Closed Bug 1584159 Opened 6 years ago Closed 5 years ago

Change MixedContentBlocker to using loadInfo to pass security ancestory state

Categories

(Core :: DOM: Security, task, P3)

Product:
Core
Component:
DOM: Security
Type:
task

Tracking

()

Status:
RESOLVED MOVED
Project Flags:
Fission Milestone M4.1

People

(Reporter: jkt, Assigned: ckerschb)

References

Details

(Whiteboard: [domsecurity-backlog1])

Attachments

(2 files)

https://phabricator.services.mozilla.com/D47333
47 bytes, text/x-phabricator-request
Details | Review
Bug 1584159 - Move mixed content checks to using loadInfo
47 bytes, text/x-phabricator-request
Details | Review

Within the MCB we have two clear paths that we block content with:

  1. We check the top level frame to see if it's secure
  2. If the top frame isn't secure and we are a frame, we check the ancestor chain for anything with https

In 1. we check the top level docshell for what URI it has, in a post fission world this isn't possible from a child frame.
In 2. We traverse all of the docshells and do the same, again this isn't possible.

So I propose that when a document loads we annotate the loadInfo as having a secure ancestor or not. This way we never have to traverse at all and both of these cases could be merged into one.

Whiteboard: [domsecurity-meta]
Whiteboard: [domsecurity-meta] → [domsecurity-active]
Depends on: 1594529

ckerschb says this bug is needed to fix test mixedcontentblocker/test_frameNavigation.html, so I'm moving this bug to Fission's new mochitest milestone (M4.1).

(In reply to Chris Peterson [:cpeterson] from comment #4)

ckerschb says this bug is needed to fix test mixedcontentblocker/test_frameNavigation.html, so I'm moving this bug to Fission's new mochitest milestone (M4.1).

Tracking for Fission mochitests (M4.1)

Fission Milestone: --- → M4.1

Temporarily reassigning these DOM Security Fission bugs to ckerschb for re-triage.

Assignee: jonathan → ckerschb
Assignee: ckerschb → nobody
Status: ASSIGNED → NEW
Priority: P1 → P3
Whiteboard: [domsecurity-active] → [domsecurity-backlog1]
Assignee: nobody → ckerschb
Status: NEW → ASSIGNED

Turns out that this bug will be fixed by a multitude of bugs including: Bug 1575356, Bug 1629876, and Bug 1631405 (including dependencies and follow ups).

I think it makes most sense to mark this one itself as MOVED.

Status: ASSIGNED → RESOLVED
Closed: 5 years ago
Resolution: --- → MOVED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: