mirror of
https://github.com/mozilla/gecko-dev.git
synced 2025-11-12 14:20:14 +02:00
ba435d06a4
Automatic update from web-platform-tests [NativeFileSystem] Make FileSystemHandle cloneable Updates postMessage() to clone FileSystemFileHandle and FileSystemDirectoryHandle objects for same origin targets. Including a FileSystemHandle object with a cross origin message fails by dispatching a 'messageerror' event instead of 'message' event. The change consists of four parts: (1) Updates V8ScriptValueSerializerForModules to serialize FileSystemFileHandle and FileSystemDirectoryHandle into blink::SerializedScriptValue, by following these steps: * Write a tag for the handle type (file or directory). * Write the name of the file or directory. * Creates a mojom::blink::NativeFileSystemTransferTokenPtr by calling blink:NativeFileSystemHandle::Transfer(). This token informs the storage::NativeFileSystemManagerImpl that a transfer is in progress. The NativeFileSystemManagerImpl creates a NativeFileSystemTransferTokenImpl to store the information required to clone the handle. * Stores the token in blink::SerializedScriptValue::native_file_system_tokens_. This array tracks all cloned FileSystemFileHandle. The blink::mojom::CloneableMessage struct is also updated to hold this array for MessagePort and BroadcastChannels. * Write the index of the token in the native_file_system_tokens_ array. (2) Updates V8ScriptValueDeserializerForModules to deserialize FileSystemFileHandle objects when creating clones for the message targets. This is the inverse of (1). Deserializing uses mojom::blink::NativeFileSystemManager to redeem the token, which creates the mojom::blink::NativeFileSystemFileHandlePtr or mojom::blink::NativeFileSystemDirectoryHandlePtr using the info stored by NativeFileSystemTransferTokenImpl. (3) Updates content::NativeFileSystemManagerImpl to support token transfers. To redeem a token, NativeFileSystemManagerImpl receives a mojo message that includes the token as well as a request for a handle interface like mojom::blink::NativeFileSystemFileHandlePtr. NativeFileSystemManagerImpl finds the token and then binds the request. Token redemption does not return any results. Token redemption should never fail, unless a render process is misbehaving. NativeFileSystemManagerImpl performs a few sanity checks before binding the mojo request, including a token existence check, a handle type check and an origin check. If any of the sanity checks fail, NativeFileSystemManagerImpl silently fails closing the redeemed FileHandle's pipe. (4) Adds a cross origin check to window and message port messaging. Most message targets, like dedicated workers, are same origin only. However, both windows and message port messages can go cross origin. When a cross origin message includes a FileSystemHandle, the message must fail with a 'messageerror' event to prevent cross origin access to the FileSystemHandle. Messaging between windows already included origin information before this change. This change adds a NativeFileSystem origin check before dispatching a message event to a window. The message event is replaced with a message error when a cross origin NativeFileSystem object exists in the message data. For message ports, no sender origin information existed before this change. This change updates the CloneableMessage structs to include a 'sender_origin' url::Origin property. Message ports use this property to perform the same cross origin NativeFileSystem check as the window. The NativeFileSystemManagerImpl performs an additional origin check before binding the FileSystemHandle mojo request. The NativeFileSystemManagerImpl cannot trust the postMessage() origin check performed in the render process. Bug: 955192 Change-Id: Ieeb76bd8102067d70c5d7719622ecd4930c3a88f Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/1791942 Commit-Queue: Steve Becker <stevebe@microsoft.com> Reviewed-by: Jeremy Roman <jbroman@chromium.org> Reviewed-by: Yuki Shiino <yukishiino@chromium.org> Reviewed-by: Kinuko Yasuda <kinuko@chromium.org> Reviewed-by: Marijn Kruisselbrink <mek@chromium.org> Reviewed-by: Olivier Yiptong <oyiptong@chromium.org> Cr-Commit-Position: refs/heads/master@{#709407} -- wpt-commits: 474923949524b5c05a9e6f28ec082fdca87078de wpt-pr: 18921 Differential Revision: https://phabricator.services.mozilla.com/D53468
51 lines
1.9 KiB
JavaScript
51 lines
1.9 KiB
JavaScript
'use strict';
|
|
|
|
// Creates a blob URL with the contents of 'message-target.html'. Use the
|
|
// blob as an iframe src or a window.open() URL, which creates a same origin
|
|
// message target.
|
|
async function create_message_target_blob_url(test) {
|
|
const html = await create_message_target_html_without_subresources(test);
|
|
const blob = new Blob([html], { type: 'text/html' });
|
|
return URL.createObjectURL(blob);
|
|
}
|
|
|
|
// Creates a data URI with the contents of 'message-target.html'. Use the
|
|
// data URI as an iframe src, which creates a cross origin message target.
|
|
async function create_message_target_data_uri(test) {
|
|
const iframe_html =
|
|
await create_message_target_html_without_subresources(test);
|
|
return `data:text/html,${encodeURIComponent(iframe_html)}`;
|
|
}
|
|
|
|
// Constructs a version of 'message-target.html' without any subresources.
|
|
// Enables the creation of blob URLs, data URIs and iframe srcdocs re-using
|
|
// the contents of 'message-target.html'.
|
|
async function create_message_target_html_without_subresources(test) {
|
|
const test_helpers_script = await fetch_text('resources/test-helpers.js');
|
|
|
|
const messaging_helpers_script =
|
|
await fetch_text('resources/messaging-helpers.js');
|
|
|
|
const messaging_serialize_helpers_script =
|
|
await fetch_text('resources/messaging-serialize-helpers.js');
|
|
|
|
const message_target_script =
|
|
await fetch_text('resources/message-target.js');
|
|
|
|
// Get the inline script code from 'message-target.html'.
|
|
const iframe = await add_iframe(test, { src: 'resources/message-target.html' });
|
|
const iframe_script =
|
|
iframe.contentWindow.document.getElementById('inline_script').outerHTML;
|
|
iframe.remove();
|
|
|
|
return '<!DOCTYPE html>' +
|
|
`<script>${test_helpers_script}</script>` +
|
|
`<script>${messaging_serialize_helpers_script}</script>` +
|
|
`<script>${message_target_script}</script>` +
|
|
`${iframe_script}`;
|
|
}
|
|
|
|
async function fetch_text(url) {
|
|
const response = await fetch(url);
|
|
return await response.text();
|
|
}
|