1915730 - [wpt-sync] Sync PR 47876 - [Partitioned Popins] Opener and popin both must be https

Status: RESOLVED FIXED

(Testing :: web-platform-tests, task, P4)

Description

[Web Platform Test Sync Bot [:wpt-sync] (Matrix: #interop:mozilla.org)]

Sync web-platform-tests PR 47876 into mozilla-central (this bug is closed when the sync is complete).

PR: https://github.com/web-platform-tests/wpt/pull/47876
Details from upstream follow.

Ari Chivukula <arichiv@chromium.org> wrote:

[Partitioned Popins] Opener and popin both must be https

We require that the opener of the popin and the popin itself always be
https. A later CL will ensure that the popin cannot navigate/redirect
anywhere insecure, but for now this is just some initial gating in the
renderer and browser process.

Explainer: https://explainers-by-googlers.github.io/partitioned-popins/
I2P: https://groups.google.com/a/chromium.org/g/blink-dev/c/ApU_zUmpQ2g/

Bug: 340606651
Change-Id: I1611fb34e008a6eaa0dedea1f19e8591fb90053a
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/5817535
Auto-Submit: Ari Chivukula \<arichiv@chromium.org>
Reviewed-by: Philip Rogers \<pdr@chromium.org>
Commit-Queue: Philip Rogers \<pdr@chromium.org>
Reviewed-by: Nasko Oskov \<nasko@chromium.org>
Cr-Commit-Position: refs/heads/main@{#1348862}

Comment 1

[Web Platform Test Sync Bot [:wpt-sync] (Matrix: #interop:mozilla.org)]

Pushed to try (stability) https://treeherder.mozilla.org/#/jobs?repo=try&revision=d482b9f28e0c3d34b66450f8eb1a2361851110ca

Comment 2

[Web Platform Test Sync Bot [:wpt-sync] (Matrix: #interop:mozilla.org)]

CI Results

Ran 9 Firefox configurations based on mozilla-central, and Firefox, and Safari on GitHub CI

Total 2 tests and 1 subtests

Status Summary

Firefox

OK : 2
FAIL: 2

Safari

OK : 2
FAIL: 2

Links

Gecko CI (Treeherder)
GitHub PR Head
GitHub PR Base

Details

New Tests That Don't Pass

• /partitioned-popins/partitioned-popins.secure.tentative.sub.http.window.html [wpt.fyi]
  • Verify no Partitioned Popins can be opened from insecure page: FAIL (Safari: FAIL)
• /partitioned-popins/partitioned-popins.secure.tentative.sub.https.window.html [wpt.fyi]
  • Verify only secure Partitioned Popins can be opened from secure page: FAIL (Safari: FAIL)

Comment 3

[Pulsebot]

Pushed by wptsync@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/53c395c2fb01
[wpt PR 47876] - [Partitioned Popins] Opener and popin both must be https, a=testonly
https://hg.mozilla.org/integration/autoland/rev/d02254b01cdd
[wpt PR 47876] - Update wpt metadata, a=testonly

Comment 4

[Atila Butkovits]

https://hg.mozilla.org/mozilla-central/rev/53c395c2fb01
https://hg.mozilla.org/mozilla-central/rev/d02254b01cdd