Flag for disabling the Application Cache in insecure contexts

Flag for disabling the Application Cache in insecure contexts

Implements a flag for disabling the Application Cache from loading a manifest or an origin from using the Application Cache APIs from insecure contexts. Also places this behavior behind the Strict Powerful Features flag.

BUG=588931
[email protected]

[jww, 2016-08-19 00:29:31]

Michael, can you take a look? This just creates the basic flag but disables it
by default.

[michaeln, 2016-08-19 23:24:02]

To do this, we definitely have to make changes to content/browser/appcache so it
doesn't read or update existing caches, and instead deletes them.

I think we could probably do this without touching blink at all honestly.

The appcache relevant code is blink is limited to telling chromium the value of
the <html>  manifest attribute and poking chromium when
applicationCache.somethingOrAnother is accessed. To change the appcache to not
do stuff, we have to change the code that actually does stuff, that's in
chromium overwhelmingly in the browser process.

[michaeln, 2016-08-19 23:58:18]

Somethings that have to happen for this, in no particular order.

* Sometime lazily after startup, all insecure origins in
appcache_service()->storage()->usage_map() should be scheduled for deletion via
DeleteAppCachesForOrigin. AppCacheServiceImpl can do that.

* AppCacheInterceptor should not hook http requests

* IsSchemeSupportedForAppCache() should examine the new flag

Not sure that's all of it, but that would be a good start.

[jww, 2016-08-20 00:13:50]

Thanks for the pointers! I think we need to have Blink logic for doing the
isSecureContext check, but I'll take a look at your references in the
meantime.

On Fri, Aug 19, 2016, 4:58 PM <[email protected]> wrote:

> Somethings that have to happen for this, in no particular order.
>
> * Sometime lazily after startup, all insecure origins in
> appcache_service()->storage()->usage_map() should be scheduled for
> deletion via
> DeleteAppCachesForOrigin. AppCacheServiceImpl can do that.
>
> * AppCacheInterceptor should not hook http requests
>
> * IsSchemeSupportedForAppCache() should examine the new flag
>
> Not sure that's all of it, but that would be a good start.
>
> https://codereview.chromium.org/2258013002/
>

-- 
You received this message because you are subscribed to the Google Groups "Blink
Reviews" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].

[jww, 2016-08-20 00:13:51]

Thanks for the pointers! I think we need to have Blink logic for doing the
isSecureContext check, but I'll take a look at your references in the
meantime.

On Fri, Aug 19, 2016, 4:58 PM <[email protected]> wrote:

> Somethings that have to happen for this, in no particular order.
>
> * Sometime lazily after startup, all insecure origins in
> appcache_service()->storage()->usage_map() should be scheduled for
> deletion via
> DeleteAppCachesForOrigin. AppCacheServiceImpl can do that.
>
> * AppCacheInterceptor should not hook http requests
>
> * IsSchemeSupportedForAppCache() should examine the new flag
>
> Not sure that's all of it, but that would be a good start.
>
> https://codereview.chromium.org/2258013002/
>

-- 
You received this message because you are subscribed to the Google Groups
"Chromium-reviews" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].