angler-fishThe Vulnerability History Project

Revert of service worker: Don't control a subframe of an insecure context (patchset #21 id:440001 of https://codereview.chromium.org/2009453002/ )

      Reason for revert:
ServiceWorkerProviderHost::SetControllerVersionAttribute CHECK is firing in release builds: https://crbug.com/618365

Original issue's description:
> service worker: Don't control a subframe of an insecure context
>
> We must check isSecureContext when creating the network provider to
> adhere to https://w3c.github.io/webappsec/specs/powerfulfeatures/#settings-privileged.
>
> We already did this for getRegistration(), register(), unregister() but must
> also do this when deciding whether to control an in-scope document.
>
> BUG=607543
> CQ_INCLUDE_TRYBOTS=tryserver.chromium.linux:linux_site_isolation
>
> Committed: https://crrev.com/59a2e54eeb0e61971a0c27c44c54dd0c30b5d06d
> Cr-Commit-Position: refs/heads/master@{#398229}

TBR=alexmos@chromium.org,clamy@chromium.org,horo@chromium.org,jww@chromium.org,kinuko@chromium.org,lazyboy@chromium.org,rdevlin.cronin@chromium.org,falken@chromium.org
# Not skipping CQ checks because original CL landed more than 1 days ago.
BUG=607543

Review-Url: https://codereview.chromium.org/2055433002
Cr-Commit-Position: refs/heads/master@{#398660}
by Jack the Fossa 2016-06-08 20:29:39 UTC
commit c363d41a6001cb7b27789484702d23fa4572a918
Chromium Fix CVE-2016-5132
chrome/browser/chrome_content_browser_client.cc
+6
chrome/browser/chrome_content_browser_client.h
+2
chrome/browser/extensions/service_worker_apitest.cc
+20 -3
content/browser/service_worker/service_worker_browsertest.cc
+6 -5
content/browser/service_worker/service_worker_context_core.cc
+7 -7
content/browser/service_worker/service_worker_context_request_handler_unittest.cc
+6 -5
content/browser/service_worker/service_worker_context_unittest.cc
+12 -4
content/browser/service_worker/service_worker_controllee_request_handler.cc
+12
content/browser/service_worker/service_worker_controllee_request_handler_unittest.cc
+13 -12
content/browser/service_worker/service_worker_dispatcher_host.cc
+12 -5
content/browser/service_worker/service_worker_dispatcher_host.h
+2 -1
content/browser/service_worker/service_worker_dispatcher_host_unittest.cc
+13 -7
content/browser/service_worker/service_worker_handle_unittest.cc
+3 -2
content/browser/service_worker/service_worker_job_unittest.cc
+6 -5
content/browser/service_worker/service_worker_provider_host.cc
+22 -1
content/browser/service_worker/service_worker_provider_host.h
+25
content/browser/service_worker/service_worker_provider_host_unittest.cc
+64 -9
content/browser/service_worker/service_worker_request_handler_unittest.cc
+9 -9
content/browser/service_worker/service_worker_storage_unittest.cc
+3
content/browser/service_worker/service_worker_url_request_job_unittest.cc
+17 -20
content/browser/service_worker/service_worker_version_unittest.cc
+1
content/browser/service_worker/service_worker_write_to_cache_job_unittest.cc
+5 -3
content/child/service_worker/service_worker_network_provider.cc
+25 -11
content/child/service_worker/service_worker_network_provider.h
+11 -4
content/common/service_worker/service_worker_messages.h
+13 -2
content/public/browser/content_browser_client.h
+6
content/renderer/render_frame_impl.cc
+2 -2
content/renderer/service_worker/service_worker_context_client.cc
+2 -1
content/renderer/shared_worker/embedded_shared_worker_stub.cc
+2 -1
third_party/WebKit/LayoutTests/http/tests/serviceworker/insecure-parent-frame.html
+35
third_party/WebKit/LayoutTests/http/tests/serviceworker/resources/insecure-inscope.html
+9
third_party/WebKit/LayoutTests/http/tests/serviceworker/resources/insecure-parent.html
+16
third_party/WebKit/Source/core/dom/Document.cpp
+10 -21
third_party/WebKit/Source/core/dom/Document.h
+1 -1
third_party/WebKit/Source/core/frame/Frame.cpp
+9
third_party/WebKit/Source/core/frame/Frame.h
+9
third_party/WebKit/Source/web/WebFrame.cpp
+8
third_party/WebKit/Source/web/tests/WebFrameTest.cpp
+58
third_party/WebKit/public/web/WebFrame.h
+9
expand_less