Bug 1909298 - Confirm permission in webRequest r=rpl

Rob--W · Rob--W · commit 8c801f5b0360 · 2024-07-25T16:43:44.000Z
Differential Revision: https://phabricator.services.mozilla.com/D217449
diff --git a/toolkit/components/extensions/webrequest/ChannelWrapper.cpp b/toolkit/components/extensions/webrequest/ChannelWrapper.cpp
@@ -180,7 +180,7 @@ already_AddRefed<ChannelWrapper> ChannelWrapper::GetRegisteredChannel(
   auto& webreq = WebRequestService::GetSingleton();
 
   nsCOMPtr<nsITraceableChannel> channel =
-      webreq.GetTraceableChannel(aChannelId, aAddon.Id(), contentParent);
+      webreq.GetTraceableChannel(aChannelId, aAddon, contentParent);
   if (!channel) {
     return nullptr;
   }
@@ -814,9 +814,14 @@ void ChannelWrapper::RegisterTraceableChannel(const WebExtensionPolicy& aAddon,
 }
 
 already_AddRefed<nsITraceableChannel> ChannelWrapper::GetTraceableChannel(
-    nsAtom* aAddonId, dom::ContentParent* aContentParent) const {
+    const WebExtensionPolicy& aAddon,
+    dom::ContentParent* aContentParent) const {
   nsCOMPtr<nsIRemoteTab> remoteTab;
-  if (mAddonEntries.Get(aAddonId, getter_AddRefs(remoteTab))) {
+  if (mAddonEntries.Get(aAddon.Id(), getter_AddRefs(remoteTab))) {
+    if (!aAddon.CanAccessURI(FinalURLInfo(), false, true, true)) {
+      return nullptr;
+    }
+
     ContentParent* contentParent = nullptr;
     if (remoteTab) {
       contentParent =
diff --git a/toolkit/components/extensions/webrequest/ChannelWrapper.h b/toolkit/components/extensions/webrequest/ChannelWrapper.h
@@ -150,7 +150,8 @@ class ChannelWrapper final : public DOMEventTargetHelper,
                                 nsIRemoteTab* aBrowserParent);
 
   already_AddRefed<nsITraceableChannel> GetTraceableChannel(
-      nsAtom* aAddonId, dom::ContentParent* aContentParent) const;
+      const WebExtensionPolicy& aAddon,
+      dom::ContentParent* aContentParent) const;
 
   void GetMethod(nsCString& aRetVal) const;
 
diff --git a/toolkit/components/extensions/webrequest/StreamFilterParent.cpp b/toolkit/components/extensions/webrequest/StreamFilterParent.cpp
@@ -120,9 +120,15 @@ auto StreamFilterParent::Create(dom::ContentParent* aContentParent,
 
   auto& webreq = WebRequestService::GetSingleton();
 
-  RefPtr<nsAtom> addonId = NS_Atomize(aAddonId);
+  RefPtr<extensions::WebExtensionPolicy> addonPolicy =
+      ExtensionPolicyService::GetSingleton().GetByID(aAddonId);
+
+  if (!addonPolicy) {
+    return ChildEndpointPromise::CreateAndReject(false, __func__);
+  }
+
   nsCOMPtr<nsITraceableChannel> channel =
-      webreq.GetTraceableChannel(aChannelId, addonId, aContentParent);
+      webreq.GetTraceableChannel(aChannelId, *addonPolicy, aContentParent);
 
   RefPtr<mozilla::net::nsHttpChannel> chan = do_QueryObject(channel);
   if (!chan) {
@@ -131,15 +137,10 @@ auto StreamFilterParent::Create(dom::ContentParent* aContentParent,
 
   nsCOMPtr<nsIChannel> genChan(do_QueryInterface(channel));
   if (!StaticPrefs::extensions_filterResponseServiceWorkerScript_disabled() &&
-      ChannelWrapper::IsServiceWorkerScript(genChan)) {
-    RefPtr<extensions::WebExtensionPolicy> addonPolicy =
-        ExtensionPolicyService::GetSingleton().GetByID(aAddonId);
-
-    if (!addonPolicy ||
-        !addonPolicy->HasPermission(
-            nsGkAtoms::webRequestFilterResponse_serviceWorkerScript)) {
-      return ChildEndpointPromise::CreateAndReject(false, __func__);
-    }
+      ChannelWrapper::IsServiceWorkerScript(genChan) &&
+      !addonPolicy->HasPermission(
+          nsGkAtoms::webRequestFilterResponse_serviceWorkerScript)) {
+    return ChildEndpointPromise::CreateAndReject(false, __func__);
   }
 
   // Disable alt-data for extension stream listeners.
diff --git a/toolkit/components/extensions/webrequest/WebRequestService.cpp b/toolkit/components/extensions/webrequest/WebRequestService.cpp
@@ -36,10 +36,11 @@ UniquePtr<WebRequestChannelEntry> WebRequestService::RegisterChannel(
 }
 
 already_AddRefed<nsITraceableChannel> WebRequestService::GetTraceableChannel(
-    uint64_t aChannelId, nsAtom* aAddonId, ContentParent* aContentParent) {
+    uint64_t aChannelId, const WebExtensionPolicy& aAddon,
+    ContentParent* aContentParent) {
   if (auto entry = mChannelEntries.Get(aChannelId)) {
     if (entry->mChannel) {
-      return entry->mChannel->GetTraceableChannel(aAddonId, aContentParent);
+      return entry->mChannel->GetTraceableChannel(aAddon, aContentParent);
     }
   }
   return nullptr;
diff --git a/toolkit/components/extensions/webrequest/WebRequestService.h b/toolkit/components/extensions/webrequest/WebRequestService.h
@@ -16,7 +16,6 @@
 #include "nsHashKeys.h"
 #include "nsTHashMap.h"
 
-class nsAtom;
 class nsIRemoteTab;
 class nsITraceableChannel;
 
@@ -62,7 +61,7 @@ class WebRequestService final {
   void UnregisterTraceableChannel(uint64_t aChannelId);
 
   already_AddRefed<nsITraceableChannel> GetTraceableChannel(
-      uint64_t aChannelId, nsAtom* aAddonId,
+      uint64_t aChannelId, const WebExtensionPolicy& aAddon,
       dom::ContentParent* aContentParent);
 
  private:

Original file line number	Diff line number	Diff line change
`@@ -36,10 +36,11 @@ UniquePtr<WebRequestChannelEntry> WebRequestService::RegisterChannel(`
`36`	`36`	`}`
`37`	`37`
`38`	`38`	`already_AddRefed<nsITraceableChannel> WebRequestService::GetTraceableChannel(`
`39`		`- uint64_t aChannelId, nsAtom* aAddonId, ContentParent* aContentParent) {`
	`39`	`+ uint64_t aChannelId, const WebExtensionPolicy& aAddon,`
	`40`	`+ ContentParent* aContentParent) {`
`40`	`41`	`if (auto entry = mChannelEntries.Get(aChannelId)) {`
`41`	`42`	`if (entry->mChannel) {`
`42`		`- return entry->mChannel->GetTraceableChannel(aAddonId, aContentParent);`
	`43`	`+ return entry->mChannel->GetTraceableChannel(aAddon, aContentParent);`
`43`	`44`	`}`
`44`	`45`	`}`
`45`	`46`	`return nullptr;`