Voozh

👁 Image
Chromium Code Reviews

(246)

Issues Search

My Issues | Starred Open | Closed | All

👁 Image
Issue 596043003: Basic console error messages for subresource integrity. (Closed)

Created:
6 years, 3 months ago by jww

Modified:
6 years, 2 months ago

Reviewers:
Mike West

CC:
blink-reviews

Base URL:
https://chromium.googlesource.com/chromium/blink.git@master

Project:
blink

Visibility:
Public.

More Reviews

Description

Basic console error messages for subresource integrity. Subresource integrity is behind an experimental flag in blink (see https://codereview.chromium.org/566083003). This CL adds in some useful console error messages when things go wrong, such as non-matching integrity values or an unparsable integrity attribute. R=mkwst@chromium.org BUG=355467 Committed: https://src.chromium.org/viewvc/blink?view=rev&revision=183000

Patch Set 1 #

Patch Set 2 : Updated some of the FIXME comments #

Total comments: 8

Patch Set 3 : Rebase on ToT #

Patch Set 4 : Addressed comments from mkwst #

Total comments: 4

Patch Set 5 : Typos #

Patch Set 6 : Fixed broken test expected values #

Created: 6 years, 2 months ago

Download [raw] [tar.bz2]

		Unified diffs	Side-by-side diffs	Delta from patch set	Stats			Patch
👁 Image	M	LayoutTests/http/tests/security/subresourceIntegrity/subresource-integrity-blocked-expected.txt	View	1 2 3	1 chunk	+3 lines, -0 lines	0 comments	Download
👁 Image	M	LayoutTests/http/tests/security/subresourceIntegrity/subresource-integrity-invalid-integrity-expected.txt	View	1 2 3 4 5	1 chunk	+4 lines, -0 lines	0 comments	Download
👁 Image	M	Source/core/dom/ScriptLoader.cpp	View	1	1 chunk	+0 lines, -1 line	0 comments	Download
👁 Image	M	Source/core/frame/SubresourceIntegrity.cpp	View	1 2 3 4	7 chunks	+62 lines, -13 lines	0 comments	Download

Messages

Total messages: 13 (3 generated)

Expand Messages | Collapse Messages | Show Generated Messages | Hide Generated Messages

jww

6 years, 3 months ago (2014-09-23 23:36:37 UTC) #1

Mike West

Thanks! A few comments inline. https://codereview.chromium.org/596043003/diff/20001/Source/core/frame/SubresourceIntegrity.cpp File Source/core/frame/SubresourceIntegrity.cpp (right): https://codereview.chromium.org/596043003/diff/20001/Source/core/frame/SubresourceIntegrity.cpp#newcode117 Source/core/frame/SubresourceIntegrity.cpp:117: logErrorToConsole("The 'integrity' attribute '" ...

6 years, 3 months ago (2014-09-24 08:40:28 UTC) #2

Thanks! A few comments inline.

https://codereview.chromium.org/596043003/diff/20001/Source/core/frame/Subres...
File Source/core/frame/SubresourceIntegrity.cpp (right):

https://codereview.chromium.org/596043003/diff/20001/Source/core/frame/Subres...
Source/core/frame/SubresourceIntegrity.cpp:117: logErrorToConsole("The
'integrity' attribute '" + attribute + "' does not parse as a valid integrity.",
document);
How about "The 'integrity' attribute's value '" + attribute + "' is not valid
integrity metadata."?

It would be nice to get a little more detail by hooking into the parser, as we
do in CSP, but this is a perfectly reasonable start.

https://codereview.chromium.org/596043003/diff/20001/Source/core/frame/Subres...
Source/core/frame/SubresourceIntegrity.cpp:136: logErrorToConsole("The computed
" + algorithmToString(algorithm) + " integrity '" + digestToString(digest) + "'
does not match the 'integrity' attribute '" + integrity + "'.", document);
This message exposes the digest of the resource. As long as the message _only_
goes to the console, this is fine. If we start throwing exceptions, or reporting
this as a violation event or something in the future, we'll need to be careful
to avoid exposing that information to JavaScript.

Would you mind adding a comment to that effect?

https://codereview.chromium.org/596043003/diff/20001/Source/core/frame/Subres...
Source/core/frame/SubresourceIntegrity.cpp:139: logErrorToConsole("There was an
error computing an 'integrity' value for a resource.", document);
Perhaps you could pass a KURL into this method to improve messages like this
one. (e.g. url.elidedString() instead of "a resource"). This is especially
important for the previous error; if there are three integrity'd resources on a
page, there's no easy way for the developer to figure out which one failed.

https://codereview.chromium.org/596043003/diff/20001/Source/core/frame/Subres...
Source/core/frame/SubresourceIntegrity.cpp:150: // respective entries in the
kAlgorithmMap array in checkDigest().
// as well as the array in algorithmToString().

jww

Hey Mike. Sorry it took so long, but I think I addressed your comments. https://codereview.chromium.org/596043003/diff/20001/Source/core/frame/SubresourceIntegrity.cpp ...

6 years, 2 months ago (2014-09-30 01:38:50 UTC) #3

Hey Mike. Sorry it took so long, but I think I addressed your comments.

https://codereview.chromium.org/596043003/diff/20001/Source/core/frame/Subres...
File Source/core/frame/SubresourceIntegrity.cpp (right):

https://codereview.chromium.org/596043003/diff/20001/Source/core/frame/Subres...
Source/core/frame/SubresourceIntegrity.cpp:117: logErrorToConsole("The
'integrity' attribute '" + attribute + "' does not parse as a valid integrity.",
document);
On 2014/09/24 08:40:27, Mike West wrote:
> How about "The 'integrity' attribute's value '" + attribute + "' is not valid
> integrity metadata."?
> 
> It would be nice to get a little more detail by hooking into the parser, as we
> do in CSP, but this is a perfectly reasonable start.
Yeah, first part done, and I figure we can do more detailed later.

https://codereview.chromium.org/596043003/diff/20001/Source/core/frame/Subres...
Source/core/frame/SubresourceIntegrity.cpp:136: logErrorToConsole("The computed
" + algorithmToString(algorithm) + " integrity '" + digestToString(digest) + "'
does not match the 'integrity' attribute '" + integrity + "'.", document);
On 2014/09/24 08:40:28, Mike West wrote:
> This message exposes the digest of the resource. As long as the message _only_
> goes to the console, this is fine. If we start throwing exceptions, or
reporting
> this as a violation event or something in the future, we'll need to be careful
> to avoid exposing that information to JavaScript.
> 
> Would you mind adding a comment to that effect?

Done.

https://codereview.chromium.org/596043003/diff/20001/Source/core/frame/Subres...
Source/core/frame/SubresourceIntegrity.cpp:139: logErrorToConsole("There was an
error computing an 'integrity' value for a resource.", document);
On 2014/09/24 08:40:27, Mike West wrote:
> Perhaps you could pass a KURL into this method to improve messages like this
> one. (e.g. url.elidedString() instead of "a resource"). This is especially
> important for the previous error; if there are three integrity'd resources on
a
> page, there's no easy way for the developer to figure out which one failed.

Done.

https://codereview.chromium.org/596043003/diff/20001/Source/core/frame/Subres...
Source/core/frame/SubresourceIntegrity.cpp:150: // respective entries in the
kAlgorithmMap array in checkDigest().
On 2014/09/24 08:40:28, Mike West wrote:
> // as well as the array in algorithmToString().

Done.

Mike West

LGTM % typos. Thanks! https://codereview.chromium.org/596043003/diff/60001/Source/core/frame/SubresourceIntegrity.cpp File Source/core/frame/SubresourceIntegrity.cpp (right): https://codereview.chromium.org/596043003/diff/60001/Source/core/frame/SubresourceIntegrity.cpp#newcode117 Source/core/frame/SubresourceIntegrity.cpp:117: logErrorToConsole("The 'integrity' attribute's value '" ...

6 years, 2 months ago (2014-09-30 09:13:28 UTC) #4

jww

https://codereview.chromium.org/596043003/diff/60001/Source/core/frame/SubresourceIntegrity.cpp File Source/core/frame/SubresourceIntegrity.cpp (right): https://codereview.chromium.org/596043003/diff/60001/Source/core/frame/SubresourceIntegrity.cpp#newcode117 Source/core/frame/SubresourceIntegrity.cpp:117: logErrorToConsole("The 'integrity' attribute's value '" + attribute + "' ...

6 years, 2 months ago (2014-09-30 17:59:33 UTC) #5

jww

6 years, 2 months ago (2014-09-30 17:59:33 UTC) #6

commit-bot: I haz the power

CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/596043003/80001

6 years, 2 months ago (2014-09-30 18:00:11 UTC) #8

commit-bot: I haz the power

Try jobs failed on following builders: linux_blink_rel on tryserver.blink (http://build.chromium.org/p/tryserver.blink/builders/linux_blink_rel/builds/27138)

6 years, 2 months ago (2014-09-30 19:02:07 UTC) #10

commit-bot: I haz the power

CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/596043003/100001

6 years, 2 months ago (2014-09-30 19:16:38 UTC) #12

commit-bot: I haz the power

Committed patchset #6 (id:100001) as 183000

6 years, 2 months ago (2014-09-30 23:05:55 UTC) #13

Message was sent while issue was closed.

Committed patchset #6 (id:100001) as 183000

Expand Messages | Collapse Messages | Show Generated Messages | Hide Generated Messages

👁 Powered by Google App Engine

This is Rietveld 408576698

URL: https://codereview.chromium.org/596043003/

⇱ Issue 596043003: Basic console error messages for subresource integrity. - Code Review

👁 Image
Issue 596043003: Basic console error messages for subresource integrity. (Closed)

Description

Patch Set 1 #

Patch Set 2 : Updated some of the FIXME comments #

Patch Set 3 : Rebase on ToT #

Patch Set 4 : Addressed comments from mkwst #

Patch Set 5 : Typos #

Patch Set 6 : Fixed broken test expected values #

Messages

URL: https://codereview.chromium.org/596043003/

👁 Image Issue 596043003: Basic console error messages for subresource integrity. (Closed)

👁 Image
Issue 596043003: Basic console error messages for subresource integrity. (Closed)