New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 798224 link

Starred by 2 users
Status: Duplicate
Owner:
stkhapugin@chromium.org
Closed: Jan 2018
Cc:
elawrence@chromium.org
cthomp@chromium.org
noyau@chromium.org
justincohen@chromium.org
pkl@chromium.org
rohitrao@chromium.org
ios-bugs-priority@chromium.org
mgiuca@chromium.org
ios-bugs@chromium.org
creis@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: iOS
Pri: 1
Type: Bug-Security



Sign in to add a comment

Security: Hostname not elided securely (URL spoofing on iOS)

Reported by chromium...@gmail.com, Jan 1 2018 
VERSION
Chrome Version: 63.0.3239,68
Operating System: iOS

REPRODUCTION CASE
From  issue 758745 

I expected Firefox will show The URL will show ....loginsgn.google.com.pk.bntk.pl as in Firefox Android.

instead of showing:
    |http://...bntk.pl/|

show:
    |http://manage-myaccount.paypal.com|

PoC: 

http://manage-myaccount.paypal.com-webapps.bntk.pl
WhatsApp Image 2018-01-01 at 23.44.22.jpeg
27.5 KB View Download

Comment 1 Deleted

Comment 2 by chromium...@gmail.com, Jan 2 2018 

Oops! I meant Chrome not Firefox sorry :).

Comment 3 by elawrence@chromium.org, Jan 2 2018

Components: UI>Security>UrlFormatting
Labels: OS-iOS
Weird. I think this used to behave correctly, based on the screenshots in Issue 454529

Comment 4 by cthomp@chromium.org, Jan 2 2018

Status: Untriaged (was: Unconfirmed)
Confirmed that this happens on Chrome 63 and Chrome 65 on iOS 11.

Comment 5 by metzman@chromium.org, Jan 2 2018

Cc: cthomp@chromium.org elawrence@chromium.org
chromium.khalil@
You can use the "Edit Description" to change your description.

This doesn't look like a bug to me.
The differences I can spot between the Android and iOS behaviors are:

1. iOS has less space for the URL than Android because of the back button (this can be reduced further when there is a forward button).

2. iOS uses an ellipses to show the user that the URL has been truncated whereas android does not.

Neither of these seem like bugs to me. 
But maybe I'm missing something, chromium.khalil@, elawrence@, cthomp@ is your understanding of this different than mine?
android.png
34.3 KB View Download
ios.jpg
27.6 KB View Download

Comment 6 by elawrence@chromium.org, Jan 2 2018 

Re #5: In both of these cases, we should be showing the right-hand side of the hostname portion of the URL, eliding text from the left hand side. go/urldisplay

Comment 7 by chromium...@gmail.com, Jan 2 2018 

On iOS 10.3.3 works as expected. Chrome shows .....bntk.pl not like on iOS 11
IMG_0078.PNG
27.0 KB View Download

Comment 8 by palmer@chromium.org, Jan 3 2018

Cc: noyau@chromium.org
Components: UI>Browser>Omnibox>SecurityIndicators
Labels: Team-Security-UX Security_Severity-Medium Security_Impact-Stable Pri-1
Owner: pkl@chromium.org
Status: Assigned (was: Untriaged)
Confirmed.

pkl, are you a good person to look into this? If not, please feel free to pass it on to a better person on your team. Thanks! :)

Comment 9 by pkl@chromium.org, Jan 3 2018

Cc: stkhapugin@chromium.org rohitrao@chromium.org
Owner: justincohen@chromium.org
Ack. -> justincohen who can help look into the iOS 10.3 vs. iOS 11 differences.
+cc a couple others.

Comment 10 by palmer@chromium.org, Jan 3 2018

Cc: pkl@chromium.org
Project Member

Comment 11 by sheriffbot@chromium.org, Jan 3 2018

Labels: M-64

Comment 12 by justincohen@chromium.org, Jan 3 2018

Cc: -stkhapugin@chromium.org justincohen@chromium.org
Owner: stkhapugin@chromium.org
stk@ this looks like a dup of 749788, no?

Comment 13 by stkhapugin@chromium.org, Jan 3 2018 

This is a dupe of 749788. The fix just landed on trunk today. 
Essentially the system API we used was broken and will not be fixed. The fix that we have is way too big to be cherry-picked, so unfortunately this is not going to be fixed in M64. 
Here's the fix: https://chromium-review.googlesource.com/c/chromium/src/+/844079

Comment 14 by chromium...@gmail.com, Jan 3 2018 

So this will be fixed in Canary?

Comment 15 by justincohen@chromium.org, Jan 4 2018 

Yes, I think so.

Comment 16 by pkl@chromium.org, Jan 6 2018 

Tested on latest canary (65.0.3313.0). The tail part of the domain "...bntk.pl" is shown in omnibox.

Comment 17 Deleted

Comment 18 by justincohen@chromium.org, Jan 6 2018

Mergedinto: 749788
Status: Duplicate (was: Fixed)
Project Member

Comment 19 by sheriffbot@chromium.org, Apr 15 2018

Labels: -Restrict-View-SecurityTeam allpublic
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment