205111 – Consider top-level context whose origin is unique as insecure

Bug 205111 - Consider top-level context whose origin is unique as insecure

Summary: Consider top-level context whose origin is unique as insecure

Status:	RESOLVED FIXED

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	Page Loading (show other bugs)
Version:	WebKit Nightly Build
Hardware:	Unspecified Unspecified

Importance:	P2 Normal
Assignee:	youenn fablet

URL:
Keywords:	InRadar

Depends on:
Blocks:

Reported:	2019-12-11 06:26 PST by youenn fablet
Modified:	2019-12-16 10:29 PST (History)
CC List:	10 users (show)

See Also:

Attachments
Patch (5.71 KB, patch) 2019-12-11 06:32 PST, youenn fablet	no flags	Details \| Formatted Diff \| Diff
Patch (5.71 KB, patch) 2019-12-11 07:37 PST, youenn fablet	no flags	Details \| Formatted Diff \| Diff
Patch (6.20 KB, patch) 2019-12-11 23:20 PST, youenn fablet	no flags	Details \| Formatted Diff \| Diff
Patch (7.03 KB, patch) 2019-12-12 00:14 PST, youenn fablet	no flags	Details \| Formatted Diff \| Diff
Patch (8.73 KB, patch) 2019-12-12 05:39 PST, youenn fablet	no flags	Details \| Formatted Diff \| Diff
Patch for landing (8.68 KB, patch) 2019-12-16 09:07 PST, youenn fablet	no flags	Details \| Formatted Diff \| Diff
Show Obsolete (5) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description youenn fablet 2019-12-11 06:26:43 PST

Consider top-level context whose origin is unique as insecure

Comment 1 Radar WebKit Bug Importer 2019-12-11 06:28:10 PST

<rdar://problem/57834967>

Comment 2 youenn fablet 2019-12-11 06:32:43 PST

Created attachment 385384 [details]
Patch

Comment 3 youenn fablet 2019-12-11 07:37:37 PST

Created attachment 385390 [details]
Patch

Comment 4 youenn fablet 2019-12-11 23:20:18 PST

Created attachment 385481 [details]
Patch

Comment 5 youenn fablet 2019-12-12 00:14:13 PST

Created attachment 385482 [details]
Patch

Comment 6 youenn fablet 2019-12-12 05:39:36 PST

Created attachment 385490 [details]
Patch

Comment 7 Brent Fulgham 2019-12-16 08:43:49 PST

Comment on attachment 385490 [details]
Patch

View in context: https://bugs.webkit.org/attachment.cgi?id=385490&action=review

r=me

> Source/WebCore/ChangeLog:15
> +        This helps getting closer to https://w3c.github.io/webappsec-secure-contexts/#environment-settings-object-contextually-secure

Or maybe reference https://w3c.github.io/webappsec-secure-contexts/#is-url-trustworthy

Comment 8 youenn fablet 2019-12-16 09:07:23 PST

Created attachment 385774 [details]
Patch for landing

Comment 9 WebKit Commit Bot 2019-12-16 10:29:32 PST

Comment on attachment 385774 [details]
Patch for landing

Clearing flags on attachment: 385774

Committed r253563: <https://trac.webkit.org/changeset/253563>

Comment 10 WebKit Commit Bot 2019-12-16 10:29:34 PST

All reviewed patches have been landed.  Closing bug.