mirrors/gecko-dev
1
0
Fork 1
mirror of https://github.com/mozilla/gecko-dev.git synced 2025-10-30 15:58:03 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions
gecko-dev/toolkit/actors/WebChannelChild.sys.mjs
Andrew McCreight d73084cf19 Bug 1275612 - Don't allow any origins to send objects over WebChannel. a=RyanVM 
The last actual Firefox user of this less-safe feature was removed in 2022.
Thunderbird's sync server still needs it, but apparently that is a prototype
that isn't really working, so they said it was okay to remove this.

Original Revision: https://phabricator.services.mozilla.com/D220646

Differential Revision: https://phabricator.services.mozilla.com/D232089
2024-12-13 17:21:21 +00:00

92 lines
2.9 KiB
JavaScript
Raw Blame History

/* -*- indent-tabs-mode: nil; js-indent-level: 2 -*- */
/* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this
* file, You can obtain one at http://mozilla.org/MPL/2.0/. */
import { ContentDOMReference } from "resource://gre/modules/ContentDOMReference.sys.mjs";
export class WebChannelChild extends JSWindowActorChild {
handleEvent(event) {
if (event.type === "WebChannelMessageToChrome") {
return this._onMessageToChrome(event);
}
return undefined;
}
receiveMessage(msg) {
if (msg.name === "WebChannelMessageToContent") {
return this._onMessageToContent(msg);
}
return undefined;
}
_onMessageToChrome(e) {
// If target is window then we want the document principal, otherwise fallback to target itself.
let principal = e.target.nodePrincipal
? e.target.nodePrincipal
: e.target.document.nodePrincipal;
if (e.detail) {
if (typeof e.detail != "string") {
console.error("WebChannelMessageToChrome must only send strings");
return;
}
let eventTarget =
e.target instanceof Ci.nsIDOMWindow
? null
: ContentDOMReference.get(e.target);
this.sendAsyncMessage("WebChannelMessageToChrome", {
contentData: e.detail,
eventTarget,
principal,
});
} else {
console.error("WebChannel message failed. No message detail.");
}
}
_onMessageToContent(msg) {
if (msg.data && this.contentWindow) {
// msg.objects.eventTarget will be defined if sending a response to
// a WebChannelMessageToChrome event. An unsolicited send
// may not have an eventTarget defined, in this case send to the
// main content window.
let { eventTarget, principal } = msg.data;
if (!eventTarget) {
eventTarget = this.contentWindow;
} else {
eventTarget = ContentDOMReference.resolve(eventTarget);
}
if (!eventTarget) {
console.error("WebChannel message failed. No target.");
return;
}
// Use nodePrincipal if available, otherwise fallback to document principal.
let targetPrincipal =
eventTarget instanceof Ci.nsIDOMWindow
? eventTarget.document.nodePrincipal
: eventTarget.nodePrincipal;
if (principal.subsumes(targetPrincipal)) {
let targetWindow = this.contentWindow;
eventTarget.dispatchEvent(
new targetWindow.CustomEvent("WebChannelMessageToContent", {
detail: Cu.cloneInto(
{
id: msg.data.id,
message: msg.data.message,
},
targetWindow
),
})
);
} else {
console.error("WebChannel message failed. Principal mismatch.");
}
} else {
console.error("WebChannel message failed. No message data.");
}
}
}
Reference in a new issue View git blame Copy permalink