Bug 1599256: Fix web compatibility issues by reverting changes and going back to loading about:blank and firing the onload event in case XFO blocks an iframe. r=jkt,smaug

Differential Revision: https://phabricator.services.mozilla.com/D56166 --HG-- extra : moz-landing-system : lando
2019-12-13 07:07:49 +00:00 · 2019-12-13 07:07:49 +00:00 · 142f16f7de
--- a/dom/base/Document.cpp
+++ b/dom/base/Document.cpp
@ -3019,8 +3019,24 @@ nsresult Document::StartDocumentLoad(const char* aCommand, nsIChannel* aChannel,
    // the checks for type_subdoc or type_object happen within
    // CheckFrameOptions.
    if (!FramingChecker::CheckFrameOptions(aChannel, mCSP)) {
-      // stop!  ERROR page!
-      aChannel->Cancel(NS_ERROR_XFO_VIOLATION);
+      // Bug 1601887: Display error page but still fire onload
+      // event in case x-frame-options blocks a load.
+      // After Bug 1601887 the about:blank load here should disappear
+      // and we should cancel the channel by using
+      // aChannel->Cancel(NS_ERROR_XFO_VIOLATION) which then displays
+      // the error page.
+      aChannel->Cancel(NS_BINDING_ABORTED);
+      if (docShell) {
+        nsCOMPtr<nsIWebNavigation> webNav(do_QueryObject(docShell));
+        if (webNav) {
+          RefPtr<NullPrincipal> principal =
+              NullPrincipal::CreateWithInheritedAttributes(
+                  loadInfo->TriggeringPrincipal());
+          LoadURIOptions loadURIOptions;
+          loadURIOptions.mTriggeringPrincipal = principal;
+          webNav->LoadURI(NS_LITERAL_STRING("about:blank"), loadURIOptions);
+        }
+      }
    }
  }

--- a/dom/security/test/csp/test_ignore_xfo.html
+++ b/dom/security/test/csp/test_ignore_xfo.html
@ -75,13 +75,17 @@ csp_testframe.src = "file_ignore_xfo.html";

 // 2) test XFO with CSP_RO
 var csp_ro_testframe = document.getElementById("csp_ro_testframe");
-// If XFO denies framing the neither the onload, nor the onerror
-// event should fire, because we are displaying a about:neterror.
-// The actual error we are detecting within this test comes from
-// the xfo-on-violation-polcy observer.
+// If XFO denies framing the onload event handler should fire. At the
+// moment we are displaying about:blank (in regular mode and the error page
+// if fission is enabled) in case XFO blocks a frame, but after Bug 1601887
+// we are going to display about:neterror, but the onload event should still
+// fire. Please note that for the purpose of this test, the actual error we
+// are detecting comes from the xfo-on-violation-polcy observer.
 csp_ro_testframe.onload = function() {
-  ok(false, "sanity: should not fire onload for csp_ro_testframe");
-  checkFinished();
+  // Bug 1601887, onload event handler should fire even if frame is blocked.
+  // Please note that we can not add a todo, because the event would
+  // potentially fire after the test has already called SimpleTest.finish()
+  // and hence causes intermittent failures.
 }
 csp_ro_testframe.onerror = function() {
  ok(false, "sanity: should not fire onerror for csp_ro_testframe");
--- a/testing/web-platform/meta/x-frame-options/deny.sub.html.ini
+++ b/testing/web-platform/meta/x-frame-options/deny.sub.html.ini
@ -1,8 +1,14 @@
 [deny.sub.html]
-  expected: TIMEOUT
+  expected:
+    if fission: TIMEOUT
+    OK

  [`XFO: DENY` blocks same-origin framing.]
-    expected: TIMEOUT
+    expected:
+      if fission: TIMEOUT
+      PASS

  [`XFO: DENY` blocks cross-origin framing.]
-    expected: TIMEOUT
+    expected:
+      if fission: TIMEOUT
+      PASS
--- a/testing/web-platform/meta/x-frame-options/multiple.sub.html.ini
+++ b/testing/web-platform/meta/x-frame-options/multiple.sub.html.ini
@ -1,11 +1,19 @@
 [multiple.sub.html]
-  expected: TIMEOUT
+  expected:
+    if fission: TIMEOUT
+    OK

  [`XFO: SAMEORIGIN; XFO: DENY` blocks same-origin framing.]
-    expected: TIMEOUT
+    expected:
+      if fission: TIMEOUT
+      PASS

  [`XFO: DENY; XFO: SAMEORIGIN` blocks same-origin framing.]
-    expected: TIMEOUT
+    expected:
+      if fission: TIMEOUT
+      PASS

  [`XFO: SAMEORIGIN; XFO: SAMEORIGIN` blocks cross-origin framing.]
-    expected: TIMEOUT
+    expected:
+      if fission: TIMEOUT
+      PASS
--- a/testing/web-platform/meta/x-frame-options/sameorigin.sub.html.ini
+++ b/testing/web-platform/meta/x-frame-options/sameorigin.sub.html.ini
@ -1,14 +1,24 @@
 [sameorigin.sub.html]
-  expected: TIMEOUT
+  expected:
+    if fission: TIMEOUT
+    OK

  [`XFO: SAMEORIGIN` blocks cross-origin framing.]
-    expected: TIMEOUT
+    expected:
+      if fission: TIMEOUT
+      PASS

  [`XFO: SAMEORIGIN` blocks cross-origin nested in same-origin framing.]
-    expected: TIMEOUT
+    expected:
+      if fission: TIMEOUT
+      PASS

  [`XFO: SAMEORIGIN` blocks same-origin nested in cross-origin framing.]
-    expected: TIMEOUT
+    expected:
+      if fission: TIMEOUT
+      PASS

  [`XFO: SAMEORIGIN` blocks cross-origin nested in cross-origin framing.]
-    expected: TIMEOUT
+    expected:
+      if fission: TIMEOUT
+      PASS