comment 5•7 years ago
|
||
It seems there are a few places this might fail when in the parent process, without that I think we are more likely to land this
|
|
Reporter | |
Updated•7 years ago
|
Blocks: refactor-referrer-policy-setup
|
|
||
Updated•7 years ago
|
Assignee: jkt → tnguyen
|
|
Reporter | |
Updated•7 years ago
|
Status: NEW → ASSIGNED
Whiteboard: [domsecurity-backlog1] → [domsecurity-active]
|
||
Updated•6 years ago
|
No longer blocks: refactor-referrer-policy-setup
Depends on: refactor-referrer-policy-setup
|
|
Reporter | |
Updated•6 years ago
|
Assignee: tnguyen → nobody
Status: ASSIGNED → NEW
Whiteboard: [domsecurity-active] → [domsecurity-backlog1]
|
||
Updated•3 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•