Bug 1810619 - Part 1: Be more precise in named lookup code, r=smaug,geckoview-reviewers,m_kato
This makes various changes to the named lookup/navigation code to make them more precise, and avoid issues which could happen if a window is closed while script is still executing. This also should improve handling for inactive windows in some cases, by more frequently working off of the WindowContext tree rather than the BrowsingContext tree. As part of these changes, some behaviour was changed around e.g. the file URI exception to avoid the deprecated nsIPrincipal::GetURI method. I don't believe the behaviour should have changed in a meaningful way. Differential Revision: https://phabricator.services.mozilla.com/D171755
This commit is contained in:
Nika Layzell
@@ -1437,61 +1437,6 @@ nsDOMNavigationTiming* nsDocShell::GetNavigationTiming() const {
|
||||
return mTiming;
|
||||
}
|
||||
|
||||
//
|
||||
// Bug 13871: Prevent frameset spoofing
|
||||
//
|
||||
// This routine answers: 'Is origin's document from same domain as
|
||||
// target's document?'
|
||||
//
|
||||
// file: uris are considered the same domain for the purpose of
|
||||
// frame navigation regardless of script accessibility (bug 420425)
|
||||
//
|
||||
/* static */
|
||||
bool nsDocShell::ValidateOrigin(BrowsingContext* aOrigin,
|
||||
BrowsingContext* aTarget) {
|
||||
nsIDocShell* originDocShell = aOrigin->GetDocShell();
|
||||
MOZ_ASSERT(originDocShell, "originDocShell must not be null");
|
||||
Document* originDocument = originDocShell->GetDocument();
|
||||
NS_ENSURE_TRUE(originDocument, false);
|
||||
|
||||
nsIDocShell* targetDocShell = aTarget->GetDocShell();
|
||||
MOZ_ASSERT(targetDocShell, "targetDocShell must not be null");
|
||||
Document* targetDocument = targetDocShell->GetDocument();
|
||||
NS_ENSURE_TRUE(targetDocument, false);
|
||||
|
||||
bool equal;
|
||||
nsresult rv = originDocument->NodePrincipal()->Equals(
|
||||
targetDocument->NodePrincipal(), &equal);
|
||||
if (NS_SUCCEEDED(rv) && equal) {
|
||||
return true;
|
||||
}
|
||||
// Not strictly equal, special case if both are file: uris
|
||||
nsCOMPtr<nsIURI> originURI;
|
||||
nsCOMPtr<nsIURI> targetURI;
|
||||
nsCOMPtr<nsIURI> innerOriginURI;
|
||||
nsCOMPtr<nsIURI> innerTargetURI;
|
||||
|
||||
// Casting to BasePrincipal, as we can't get InnerMost URI otherwise
|
||||
auto* originDocumentBasePrincipal =
|
||||
BasePrincipal::Cast(originDocument->NodePrincipal());
|
||||
|
||||
rv = originDocumentBasePrincipal->GetURI(getter_AddRefs(originURI));
|
||||
if (NS_SUCCEEDED(rv) && originURI) {
|
||||
innerOriginURI = NS_GetInnermostURI(originURI);
|
||||
}
|
||||
|
||||
auto* targetDocumentBasePrincipal =
|
||||
BasePrincipal::Cast(targetDocument->NodePrincipal());
|
||||
|
||||
rv = targetDocumentBasePrincipal->GetURI(getter_AddRefs(targetURI));
|
||||
if (NS_SUCCEEDED(rv) && targetURI) {
|
||||
innerTargetURI = NS_GetInnermostURI(targetURI);
|
||||
}
|
||||
|
||||
return innerOriginURI && innerTargetURI && SchemeIsFile(innerOriginURI) &&
|
||||
SchemeIsFile(innerTargetURI);
|
||||
}
|
||||
|
||||
nsPresContext* nsDocShell::GetEldestPresContext() {
|
||||
nsIContentViewer* viewer = mContentViewer;
|
||||
while (viewer) {
|
||||
@@ -8486,7 +8431,11 @@ nsresult nsDocShell::PerformRetargeting(nsDocShellLoadState* aLoadState) {
|
||||
aLoadState->Target().LowerCaseEqualsLiteral("_self") ||
|
||||
aLoadState->Target().LowerCaseEqualsLiteral("_parent") ||
|
||||
aLoadState->Target().LowerCaseEqualsLiteral("_top")) {
|
||||
targetContext = mBrowsingContext->FindWithName(
|
||||
Document* document = GetDocument();
|
||||
NS_ENSURE_TRUE(document, NS_ERROR_FAILURE);
|
||||
WindowGlobalChild* wgc = document->GetWindowGlobalChild();
|
||||
NS_ENSURE_TRUE(wgc, NS_ERROR_FAILURE);
|
||||
targetContext = wgc->FindBrowsingContextWithName(
|
||||
aLoadState->Target(), /* aUseEntryGlobalForAccessCheck */ false);
|
||||
}
|
||||
|
||||
|
||||
Reference in New Issue
Block a user