Closed
Bug 1153435
(nsec-origins)
Opened 9 years ago
Closed 7 years ago
[META] Tracking bug for Origins and Cookie Jars implementation of New Security Model
Categories
(Firefox OS Graveyard :: General, defect, P1)
Tracking
(Not tracked)
RESOLVED
WONTFIX
FxOS-S10 (30Oct)
People
(Reporter: jgong, Unassigned)
References
Details
(Whiteboard: [newsecurity])
User Story
This is a V3 initiative for a New Security Model. https://wiki.mozilla.org/FirefoxOS/New_security_model This Meta Bug is for tracking the "Origins and Cookie Jars" implementation, a sub-component of the bigger New Security Model project. https://wiki.mozilla.org/FirefoxOS/New_security_model#Origins_and_cookie_jars ***** Origins and Cookie Jars The biggest change here is that we should stop always using different cookie jars for different apps. In particular normal unsigned content should always use the same cookie jar no matter which app it belongs to. However signed packages will get their own cookie jars. So a signed package will not share cookies, IndexedDB data, etc with unsigned content from the same domain. It will also not share data with other signed packages from the same domain. This is to ensure that unsigned content from the same domain can't read for example sensitive data that the signed content has cached in IndexedDB.
This is a V3 initiative for a New Security Model. https://wiki.mozilla.org/FirefoxOS/New_security_model This Meta Bug is for tracking the "Origins and Cookie Jars" implementation, a sub-component of the bigger New Security Model project. https://wiki.mozilla.org/FirefoxOS/New_security_model#Origins_and_cookie_jars
|
Reporter | |
Updated•9 years ago
|
Blocks: nsec-signing
|
|
Reporter | |
Updated•9 years ago
|
No longer blocks: nsec-signing, nsec-verify
|
|
Reporter | |
Updated•9 years ago
|
Blocks: nsec-verify
No longer depends on: nsec-verify
|
|
Reporter | |
Updated•9 years ago
|
Blocks: nsec-signing
No longer depends on: nsec-signing
|
|
Reporter | |
Updated•9 years ago
|
Blocks: nsec-isolation
No longer depends on: nsec-isolation
|
|
Reporter | |
Updated•9 years ago
|
|
|
Reporter | |
Updated•9 years ago
|
|
|
Reporter | |
Updated•9 years ago
|
Blocks: nsec-installing
No longer depends on: nsec-installing
|
|
Reporter | |
Updated•9 years ago
|
Whiteboard: [NewSecurity] → [newsecurity]
|
|
Reporter | |
Updated•9 years ago
|
Priority: -- → P1
|
||
Updated•9 years ago
|
No longer blocks: nsec-signing
|
|
||
Updated•9 years ago
|
No longer blocks: nsec-verify
|
|
||
Updated•9 years ago
|
No longer blocks: nsec-isolation
|
|
||
Updated•9 years ago
|
No longer blocks: nsec-installing
|
||
Comment 1•9 years ago
|
||
I have one question regarding the new use of cookie jar: If we don't split cookies to different apps, will [1] still valid? If it's the expected behavior, should we also apply the same rule to cache, local storage, etc? (like a reverse work to Bug 756644) Thanks! [1] https://developer.mozilla.org/en-US/Firefox_OS/Security/Application_security#Apps_can%27t_open_each_other
Yes, the goal is that all "apps" that the user sees will have the same cookie jar, which means that one "app" can launch another "app" by simply navigating to it. Though really we're entirely removing the concept of "apps" and just using "web content" instead. Hence I'm stopping to use the word "app" entirely and instead simply use "content". So a lot of what's on [1] will need to be changed. Including the title of the page since we no longer will have "Application"s. [1] https://developer.mozilla.org/en-US/Firefox_OS/Security/Application_security
|
|
||
Updated•9 years ago
|
Alias: nsec-origins
Yoshi or Bobby, can you add the neccessary dependencies to this bug. I believe there's a whole host of bugs filed for moving various APIs over the OriginAttributes.
|
||
Comment 4•9 years ago
|
||
(In reply to Jonas Sicking (:sicking) from comment #3) > Yoshi or Bobby, can you add the neccessary dependencies to this bug. I > believe there's a whole host of bugs filed for moving various APIs over the > OriginAttributes. That's bug 1179985.
|
||
Comment 5•9 years ago
|
||
So none of the dependent bugs here actually cover the de-jar-ification of cookies/sessionstorage/etc. I'm marking those as dependencies. Is that covered by bug 1165267, or should I open a new bug? I also assume we should mark bug 1165277 (sessionStorage), bug 1165269 (HTTP cache), and bug 1165256 (appcache, if we actually care about the appcache on B2G?) as dependencies of this bug?
|
|
||
Comment 6•9 years ago
|
||
Ignore the 2nd paragraph of the last comment--forgot to delete that text.
Flags: needinfo?(jonas)
|
|
||
Updated•9 years ago
|
blocking-b2g: --- → 2.5+
blocking-b2g: 2.5+ → ---
Depends on: 1168777
I accidentally remove the 2.5+ flag but cannot turn it back again. Sorry Paul can you help to make it 2.5+ again? Thanks
Flags: needinfo?(ptheriault)
|
|
||
Updated•9 years ago
|
Component: Security → General
Flags: needinfo?(ptheriault)
Product: Firefox → Firefox OS
Target Milestone: --- → FxOS-S10 (30Oct)
|
|
||
Updated•9 years ago
|
blocking-b2g: --- → 2.5+
Depends on: 1196644
No longer depends on: 1214071
No longer depends on: 1196644
No longer depends on: 1213577
No longer depends on: 1165256
Depends on: 1227861
Depends on: 1209162
Depends on: 1230459
Depends on: 1233136
Depends on: 1237152
|
|
Reporter | |
Updated•7 years ago
|
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → WONTFIX
You need to log in
before you can comment on or make changes to this bug.
Description
•