[tor-bugs] #18811 [Tor Browser]: Our first-party isolation patch incorrectly rejects blobs retrieved in workers
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Apr 13 05:57:18 UTC 2016
#18811: Our first-party isolation patch incorrectly rejects blobs retrieved in
workers
-------------------------+-------------------------------------------------
Reporter: | Owner: tbb-team
arthuredelstein | Status: new
Type: defect | Milestone:
Priority: Medium | Version:
Component: Tor | Keywords: ff45-esr, TorBrowserTeam201604,
Browser | tbb-6.0a5
Severity: Normal | Parent ID: #15197
Actual Points: | Reviewer:
Points: |
Sponsor: |
-------------------------+-------------------------------------------------
When isolation is enabled, blobs retrieved by an XHR inside a worker are
rejected even when the blob's first party matches the worker's first
party. I found that the regression was caused by this Mozilla patch:
https://hg.mozilla.org/mozilla-
central/diff/12a852867c16/dom/base/nsXMLHttpRequest.cpp#l1694
Because of the Mozilla patch, when we are in a worker, NS_NewChannel is no
longer passed a document, so our patch code in
`nsHostObjectProtocolHandler::NewChannel2` is not able to obtain the
correct first party. Therefore the blob URI is rejected even if the first
party of the worker matches. I haven't yet figured out how to fix this
problem.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18811>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list