[Lockdown Mode] Disable XSLT parsing for WebKit in Lockdown Mode #47305
+210
−6
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
EWS run on previous version of this PR (hash bcc70c6) |
🛠 mac-safer-cpp|
Didn't realise this would kick off adding people as reviewers already! Pre-emptively pushing this one up to check tests (I think I'll need to sort out expected results for other platforms for new LayoutTests), and to get an early review from people. Feedback welcome! |
| Transform - <xsl:value-of select="."/> | ||
| </xsl:template> | ||
|
|
||
| </xsl:stylesheet> |
There was a problem hiding this comment.
nit: add empty newline at EOF
| "XSLTProcessor disabled test" | ||
| ); | ||
|
|
||
| shouldBeTrue("typeof(XSLTProcessor) === 'undefined'"); |
There was a problem hiding this comment.
nit: add empty newline at EOF
bcc70c6 to
c90770b
Compare
|
EWS run on previous version of this PR (hash c90770b) |
c90770b to
4978d53
Compare
|
EWS run on previous version of this PR (hash 4978d53) |
4978d53 to
ff86c20
Compare
|
EWS run on previous version of this PR (hash ff86c20) |
https://bugs.webkit.org/show_bug.cgi?id=295107 <rdar://problem/151845594> Reviewed by NOBODY (OOPS!). This patch disables XSLT support when in Lockdown Mode by removing access to the XSLTProcessor constructor to prevent JavaScript usage, and preventing detection of a stylesheet as XSL unless a newly introduced feature flag is enabled. The feature flag is enabled by default and disabled in LDM to prevent any change in current behaviour. Added LayoutTests that ensure XSLTProcessor is inaccessible, and suitably check an XML document with a stylesheet is not processed when in LDM. * LayoutTests/dom/xsl/lockdown-mode/XSLT-disabled.xml: Added. * LayoutTests/dom/xsl/lockdown-mode/XSLT-disabled.xsl: Added. * LayoutTests/js/dom/lockdown-mode/XSLTProcessor-disabled-expected.txt: Added. * LayoutTests/js/dom/lockdown-mode/XSLTProcessor-disabled.html: Added. * LayoutTests/js/dom/lockdown-mode/script-tests/XSLTProcessor-disabled.js: Added. * LayoutTests/platform/glib/TestExpectations: * LayoutTests/platform/ios/dom/xsl/lockdown-mode/XSLT-disabled-expected.txt: Added. * LayoutTests/platform/mac-wk1/TestExpectations: * LayoutTests/platform/mac/dom/xsl/lockdown-mode/XSLT-disabled-expected.txt: Added. * LayoutTests/platform/win/TestExpectations: * LayoutTests/platform/wpe/TestExpectations: * Source/WTF/Scripts/Preferences/UnifiedWebPreferences.yaml: * Source/WebCore/bindings/js/WebCoreBuiltinNames.h: * Source/WebCore/dom/Document.cpp: (WebCore::Document::scheduleToApplyXSLTransforms): * Source/WebCore/dom/ProcessingInstruction.cpp: (WebCore::ProcessingInstruction::checkStyleSheet): * Source/WebCore/xml/XSLTProcessor.idl:
ff86c20 to
1dfd8d8
Compare
|
EWS run on current version of this PR (hash 1dfd8d8) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
1dfd8d8
1dfd8d8