WebView should disallow file: MIME type sniffing for apps that target new OS versions |
|||||||
Issue descriptionThe MIME type sniffing for file: URLs was disabled for other platforms in issue 777737 but this was left enabled for WebView as existing apps may be relying on it (using file: URLs that don't have .htm or .html extensions and expecting them to render as HTML). We should disallow this for apps targeting P and later and require that the file extensions be correct, as this is a security feature. See my comments on https://chromium-review.googlesource.com/853036 for some of the considerations about implementing this (wanting to cache the value appropriately).
,
Mar 20 2018
,
Mar 20 2018
This bug requires manual review: M66 has already been promoted to the beta branch, so this requires manual review Please contact the milestone owner if you have questions. Owners: cmasso@(Android), cmasso@(iOS), josafat@(ChromeOS), abdulsyed@(Desktop) For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Mar 20 2018
,
Mar 20 2018
Please verify in the next canary
,
Mar 23 2018
Ping!
,
Mar 23 2018
Sorry; verified manually on 67.0.3379.0.
,
Mar 26 2018
,
Mar 26 2018
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/c9319955d9cd479f998628f93032d7ac4a111b9d commit c9319955d9cd479f998628f93032d7ac4a111b9d Author: Torne (Richard Coles) <torne@google.com> Date: Mon Mar 26 19:35:11 2018 Disallow file: URL type sniffing for apps that target P. WebView was exempted from the change in https://chromium-review.googlesource.com/853036 to disallow MIME type sniffing for file: URLs as existing apps rely on this. Check the application target API level and disallow it for apps that target P or later. TBR=torne@google.com (cherry picked from commit b6e210a40d04c74aa2bc7dfee2d4f56da8b47e2a) Bug: 808137 Change-Id: I12378d914caa006c4c9fe321fd4007e990ff95fd Reviewed-on: https://chromium-review.googlesource.com/911754 Reviewed-by: Tobias Sargeant <tobiasjs@chromium.org> Commit-Queue: Richard Coles <torne@chromium.org> Cr-Original-Commit-Position: refs/heads/master@{#544409} Reviewed-on: https://chromium-review.googlesource.com/980955 Reviewed-by: Richard Coles <torne@chromium.org> Cr-Commit-Position: refs/branch-heads/3359@{#448} Cr-Branched-From: 66afc5e5d10127546cc4b98b9117aff588b5e66b-refs/heads/master@{#540276} [modify] https://crrev.com/c9319955d9cd479f998628f93032d7ac4a111b9d/android_webview/browser/aw_content_browser_client.cc [modify] https://crrev.com/c9319955d9cd479f998628f93032d7ac4a111b9d/android_webview/browser/aw_content_browser_client.h [modify] https://crrev.com/c9319955d9cd479f998628f93032d7ac4a111b9d/android_webview/browser/aw_settings.cc [modify] https://crrev.com/c9319955d9cd479f998628f93032d7ac4a111b9d/android_webview/browser/aw_settings.h [modify] https://crrev.com/c9319955d9cd479f998628f93032d7ac4a111b9d/android_webview/java/src/org/chromium/android_webview/AwSettings.java
,
Mar 26 2018
Need to update android-side docs and release notes but chromium side is done. |
|||||||
►
Sign in to add a comment |
|||||||
Comment 1 by bugdroid1@chromium.org
, Mar 20 2018