Closed Bug 1555607 Opened 6 years ago Closed 6 years ago

unattended CSP propagation from iframe to parent window

Categories

(Core :: DOM: Security, defect)

Product:
Core
Component:
DOM: Security
Version:
67 Branch
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED WORKSFORME

People

(Reporter: paki37094, Unassigned)

Details

Attachments

(1 file)

csp_propagation.zip
1.02 KB, application/zip
Details
Attached file csp_propagation.zip

User Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:67.0) Gecko/20100101 Firefox/67.0

Steps to reproduce:

Create an html blob with some CSP rules, putting it in an iframe. Then try do fetch something that should not be restricted in this page but only in the iframe blob with a little delay (ex: setTimeout 200).

You can test the code provided by opening the testblob2.html inside the archive provided (you need to extract all the files inside the same folder so the relative urls can work properly).

Actual results:

blocking the fetch

Expected results:

not blocking the fetch

Component: Untriaged → DOM: Security
Product: Firefox → Core

This is probably fixed in Nightly with the new place where CSP is stored (we had the same problem with data: urls, documented in another bug I can't find at the moment). Can you try this in Nightly and see if this is fixed for you now?

Flags: needinfo?(paki37094)

It's fixed !

Flags: needinfo?(paki37094)
Status: UNCONFIRMED → RESOLVED
Closed: 6 years ago
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: