Bug 224432

Summary: Block loading for port 10080
Product: WebKit Reporter: youenn fablet <youennf>
Component: Page LoadingAssignee: youenn fablet <youennf>
Status: RESOLVED FIXED    
Severity: Normal CC: achristensen, beidson, benjamin, cdumez, clopez, cmarcelo, ews-watchlist, webkit-bug-importer
Priority: P2 Keywords: InRadar
Version: WebKit Local Build   
Hardware: Unspecified   
OS: Unspecified   
Attachments:
Description Flags
Patch none

youenn fablet
Reported 2021-04-12 06:05:29 PDT
Block loading for port 10080
Attachments
Patch (7.40 KB, patch)
2021-04-12 06:07 PDT, youenn fablet 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
youenn fablet
Comment 1 2021-04-12 06:07:29 PDT
Created attachment 425739 [details] Patch
EWS Watchlist
Comment 2 2021-04-12 06:08:14 PDT
This patch modifies the imported WPT tests. Please ensure that any changes on the tests (not coming from a WPT import) are exported to WPT. Please see https://trac.webkit.org/wiki/WPTExportProcess
youenn fablet
Comment 3 2021-04-12 06:11:59 PDT
Corresponding WPT PR at https://github.com/web-platform-tests/wpt/pull/28445
Alex Christensen
Comment 4 2021-04-12 09:21:48 PDT
Is there anything official allocating 10080? It seems to be in an unallocated block of ports. If I wrote a program that used an unallocated port, what would I have to do to get that port blocked in all browsers? https://groups.google.com/a/chromium.org/g/blink-dev/c/CNpLNXx2wf0/m/Ehi3cx1YAQAJ claims that this is a "mitigation for the NAT Slipstream 2.0 attack" but I can't find anything abut that attack that references this port.
youenn fablet
Comment 5 2021-04-12 09:26:04 PDT
Discussion is at https://github.com/whatwg/fetch/pull/1148 and https://github.com/whatwg/fetch/issues/1191.
Alex Christensen
Comment 6 2021-04-12 09:59:39 PDT
Comment on attachment 425739 [details] Patch https://github.com/torvalds/linux/blob/master/net/netfilter/nf_conntrack_amanda.c has been in the Linux repo for a long time.
EWS
Comment 7 2021-04-12 11:48:33 PDT
Committed r275831 (236401@main): <https://commits.webkit.org/236401@main> All reviewed patches have been landed. Closing bug and clearing flags on attachment 425739 [details].
Radar WebKit Bug Importer
Comment 8 2021-04-12 11:49:17 PDT
<rdar://problem/76549514>
Note You need to log in before you can comment on or make changes to this bug.