New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 789683 link

Starred by 2 users
Status: Available
Owner: ----
Cc:
mkwst@chromium.org
hirosh...@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: 3
Type: Task


Show other hotlists

Hotlists containing this issue:
Test4964564
XXX


Sign in to add a comment

Add tests for aliased security origins

Project Member Reported by hirosh...@chromium.org, Nov 29 2017 
SecurityOrigin is intentionally shared between documents.
Some of such cases are covered by tests (by checking whether changes to document.domain affect another document's document.domain, or doing same-origin check for a unique origin that is aliased among multiple documents), but not all cases are covered.

This issue tracks to add test coverage for such aliased security origins.

See the comments in
https://chromium-review.googlesource.com/c/chromium/src/+/752563
(inline comments in PatchSet 8) for the current situation and coverage.

Aliased security origins can be found by codesearching for
SecurityOrigin/ExecutionContext::GetMutableSecurityOrigin() calls
(likely with SetSecurityOrigin()/UpdateSecurityOrigin()/etc.).

Comment 1 by mkwst@chromium.org, Nov 30 2017

Labels: -Type-Bug Type-Task
Status: Available (was: Untriaged)
I agree that more tests in this area would be better (especially in the XML bits, which I find a bit strange, honestly). Would you be interested in taking that on?
Project Member

Comment 2 by sheriffbot@chromium.org, Nov 30

Labels: Hotlist-Recharge-Cold
Status: Untriaged (was: Available)
This issue has been Available for over a year. If it's no longer important or seems unlikely to be fixed, please consider closing it out. If it is important, please re-triage the issue.

Sorry for the inconvenience if the bug really should have been left as Available.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Comment 3 by jochen@chromium.org, Dec 6

Status: Available (was: Untriaged)

Sign in to add a comment