Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: sandbox renderer processes for cross-origin frames #18650

Merged
merged 1 commit into from Jun 20, 2019
Merged

feat: sandbox renderer processes for cross-origin frames #18650

merged 1 commit into from Jun 20, 2019

Conversation

miniak
Copy link
Contributor

@miniak miniak commented Jun 5, 2019
edited

Description of Change

Cross-origin frames, which have a separate renderer process due to site isolation do not have their own webContents and therefore use the webPreferences of the main frame. When nodeIntegrationInSubFrames is not enabled, there is no reason not to sandbox the renderer process as we are not executing any internal JavaScript code or initializing node, which would be impacted by the sandbox.

Follow up to #15821

Checklist

Release Notes

Notes: Renderer processes hosting cross-origin frames are now sandboxed unless the parent BrowserWindow enables nodeIntegrationInSubFrames.

@miniak miniak added the wip ⚒ label Jun 5, 2019
@electron-cation electron-cation bot added the new-pr 🌱 PR opened in the last 24 hours label Jun 5, 2019
@miniak miniak force-pushed the miniak/sandbox-cross-origin-iframes branch from e610c87 to a148167 Compare June 5, 2019 13:41
@miniak miniak self-assigned this Jun 5, 2019
@miniak miniak force-pushed the miniak/sandbox-cross-origin-iframes branch 3 times, most recently from 4341891 to d36007a Compare June 5, 2019 16:28
MarshallOfSound
MarshallOfSound requested changes Jun 5, 2019
View reviewed changes
Copy link
Member

@MarshallOfSound MarshallOfSound left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why? What's the potential impact? Why do we need to explicitly do this?

@miniak
Copy link
Contributor Author

miniak commented Jun 6, 2019
edited

@MarshallOfSound I've added a bit more text to the description

Why?

improved security, cross-origin iframes are sandboxed even if the main page is not

What's the potential impact?

there should be no negative effects

Why do we need to explicitly do this?

because there is no way to explicitly enable sandbox on iframes

@electron-cation electron-cation bot removed the new-pr 🌱 PR opened in the last 24 hours label Jun 6, 2019
@miniak miniak marked this pull request as ready for review June 7, 2019 18:04
MarshallOfSound
MarshallOfSound reviewed Jun 7, 2019
View reviewed changes
atom/browser/atom_browser_client.cc Outdated Show resolved Hide resolved
atom/browser/web_contents_preferences.cc Outdated Show resolved Hide resolved
atom/browser/web_contents_preferences.cc Outdated Show resolved Hide resolved
atom/browser/web_contents_preferences.cc Outdated Show resolved Hide resolved
This was referenced Jun 13, 2019
Merged
Closed
@miniak miniak force-pushed the miniak/sandbox-cross-origin-iframes branch 4 times, most recently from ae37cee to 5b32443 Compare June 13, 2019 19:04
@miniak miniak changed the base branch from master to miniak/app-metrics June 13, 2019 19:06
@miniak miniak force-pushed the miniak/sandbox-cross-origin-iframes branch from 5b32443 to e46e665 Compare June 14, 2019 21:08
@miniak miniak changed the base branch from miniak/app-metrics to master June 14, 2019 21:08
@miniak miniak force-pushed the miniak/sandbox-cross-origin-iframes branch 2 times, most recently from 56c1b56 to b29467f Compare June 15, 2019 09:01
@miniak miniak force-pushed the miniak/sandbox-cross-origin-iframes branch 2 times, most recently from cd5e900 to 17888ca Compare June 15, 2019 09:27
@miniak miniak removed the wip ⚒ label Jun 15, 2019
@miniak miniak mentioned this pull request Jun 15, 2019
Closed
6 tasks
@miniak miniak force-pushed the miniak/sandbox-cross-origin-iframes branch from 17888ca to cbc2f21 Compare June 15, 2019 21:21
@miniak
Copy link
Contributor Author

miniak commented Jun 17, 2019

@MarshallOfSound can you please check again?

@miniak miniak force-pushed the miniak/sandbox-cross-origin-iframes branch from cbc2f21 to 28017d1 Compare June 20, 2019 06:02
@alexeykuzmin alexeykuzmin merged commit f3f2990 into master Jun 20, 2019
@release-clerk
Copy link

release-clerk bot commented Jun 20, 2019

Release Notes Persisted

Renderer processes hosting cross-origin frames are now sandboxed unless the parent BrowserWindow enables nodeIntegrationInSubFrames.

@alexeykuzmin alexeykuzmin deleted the miniak/sandbox-cross-origin-iframes branch June 20, 2019 10:12
@miniak miniak mentioned this pull request Jun 23, 2019
Merged
4 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@alexeykuzmin alexeykuzmin alexeykuzmin approved these changes

@zcbenz zcbenz zcbenz approved these changes

@deepak1556 deepak1556 deepak1556 approved these changes

@MarshallOfSound MarshallOfSound MarshallOfSound approved these changes

@ppontes ppontes ppontes approved these changes

@nornagon nornagon Awaiting requested review from nornagon

Assignees

@miniak miniak

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
6 participants
@miniak @alexeykuzmin @zcbenz @deepak1556 @MarshallOfSound @ppontes