Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[iOS] Update secure content state update flow #22849

Merged
merged 3 commits into from
Apr 3, 2024
Merged

[iOS] Update secure content state update flow #22849

merged 3 commits into from
Apr 3, 2024

Conversation

kylehickinson
Copy link
Collaborator

@kylehickinson kylehickinson commented Mar 28, 2024
edited
Loading

This change moves all of the logic that used to happen in each KVO observation into one unified location so that it has all the data available each update. It also only updates the tab content state once per update which should fix possible races when updating the URL bar in other locations.

Resolves brave/brave-browser#36951

Submitter Checklist:

  • I confirm that no security/privacy review is needed and no other type of reviews are needed, or that I have requested them
  • There is a ticket for my issue
  • Used Github auto-closing keywords in the PR description above
  • Wrote a good PR/commit description
  • Squashed any review feedback or "fixup" commits before merge, so that history is a record of what happened in the repo, not your PR
  • Added appropriate labels (QA/Yes or QA/No; release-notes/include or release-notes/exclude; OS/...) to the associated issue
  • Checked the PR locally:
    • npm run test -- brave_browser_tests, npm run test -- brave_unit_tests wiki
    • npm run presubmit wiki, npm run gn_check, npm run tslint
  • Ran git rebase master (if needed)

Reviewer Checklist:

  • A security review is not needed, or a link to one is included in the PR description
  • New files have MPL-2.0 license header
  • Adequate test coverage exists to prevent regressions
  • Major classes, functions and non-trivial code blocks are well-commented
  • Changes in component dependencies are properly reflected in gn
  • Code follows the style guide
  • Test plan is specified in PR before merging

After-merge Checklist:

Test Plan:

Brandon's test list:

  • Mobile provisioning profiles.
  • Download Apple Wallet passes.
  • PDF loading (https and http).
  • External App Links.
  • Universal Links.
  • Default Browser External Links.
  • Default Browser App Links.
  • Back-Forward Navigation.
  • Back-Forward https to http.
  • Back-Forward http to https.
  • Back-Forward mixed-content.
  • Back-Forward Local Pages (NTP).
  • Back-Forward Internal Pages (Error pages)
  • Back-Forward all bad-ssl pages
  • Back-Forward Safe-Browsing pages
  • Back-Forward NTP to Http
  • Back-Forward NTP to Https
  • Back-Forward Reader-Mode icon tests
  • Back-Forward Youtube tests
  • Back-Forward Youtube Playlist tests
  • Session Restore.
  • Session Restore AppStore URLs.
  • Session Restore Universal Links.
  • Session Restore multiple tabs AppStore URLs.
  • Session Restore multiple tabs Universal Links.
  • Backgrounding AppStore URLs.
  • Backgrounding Universal Links.
  • Backgrounding External Launches.
  • Shortcuts
  • Shortcuts Session Restore
  • Shortcuts multiple tabs
  • Opening Tab-Switcher and doing ALL of the above
  • Opening 3-dot menu and loading a page from a shortcut
  • Opening 3-dot menu and loading a page from external app.
  • Load cancellation when page fails.
  • Throwing 503 from a server.
  • Throwing 400/403 from a server.
  • Basic-Authentication to secure and insecure server.
  • Loading local-host pages
  • Server Redirects from http to https
  • Server Redirects from https to http
  • Server Redirects from https to https
  • Server Redirects from http to http
  • Server Redirects from current domain to other domain
  • document.location.href = "https://google.ca"
  • window.open("about:blank")
  • window.open("google.com")
  • window.open("google.com", "_blank")
  • window.open("https://google.com")
  • window.open("https://google.com", "_blank")
  • Visit http://neverssl.com and try to spoof via:
    setInterval(() => {
      document.location.href = "https://google.com";
      console.log("Hello");
    }, 500);

@kylehickinson kylehickinson added CI/skip-android Do not run CI builds for Android CI/skip-macos-x64 Do not run CI builds for macOS x64 CI/skip-windows-x64 Do not run CI builds for Windows x64 labels Mar 28, 2024
@kylehickinson kylehickinson self-assigned this Mar 28, 2024
@kylehickinson kylehickinson requested a review from a team as a code owner March 28, 2024 22:03
@github-actions GitHub Actions
Copy link
Contributor

The security team is monitoring all repositories for certain keywords. This PR includes the word(s) "secure" and so security team members have been added as reviewers to take a look.

No need to request a full security review at this stage, the security team will take a look shortly and either clear the label or request more information/changes.

Notifications have already been sent, but if this is blocking your merge feel free to reach out directly to the security team on Slack so that we can expedite this check.

@fmarier fmarier requested a review from bridiver March 28, 2024 22:50
@fmarier
Copy link
Member

fmarier commented Mar 28, 2024

Adding @bridiver since he was involved in the discussion.

@kylehickinson
[iOS] Update secure content state update flow
4605f4f 
This change moves all of the logic that used to happen in each KVO observation into one unified location so that it has all the data available each update. It also only updates the tab content state once per update which should fix possible races when updating the URL bar in other locations.
@kylehickinson
Use committed URL to handle secure state evaluation
facf3b0
@kylehickinson
Guard displayed URL update from NTP behind selected tab check
8fd5a45
@kylehickinson kylehickinson merged commit c1c9146 into master Apr 3, 2024
19 checks passed
@kylehickinson kylehickinson deleted the ios-secure-state-update branch April 3, 2024 19:53
@github-actions github-actions bot added this to the 1.66.x - Nightly milestone Apr 3, 2024
brave-builds added a commit that referenced this pull request Apr 3, 2024
@brave-builds
Uplift of #22849 (squashed) to beta
2de0270
@brave-builds brave-builds mentioned this pull request Apr 3, 2024
Merged
7 tasks
@kylehickinson kylehickinson mentioned this pull request Apr 3, 2024
Merged
7 tasks
kylehickinson added a commit that referenced this pull request Apr 3, 2024
@kylehickinson
Uplift of #22849 (squashed) to release
6c76fe4
@hffvld
Copy link
Collaborator

hffvld commented Apr 8, 2024
edited by Uni-verse
Loading

Brandon's test list:

  • Mobile provisioning profiles.
  • Download Apple Wallet passes.
  • PDF loading (https and http).
  • External App Links.
  • Universal Links.
  • Default Browser External Links.
  • Default Browser App Links.
  • Back-Forward Navigation.
  • Back-Forward https to http.
  • Back-Forward http to https.
  • Back-Forward mixed-content.
  • Back-Forward Local Pages (NTP).
  • Back-Forward Internal Pages (Error pages)
  • Back-Forward all bad-ssl pages
  • Back-Forward Safe-Browsing pages
  • Back-Forward NTP to Http
  • Back-Forward NTP to Https
  • Back-Forward Reader-Mode icon tests
  • Back-Forward Youtube tests
  • Back-Forward Youtube Playlist tests
  • Session Restore.
  • Session Restore AppStore URLs.
  • Session Restore Universal Links.
  • Session Restore multiple tabs AppStore URLs.
  • Session Restore multiple tabs Universal Links.
  • Backgrounding AppStore URLs.
  • Backgrounding Universal Links.
  • Backgrounding External Launches.
  • Shortcuts
  • Shortcuts Session Restore
  • Shortcuts multiple tabs
  • Opening Tab-Switcher and doing ALL of the above
  • Opening 3-dot menu and loading a page from a shortcut
  • Opening 3-dot menu and loading a page from external app.
  • Load cancellation when page fails.
  • Throwing 503 from a server.
  • Throwing 400/403 from a server.
  • Basic-Authentication to secure and insecure server.
  • Loading local-host pages
  • Server Redirects from http to https
  • Server Redirects from https to http
  • Server Redirects from https to https
  • Server Redirects from http to http
  • Server Redirects from current domain to other domain
  • document.location.href = "https://google.ca/"
  • window.open("about:blank")
  • window.open("google.com")
  • window.open("google.com", "_blank")
  • window.open("https://google.com/")
  • window.open("https://google.com/", "_blank")
  • Visit http://neverssl.com/ and try to spoof via:
    setInterval(() => {
      document.location.href = "https://google.com";
      console.log("Hello");
    }, 500);

@hffvld
Copy link
Collaborator

hffvld commented Apr 8, 2024
edited
Loading

Verified on iPhone 14 using version(s):

Device/OS: iPhone 14 / iOS 17.5
Brave build: 1.66 (67)
BraveCore: 1.66.67 (123.0.6312.105)

ACTUAL RESULTS:
Verified that everything is working fine and no Cert issue is shown on https pages.

  • Mobile provisioning profiles.
  • Download Apple Wallet passes.
  • PDF loading (https and http).
  • External App Links.
  • Universal Links.
  • Default Browser External Links.
  • Default Browser App Links.
  • Back-Forward Navigation.
  • Back-Forward https to http.
  • Back-Forward http to https.
  • Back-Forward mixed-content.
  • Back-Forward Local Pages (NTP).
  • Back-Forward Internal Pages (Error pages)
  • Back-Forward all bad-ssl pages
  • Back-Forward Safe-Browsing pages
  • Back-Forward NTP to Http
  • Back-Forward NTP to Https
  • Back-Forward Reader-Mode icon tests
  • Back-Forward Youtube tests
  • Back-Forward Youtube Playlist tests
  • Session Restore.
  • Session Restore AppStore URLs.
  • Session Restore Universal Links.
  • Session Restore multiple tabs AppStore URLs.
  • Session Restore multiple tabs Universal Links.

@Uni-verse
Copy link
Contributor

Verified on iPhone X running iOS 16.7 using version 1.66.73

  • Ensured the following scenarios were showing the correct state in URL bar

    • Backgrounding AppStore URLs.
    • Backgrounding Universal Links.
    • Backgrounding External Launches.
    • Shortcuts
    • Shortcuts Session Restore
    • Shortcuts multiple tabs
    • Opening Tab-Switcher and doing ALL of the above
    • Opening 3-dot menu and loading a page from a shortcut
    • Opening 3-dot menu and loading a page from external app.
    • Load cancellation when page fails.
    • Throwing 503 from a server.
    • Throwing 400/403 from a server.
    • Basic-Authentication to secure and insecure server.
    • Loading local-host pages
    • Server Redirects from http to https
    • Server Redirects from https to http
    • Server Redirects from https to https
    • Server Redirects from http to http
    • Server Redirects from current domain to other domain
    • document.location.href = "https://google.ca/"
    • window.open("about:blank")
    • window.open("google.com")
    • window.open("google.com", "_blank")
    • window.open("https://google.com/")
    • window.open("https://google.com/", "_blank")
    • Visit http://neverssl.com/ and try to spoof via:
        setInterval(() => {
      document.location.href = "https://google.com";
      console.log("Hello");
    }, 500);

kjozwiak pushed a commit that referenced this pull request Apr 11, 2024
@brave-builds
[iOS] Update secure content state update flow (uplift to 1.65.x) (#22915
385f812 
)

Uplift of #22849 (squashed) to beta
kjozwiak pushed a commit that referenced this pull request Apr 11, 2024
@kylehickinson
[iOS] Update secure content state update flow (uplift to 1.64.x) (#22916
121998a 
)

Uplift of #22849 (squashed) to release
@Brandon-T
Copy link
Contributor

Brandon-T commented Apr 11, 2024
edited
Loading

Condensed List:

  • Mobile provisioning profiles.
  • Download Apple Wallet passes.
  • Default Browser External Links (load a link from somewhere while the browser is both open already and closed).
  • Default Browser App Links (load an appstore link from somewhere while the browser is both open already and closed).
  • Back-Forward Navigation (switch between two different domains on the same tab via back/forward buttons).
  • Back-Forward https to http (switch from wikipedia.org to http://neverssl.com).
  • Back-Forward http to https (switch from http://neverssl.com to wikipedia.org).
  • Back-Forward all bad-ssl pages
  • Back-Forward NTP to Https (switch from ntp to wikipedia and back)
  • Basic-Authentication to secure and insecure server (account.bravesoftware.com and log-in).
  • Test no internet connection refreshing google.com both offline and online.

@kjozwiak kjozwiak mentioned this pull request Apr 11, 2024
Closed
@hffvld
Copy link
Collaborator

hffvld commented Apr 11, 2024
edited
Loading

Verified on iPhone 14 using version(s):

Device/OS: iPhone 14 / iOS 17.5
Brave build: 1.67 (2)
BraveCore: 1.67.2 (124.0.6367.29)

Filed follow-up issue #37533 and #37538

ACTUAL RESULTS:
Verified that everything is working fine and no Cert issue is shown on https pages.

  • Mobile provisioning profiles.
  • Download Apple Wallet passes.
  • Default Browser External Links (load a link from somewhere while the browser is both open already and closed).
  • Default Browser App Links (load an appstore link from somewhere while the browser is both open already and closed).
  • Back-Forward Navigation (switch between two different domains on the same tab via back/forward buttons).
  • Back-Forward https to http (switch from wikipedia.org to http://neverssl.com/).
  • Back-Forward http to https (switch from http://neverssl.com/ to wikipedia.org).
  • Back-Forward all bad-ssl pages
  • Back-Forward NTP to Https (switch from ntp to wikipedia and back)
  • Basic-Authentication to secure and insecure server (account.bravesoftware.com and log-in).
  • Test no internet connection refreshing google.com both offline and online.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Brandon-T Brandon-T Brandon-T approved these changes

@soner-yuksel soner-yuksel soner-yuksel approved these changes

@iccub iccub iccub approved these changes

@bridiver bridiver Awaiting requested review from bridiver

Assignees

@kylehickinson kylehickinson

@thypon thypon

@bcaller bcaller

Labels
CI/skip-android Do not run CI builds for Android CI/skip-macos-x64 Do not run CI builds for macOS x64 CI/skip-windows-x64 Do not run CI builds for Windows x64 needs-security-review
Projects
None yet
Milestone
1.66.x - Release
Development

Successfully merging this pull request may close these issues.

[Follow-up] URL bar falsely showing insecure state in 1.62+
9 participants
@kylehickinson @fmarier @hffvld @Uni-verse @Brandon-T @soner-yuksel @iccub @thypon @bcaller