Issue 645004 link

Starred by 1 user

Issue metadata

Status:	Fixed
Owner:	sa...@chromium.org
Closed:	Oct 2016
Cc:	█ mgiuca@chromium.org
Components:	Blink>WebShare
EstimatedDays:	----
NextAction:	----
OS:	Android
Pri:	3
Type:	Feature
allpublic

Web Share: Implement browser-side kill switch

Project Member Reported by mgiuca@chromium.org, Sep 8 2016

Issue description

Version: 55
OS: Android

Web Share origin trial can be remotely disabled via the origin trials server itself. However, this only disables it in the renderer.

There is no server-controlled way to disable the Mojo service, which means a compromised renderer could talk directly to the WebShare service and create shares. If a WebShare browser-side vulnerability is discovered in the wild (e.g., a major Android app is being trivially compromised by a share payload), we would ideally have a way to remotely disable the Mojo service as well.

This is a low priority because it is just a mitigation for a combined renderer compromise + potential security bug in WebShare itself.

Comment 1 by mgiuca@chromium.org, Sep 20 2016

WIP CL: https://codereview.chromium.org/2314573002/

Project Member

Comment 2 by bugdroid1@chromium.org, Oct 4 2016

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/0285a44ea8769e4a6ae7b1a70b663b474055b4e8

commit 0285a44ea8769e4a6ae7b1a70b663b474055b4e8
Author: sammc <sammc@chromium.org>
Date: Tue Oct 04 23:03:56 2016

Don't expose webshare from the browser when the origin trial disables it.

BUG= 645004 
CQ_INCLUDE_TRYBOTS=master.tryserver.chromium.linux:linux_site_isolation

Review-Url: https://codereview.chromium.org/2314573002
Cr-Commit-Position: refs/heads/master@{#422983}

[modify] https://crrev.com/0285a44ea8769e4a6ae7b1a70b663b474055b4e8/chrome/android/javatests/src/org/chromium/chrome/browser/WebShareTest.java
[modify] https://crrev.com/0285a44ea8769e4a6ae7b1a70b663b474055b4e8/chrome/browser/chrome_content_browser_client.cc
[modify] https://crrev.com/0285a44ea8769e4a6ae7b1a70b663b474055b4e8/third_party/WebKit/Source/modules/webshare/NavigatorShare.cpp
[modify] https://crrev.com/0285a44ea8769e4a6ae7b1a70b663b474055b4e8/third_party/WebKit/Source/modules/webshare/NavigatorShare.h

Comment 3 by mgiuca@chromium.org, Oct 4 2016

Status: Fixed (was: Assigned)

Project Member

Comment 4 by sheriffbot@chromium.org, Oct 5 2016

Labels: -Restrict-View-SecurityTeam Restrict-View-SecurityNotify

Project Member

Comment 5 by sheriffbot@chromium.org, Jan 11 2017

Labels: -Restrict-View-SecurityNotify allpublic

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

►

Issue 645004 link

Issue metadata

Web Share: Implement browser-side kill switch

Issue description

Comment 1 by mgiuca@chromium.org, Sep 20 2016

Comment 1 Deleted

Comment 2 by bugdroid1@chromium.org, Oct 4 2016

Comment 2 Deleted

Comment 3 by mgiuca@chromium.org, Oct 4 2016

Comment 3 Deleted

Comment 4 by sheriffbot@chromium.org, Oct 5 2016

Comment 4 Deleted

Comment 5 by sheriffbot@chromium.org, Jan 11 2017

Comment 5 Deleted

Sign in to add a comment