Changeset 56002 in webkit

Timestamp:

Mar 15, 2010 10:14:10 AM (14 years ago)

Author:

eric@webkit.org

Message:

2010-03-15 Patrik Persson <​patrik.j.persson@ericsson.com>

Reviewed by Darin Adler.

​https://bugs.webkit.org/show_bug.cgi?id=32369

Revised test of storage/databases in sandboxed iframes.

Verify that SECURITY_ERR is raised on access to
window.localStorage or window.openDatabase(). Also verify that
window.sessionStorage is now allowed in sandboxed iframes.

WebKit would previously return null references in these cases. The
new behavior is in accordance with HTML5:

• ​http://dev.w3.org/html5/webstorage/ (sections 4.2 and 4.3)
• ​http://dev.w3.org/html5/webdatabase/ (section 4.1)
• ​http://www.mail-archive.com/whatwg@lists.whatwg.org/msg19786.html

• fast/frames/resources/sandboxed-iframe-storage-disallowed.html: expect exceptions, not null
• fast/frames/sandboxed-iframe-storage-expected.txt: expect exceptions, not null

2010-03-15 Patrik Persson <​patrik.j.persson@ericsson.com>

Reviewed by Darin Adler.

​https://bugs.webkit.org/show_bug.cgi?id=32369

Revise iframe sandbox behavior to match the updated HTML5 spec.

• Enables window.sessionStorage in sandboxed iframes.

• Raises SECURITY_ERR exceptions when window.localStorage or window.openDatabase() is blocked by iframe sandboxing.

Note: window.sessionStorage does not raise exceptions.

WebKit would previously return null references in these cases. The
new behavior is in accordance with HTML5:

​http://dev.w3.org/html5/webstorage/ (sections 4.2 and 4.3)
​http://dev.w3.org/html5/webdatabase/ (section 4.1)
​http://www.mail-archive.com/whatwg@lists.whatwg.org/msg19786.html

• inspector/InspectorController.cpp: (WebCore::InspectorController::selectDOMStorage): exception handling
• inspector/InspectorDOMStorageResource.cpp: (WebCore::InspectorDOMStorageResource::handleEvent): exception handling
• page/DOMWindow.cpp: (WebCore::DOMWindow::sessionStorage): re-enabled in iframe sandbox (WebCore::DOMWindow::localStorage): raise exception rather than return null (WebCore::DOMWindow::openDatabase): raise exception rather than return null
• page/DOMWindow.h: added exceptions to interface
• page/DOMWindow.idl: added exceptions to interface
• page/SecurityOrigin.h: (WebCore::SecurityOrigin::canAccessLocalStorage): renamed function to reflect its purpose
• storage/StorageEventDispatcher.cpp: (WebCore::StorageEventDispatcher::dispatch): exception handling

2010-03-15 Patrik Persson <​patrik.j.persson@ericsson.com>

Reviewed by Darin Adler.

​https://bugs.webkit.org/show_bug.cgi?id=32369

Revise iframe sandbox behavior to match the updated HTML5 spec.

• Enables window.sessionStorage in sandboxed iframes.

• Raises SECURITY_ERR exceptions when window.localStorage or window.openDatabase() is blocked by iframe sandboxing.

Note: window.sessionStorage does not raise exceptions.

WebKit would previously return null references in these cases. The
new behavior is in accordance with HTML5:

​http://dev.w3.org/html5/webstorage/ (sections 4.2 and 4.3)
​http://dev.w3.org/html5/webdatabase/ (section 4.1)
​http://www.mail-archive.com/whatwg@lists.whatwg.org/msg19786.html

• src/StorageAreaProxy.cpp: (WebCore::StorageAreaProxy::storageEvent): exception handling
• src/StorageEventDispatcherImpl.cpp: (WebCore::StorageEventDispatcherImpl::dispatchStorageEvent): exception handling

Location:

trunk

Files:

• LayoutTests/ChangeLog (modified) (1 diff)
• LayoutTests/fast/frames/resources/sandboxed-iframe-storage-disallowed.html (modified) (1 diff)
• LayoutTests/fast/frames/sandboxed-iframe-storage-expected.txt (modified) (1 diff)
• WebCore/ChangeLog (modified) (1 diff)
• WebCore/inspector/InspectorController.cpp (modified) (1 diff)
• WebCore/inspector/InspectorDOMStorageResource.cpp (modified) (1 diff)
• WebCore/page/DOMWindow.cpp (modified) (4 diffs)
• WebCore/page/DOMWindow.h (modified) (1 diff)
• WebCore/page/DOMWindow.idl (modified) (1 diff)
• WebCore/page/SecurityOrigin.h (modified) (1 diff)
• WebCore/storage/StorageEventDispatcher.cpp (modified) (1 diff)
• WebKit/chromium/ChangeLog (modified) (1 diff)
• WebKit/chromium/src/StorageAreaProxy.cpp (modified) (1 diff)
• WebKit/chromium/src/StorageEventDispatcherImpl.cpp (modified) (1 diff)

trunk/LayoutTests/ChangeLog

@@ +1 @@
+2010-03-15  Patrik Persson  <patrik.j.persson@ericsson.com>
+
+        Reviewed by Darin Adler.
+
+        https://bugs.webkit.org/show_bug.cgi?id=32369
+
+        Revised test of storage/databases in sandboxed iframes.
+        
+        Verify that SECURITY_ERR is raised on access to
+        window.localStorage or window.openDatabase(). Also verify that
+        window.sessionStorage is now allowed in sandboxed iframes.
+
+        WebKit would previously return null references in these cases.  The
+        new behavior is in accordance with HTML5:
+
+        - http://dev.w3.org/html5/webstorage/   (sections 4.2 and 4.3)
+        - http://dev.w3.org/html5/webdatabase/  (section 4.1)
+        - http://www.mail-archive.com/whatwg@lists.whatwg.org/msg19786.html
+
+        * fast/frames/resources/sandboxed-iframe-storage-disallowed.html: expect exceptions, not null
+        * fast/frames/sandboxed-iframe-storage-expected.txt: expect exceptions, not null
+
 2010-03-15  Tony Chang  <tony@chromium.org>
 

trunk/LayoutTests/fast/frames/resources/sandboxed-iframe-storage-disallowed.html

@@ -7 +7 @@
 
 window.onload = function() {
-    shouldBeTrue("window.openDatabase('SandboxedIframeStorageDisallowed', '1.0', '', 1) == null");
-    shouldBeTrue("window.localStorage == null");
-    shouldBeTrue("window.sessionStorage == null");
+    shouldThrow("window.openDatabase('SandboxedIframeStorageDisallowed', '1.0', '', 1)", "'Error: SECURITY_ERR: DOM Exception 18'");
+    shouldThrow("window.localStorage", "'Error: SECURITY_ERR: DOM Exception 18'");
+    shouldBeTrue("window.sessionStorage != null");
 }
 

trunk/LayoutTests/fast/frames/sandboxed-iframe-storage-expected.txt

@@ -15 +15 @@
 Frame: '<!--framePath //<!--frame0-->-->'
 --------
-PASS window.openDatabase('SandboxedIframeStorageDisallowed', '1.0', '', 1) == null is true
-PASS window.localStorage == null is true
-PASS window.sessionStorage == null is true
+PASS window.openDatabase('SandboxedIframeStorageDisallowed', '1.0', '', 1) threw exception Error: SECURITY_ERR: DOM Exception 18.
+PASS window.localStorage threw exception Error: SECURITY_ERR: DOM Exception 18.
+PASS window.sessionStorage != null is true
 
 

trunk/WebCore/ChangeLog

@@ +1 @@
+2010-03-15  Patrik Persson  <patrik.j.persson@ericsson.com>
+
+        Reviewed by Darin Adler.
+
+        https://bugs.webkit.org/show_bug.cgi?id=32369
+
+        Revise iframe sandbox behavior to match the updated HTML5 spec.
+
+        - Enables window.sessionStorage in sandboxed iframes.
+
+        - Raises SECURITY_ERR exceptions when window.localStorage or
+          window.openDatabase() is blocked by iframe sandboxing.
+
+          Note: window.sessionStorage does not raise exceptions.
+
+        WebKit would previously return null references in these cases.  The
+        new behavior is in accordance with HTML5:
+
+          http://dev.w3.org/html5/webstorage/   (sections 4.2 and 4.3)
+          http://dev.w3.org/html5/webdatabase/  (section 4.1)
+          http://www.mail-archive.com/whatwg@lists.whatwg.org/msg19786.html
+
+        * inspector/InspectorController.cpp:
+        (WebCore::InspectorController::selectDOMStorage): exception handling
+        * inspector/InspectorDOMStorageResource.cpp:
+        (WebCore::InspectorDOMStorageResource::handleEvent): exception handling
+        * page/DOMWindow.cpp:
+        (WebCore::DOMWindow::sessionStorage): re-enabled in iframe sandbox
+        (WebCore::DOMWindow::localStorage): raise exception rather than return null
+        (WebCore::DOMWindow::openDatabase): raise exception rather than return null
+        * page/DOMWindow.h: added exceptions to interface
+        * page/DOMWindow.idl: added exceptions to interface
+        * page/SecurityOrigin.h:
+        (WebCore::SecurityOrigin::canAccessLocalStorage): renamed function to reflect its purpose
+        * storage/StorageEventDispatcher.cpp:
+        (WebCore::StorageEventDispatcher::dispatch): exception handling
+
 2010-03-15  Alexander Pavlov  <apavlov@chromium.org>
 

trunk/WebCore/inspector/InspectorController.cpp

@@ -1364 +1364 @@
 
     Frame* frame = storage->frame();
-    bool isLocalStorage = (frame->domWindow()->localStorage() == storage);
+    ExceptionCode ec = 0;
+    bool isLocalStorage = (frame->domWindow()->localStorage(ec) == storage && !ec);
     int storageResourceId = 0;
     DOMStorageResourcesMap::iterator domStorageEnd = m_domStorageResources.end();

trunk/WebCore/inspector/InspectorDOMStorageResource.cpp

@@ -105 +105 @@
     StorageEvent* storageEvent = static_cast<StorageEvent*>(event);
     Storage* storage = storageEvent->storageArea();
-    bool isLocalStorage = storage->frame()->domWindow()->localStorage() == storage;
+    ExceptionCode ec = 0;
+    bool isLocalStorage = (storage->frame()->domWindow()->localStorage(ec) == storage && !ec);
     if (isSameHostAndType(storage->frame(), isLocalStorage))
         m_frontend->updateDOMStorage(m_id);

trunk/WebCore/page/DOMWindow.cpp

@@ -576 +576 @@
     if (!document)
         return 0;
-    
-    if (!document->securityOrigin()->canAccessStorage())
-        return 0;
 
     Page* page = document->page();
@@ -593 +590 @@
 }
 
-Storage* DOMWindow::localStorage() const
+Storage* DOMWindow::localStorage(ExceptionCode& ec) const
 {
     if (m_localStorage)
@@ -602 +599 @@
         return 0;
     
-    if (!document->securityOrigin()->canAccessStorage())
-        return 0;
+    if (!document->securityOrigin()->canAccessLocalStorage()) {
+        ec = SECURITY_ERR;
+        return 0;
+    }
         
     Page* page = document->page();
@@ -1188 +1187 @@
 
     Document* document = m_frame->document();
-    if (!document->securityOrigin()->canAccessDatabase())
-        return 0;
+    if (!document->securityOrigin()->canAccessDatabase()) {
+        ec = SECURITY_ERR;
+        return 0;
+    }
 
     return Database::openDatabase(document, name, version, displayName, estimatedSize, creationCallback, ec);

trunk/WebCore/page/DOMWindow.h

@@ -208 +208 @@
         // HTML 5 key/value storage
         Storage* sessionStorage() const;
-        Storage* localStorage() const;
+        Storage* localStorage(ExceptionCode&) const;
 #endif
 

trunk/WebCore/page/DOMWindow.idl

@@ -166 +166 @@
 #if defined(ENABLE_DOM_STORAGE) && ENABLE_DOM_STORAGE
         readonly attribute [EnabledAtRuntime] Storage sessionStorage;
-        readonly attribute [EnabledAtRuntime] Storage localStorage;
+        readonly attribute [EnabledAtRuntime] Storage localStorage
+            getter raises(DOMException);
 #endif
 #if defined(ENABLE_NOTIFICATIONS) && ENABLE_NOTIFICATIONS

trunk/WebCore/page/SecurityOrigin.h

@@ -118 +118 @@
 
     bool canAccessDatabase() const { return !isUnique(); }
-    bool canAccessStorage() const { return !isUnique(); }
+    bool canAccessLocalStorage() const { return !isUnique(); }
     bool canAccessCookies() const { return !isUnique(); }
 

trunk/WebCore/storage/StorageEventDispatcher.cpp

@@ -68 +68 @@
         }
 
-        for (unsigned i = 0; i < frames.size(); ++i)
-            frames[i]->document()->enqueueStorageEvent(StorageEvent::create(eventNames().storageEvent, key, oldValue, newValue, sourceFrame->document()->url(), frames[i]->domWindow()->localStorage()));
+        for (unsigned i = 0; i < frames.size(); ++i) {
+            ExceptionCode ec = 0;
+            Storage* storage = frames[i]->domWindow()->localStorage(ec);
+            if (!ec)
+                frames[i]->document()->enqueueStorageEvent(StorageEvent::create(eventNames().storageEvent, key, oldValue, newValue, sourceFrame->document()->url(), storage));
+        }
     }
 }

trunk/WebKit/chromium/ChangeLog

@@ +1 @@
+2010-03-15  Patrik Persson  <patrik.j.persson@ericsson.com>
+
+        Reviewed by Darin Adler.
+
+        https://bugs.webkit.org/show_bug.cgi?id=32369
+
+        Revise iframe sandbox behavior to match the updated HTML5 spec.
+
+        - Enables window.sessionStorage in sandboxed iframes.
+
+        - Raises SECURITY_ERR exceptions when window.localStorage or
+          window.openDatabase() is blocked by iframe sandboxing.
+
+          Note: window.sessionStorage does not raise exceptions.
+
+        WebKit would previously return null references in these cases.  The
+        new behavior is in accordance with HTML5:
+
+          http://dev.w3.org/html5/webstorage/   (sections 4.2 and 4.3)
+          http://dev.w3.org/html5/webdatabase/  (section 4.1)
+          http://www.mail-archive.com/whatwg@lists.whatwg.org/msg19786.html
+
+        * src/StorageAreaProxy.cpp:
+        (WebCore::StorageAreaProxy::storageEvent): exception handling
+        * src/StorageEventDispatcherImpl.cpp:
+        (WebCore::StorageEventDispatcherImpl::dispatchStorageEvent): exception handling
+
 2010-03-15  Tony Chang  <tony@chromium.org>
 

trunk/WebKit/chromium/src/StorageAreaProxy.cpp

@@ -139 +139 @@
         }
 
-        for (unsigned i = 0; i < frames.size(); ++i)
-            frames[i]->document()->enqueueStorageEvent(StorageEvent::create(eventNames().storageEvent, key, oldValue, newValue, sourceFrame->document()->url(), frames[i]->domWindow()->localStorage()));
+        for (unsigned i = 0; i < frames.size(); ++i) {
+            ExceptionCode ec = 0;
+            Storage* storage = frames[i]->domWindow()->localStorage(ec);
+            if (!ec)
+                frames[i]->document()->enqueueStorageEvent(StorageEvent::create(eventNames().storageEvent, key, oldValue, newValue, sourceFrame->document()->url(), storage));
+        }
     }
 }

trunk/WebKit/chromium/src/StorageEventDispatcherImpl.cpp

@@ -74 +74 @@
     // FIXME: Figure out how to pass in the document URI.
     for (unsigned i = 0; i < frames.size(); ++i) {
-        frames[i]->document()->dispatchWindowEvent(StorageEvent::create(eventNames().storageEvent, key, oldValue, newValue,
-                                                                        url, frames[i]->domWindow()->localStorage()));
+        ExceptionCode ec = 0;
+        Storage* storage = frames[i]->domWindow()->localStorage(ec);
+        if (!ec)
+            frames[i]->document()->dispatchWindowEvent(StorageEvent::create(eventNames().storageEvent, key, oldValue, newValue,
+                                                                            url, storage));
     }
 }