Context Navigation

← Previous Changeset
Next Changeset →

Changeset 292229 in webkit

Timestamp:

Apr 1, 2022 12:26:41 PM (4 months ago)

Author:

Kate Cheney

Message:

CSP: WASM fails to execute after window.open
https://bugs.webkit.org/show_bug.cgi?id=238562
<rdar://problem/90778752>

Reviewed by Brent Fulgham.

Source/WebCore:

Test: http/tests/security/contentSecurityPolicy/allow-wasm-after-window-open.html

Reset WASM enabled value after a window.open() call. This patch simplifies
eval and wasm setters by removing the distinct enable/disable functions
and using one consistent setter.

bindings/js/ScriptController.cpp:

(WebCore::ScriptController::setEvalEnabled):
(WebCore::ScriptController::setWebAssemblyEnabled):
(WebCore::ScriptController::enableEval): Deleted.
(WebCore::ScriptController::enableWebAssembly): Deleted.
(WebCore::ScriptController::disableEval): Deleted.
(WebCore::ScriptController::disableWebAssembly): Deleted.

bindings/js/ScriptController.h:
dom/Document.cpp:

(WebCore::Document::disableEval):
(WebCore::Document::disableWebAssembly):

loader/FrameLoader.cpp:

(WebCore::FrameLoader::clear):

page/csp/ContentSecurityPolicy.h:

(WebCore::ContentSecurityPolicy::webAssemblyErrorMessage const):

LayoutTests:

Layout test coverage. Copy some wasm helper scripts into the http directory.

platform/win/TestExpectations:

We don't support wasm on win.

http/tests/security/contentSecurityPolicy/allow-wasm-after-window-open-expected.txt: Added.
http/tests/security/contentSecurityPolicy/allow-wasm-after-window-open.html: Added.
http/tests/security/contentSecurityPolicy/resources/load_wasm.js: Added.

(createWasmModule):

http/tests/security/contentSecurityPolicy/resources/run-web-assembly.html: Added.
http/tests/security/contentSecurityPolicy/resources/wasm-builder.js: Added.

(const._fail):
(const.isNotA.assert.isNotA):
(const):
(switch.typeof):
(Builder):
(Builder.prototype.setChecked):
(Builder.prototype.setPreamble):
(Builder.prototype._functionIndexSpaceKeyHash):
(Builder.prototype._registerFunctionToIndexSpace):
(Builder.prototype._getFunctionFromIndexSpace):
(Builder.prototype._registerSectionBuilders.const.section.in.WASM.description.section.switch.section.case.string_appeared_here.this.section):
(Builder.prototype._registerSectionBuilders.const.section.in.WASM.description.section.switch.section.const.codeBuilder.End.switch.case.string_appeared_here.e):
(Builder.prototype._registerSectionBuilders.this.Unknown):

Location:

trunk

Files:

: 5 added
: 8 edited

LayoutTests/ChangeLog (modified) (1 diff)
LayoutTests/http/tests/security/contentSecurityPolicy/allow-wasm-after-window-open-expected.txt (added)
LayoutTests/http/tests/security/contentSecurityPolicy/allow-wasm-after-window-open.html (added)
LayoutTests/http/tests/security/contentSecurityPolicy/resources/load_wasm.js (added)
LayoutTests/http/tests/security/contentSecurityPolicy/resources/run-web-assembly.html (added)
LayoutTests/http/tests/security/contentSecurityPolicy/resources/wasm-builder.js (added)
LayoutTests/platform/win/TestExpectations (modified) (1 diff)
Source/WebCore/ChangeLog (modified) (1 diff)
Source/WebCore/bindings/js/ScriptController.cpp (modified) (1 diff)
Source/WebCore/bindings/js/ScriptController.h (modified) (1 diff)
Source/WebCore/dom/Document.cpp (modified) (2 diffs)
Source/WebCore/loader/FrameLoader.cpp (modified) (1 diff)
Source/WebCore/page/csp/ContentSecurityPolicy.h (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

trunk/LayoutTests/ChangeLog

-                      r292226
+                      r292229
+-04-01  Kate Cheney  <katherine_cheney@apple.com>
+        CSP: WASM fails to execute after window.open
+        https://bugs.webkit.org/show_bug.cgi?id=238562
+        <rdar://problem/90778752>
+        Reviewed by Brent Fulgham.
+        Layout test coverage. Copy some wasm helper scripts into the http directory.
+        * platform/win/TestExpectations:
+        We don't support wasm on win.
+        * http/tests/security/contentSecurityPolicy/allow-wasm-after-window-open-expected.txt: Added.
+        * http/tests/security/contentSecurityPolicy/allow-wasm-after-window-open.html: Added.
+        * http/tests/security/contentSecurityPolicy/resources/load_wasm.js: Added.
+        (createWasmModule):
+        * http/tests/security/contentSecurityPolicy/resources/run-web-assembly.html: Added.
+        * http/tests/security/contentSecurityPolicy/resources/wasm-builder.js: Added.
+        (const._fail):
+        (const.isNotA.assert.isNotA):
+        (const):
+        (switch.typeof):
+        (Builder):
+        (Builder.prototype.setChecked):
+        (Builder.prototype.setPreamble):
+        (Builder.prototype._functionIndexSpaceKeyHash):
+        (Builder.prototype._registerFunctionToIndexSpace):
+        (Builder.prototype._getFunctionFromIndexSpace):
+        (Builder.prototype._registerSectionBuilders.const.section.in.WASM.description.section.switch.section.case.string_appeared_here.this.section):
+        (Builder.prototype._registerSectionBuilders.const.section.in.WASM.description.section.switch.section.const.codeBuilder.End.switch.case.string_appeared_here.e):
+        (Builder.prototype._registerSectionBuilders.this.Unknown):
 -04-01  Alan Bujtas  <zalan@apple.com>

trunk/LayoutTests/platform/win/TestExpectations

r292086	r292229
3902	3902	imported/w3c/web-platform-tests/wasm/wasm_stream_instantiate_test.html [ Skip ]
3903	3903	imported/w3c/web-platform-tests/wasm/wasm_stream_compile_test.html [ Skip ]
	3904	http/tests/security/contentSecurityPolicy/allow-wasm-after-window-open.html [ Skip ]
3904	3905
3905	3906	# Animated image throttling behaves differently on WK1.

trunk/Source/WebCore/ChangeLog

-                      r292228
+                      r292229
+-04-01  Kate Cheney  <katherine_cheney@apple.com>
+        CSP: WASM fails to execute after window.open
+        https://bugs.webkit.org/show_bug.cgi?id=238562
+        <rdar://problem/90778752>
+        Reviewed by Brent Fulgham.
+        Test: http/tests/security/contentSecurityPolicy/allow-wasm-after-window-open.html
+        Reset WASM enabled value after a window.open() call. This patch simplifies
+        eval and wasm setters by removing the distinct enable/disable functions
+        and using one consistent setter.
+        * bindings/js/ScriptController.cpp:
+        (WebCore::ScriptController::setEvalEnabled):
+        (WebCore::ScriptController::setWebAssemblyEnabled):
+        (WebCore::ScriptController::enableEval): Deleted.
+        (WebCore::ScriptController::enableWebAssembly): Deleted.
+        (WebCore::ScriptController::disableEval): Deleted.
+        (WebCore::ScriptController::disableWebAssembly): Deleted.
+        * bindings/js/ScriptController.h:
+        * dom/Document.cpp:
+        (WebCore::Document::disableEval):
+        (WebCore::Document::disableWebAssembly):
+        * loader/FrameLoader.cpp:
+        (WebCore::FrameLoader::clear):
+        * page/csp/ContentSecurityPolicy.h:
+        (WebCore::ContentSecurityPolicy::webAssemblyErrorMessage const):
 -04-01  Alan Bujtas  <zalan@apple.com>

trunk/Source/WebCore/bindings/js/ScriptController.cpp

-                      r291863
+                      r292229
+}
 void ScriptController::enableEval(bool enable, const String& errorMessage)
+void ScriptController::setEvalEnabled(bool value, const String& errorMessage)
+{
     auto* jsWindowProxy = windowProxy().existingJSWindowProxy(mainThreadNormalWorld());
     if (!jsWindowProxy)
         return;
     jsWindowProxy->window()->setEvalEnabled(enable, errorMessage);
+}
 void ScriptController::enableWebAssembly()
+    jsWindowProxy->window()->setEvalEnabled(value, errorMessage);
+}
+void ScriptController::setWebAssemblyEnabled(bool value, const String& errorMessage)
+{
     auto* jsWindowProxy = windowProxy().existingJSWindowProxy(mainThreadNormalWorld());
     if (!jsWindowProxy)
         return;
+    jsWindowProxy->window()->setWebAssemblyEnabled(true);
+}
+void ScriptController::disableEval(const String& errorMessage)
+{
+    auto* jsWindowProxy = windowProxy().existingJSWindowProxy(mainThreadNormalWorld());
+    if (!jsWindowProxy)
+        return;
+    jsWindowProxy->window()->setEvalEnabled(false, errorMessage);
+}
+void ScriptController::disableWebAssembly(const String& errorMessage)
+{
+    auto* jsWindowProxy = windowProxy().existingJSWindowProxy(mainThreadNormalWorld());
+    if (!jsWindowProxy)
+        return;
+    jsWindowProxy->window()->setWebAssemblyEnabled(false, errorMessage);
+    jsWindowProxy->window()->setWebAssemblyEnabled(value, errorMessage);
+}

trunk/Source/WebCore/bindings/js/ScriptController.h

-                      r290853
+                      r292229
     TextPosition eventHandlerPosition() const;
+    void enableEval(bool, const String& errorMessage = String());
+    void enableWebAssembly();
+    void disableEval(const String& errorMessage);
+    void disableWebAssembly(const String& errorMessage);
+    void setEvalEnabled(bool, const String& errorMessage = String());
+    void setWebAssemblyEnabled(bool, const String& errorMessage = String());
     static bool canAccessFromCurrentOrigin(Frame*, Document& accessingDocument);

trunk/Source/WebCore/dom/Document.cpp

-                      r292057
+                      r292229
         return;
     frame()->script().disableEval(errorMessage);
+    frame()->script().setEvalEnabled(false, errorMessage);
+}
 …
         return;
     frame()->script().disableWebAssembly(errorMessage);
+    frame()->script().setWebAssemblyEnabled(false, errorMessage);
+}

trunk/Source/WebCore/loader/FrameLoader.cpp

-                      r292002
+                      r292229
         m_frame.script().clearScriptObjects();
+    if (newDocument->contentSecurityPolicy() && !newDocument->contentSecurityPolicy()->evalErrorMessage().isNull())
+        m_frame.script().enableEval(false, newDocument->contentSecurityPolicy()->evalErrorMessage());
+    else
+        m_frame.script().enableEval(true);
+    if (newDocument->contentSecurityPolicy()) {
+        bool enableEvalValue = newDocument->contentSecurityPolicy()->evalErrorMessage().isNull();
+        bool enableWASMValue = newDocument->contentSecurityPolicy()->webAssemblyErrorMessage().isNull();
+        m_frame.script().setEvalEnabled(enableEvalValue, newDocument->contentSecurityPolicy()->evalErrorMessage());
+        m_frame.script().setWebAssemblyEnabled(enableWASMValue, newDocument->contentSecurityPolicy()->webAssemblyErrorMessage());
+    }
     m_frame.navigationScheduler().clear();

trunk/Source/WebCore/page/csp/ContentSecurityPolicy.h

r292134	r292229
199	199
200	200	const String& evalErrorMessage() const { return m_lastPolicyEvalDisabledErrorMessage; }
	201	const String& webAssemblyErrorMessage() const { return m_lastPolicyWebAssemblyDisabledErrorMessage; }
201	202
202	203	ContentSecurityPolicyModeForExtension contentSecurityPolicyModeForExtension() const { return m_contentSecurityPolicyModeForExtension; }

Note: See TracChangeset for help on using the changeset viewer.

Context Navigation

Changeset 292229 in webkit

Legend:

Download in other formats: