Isolate mediasource: URI to first party domain

In #15502 (moved), we isolated blob: URIs to the first party domain. We should ensure that the new mediasource: uris are similarly isolated.

When we do this, we should also ensure that these URIs are still properly isolated in odd contexts like WebWorkers, SharedWorkers, and ServiceWorkers, and add unit tests for this.

added component::applications/tor browser ff38-esr owner::arthuredelstein priority::high resolution::duplicate status::closed tbb-linkability type::defect labels

Trac:
Cc: N/A to gk

In #15502 (moved), to save time, we disabled URL.createObjectURL(...) in Web Workers. For FF38, we should try to rewrite this patch to properly isolate blob URLs to first party domain in Web Workers rather than disabling them.

Trac:
Cc: gk to gk, arthuredelstein

Trac:
Cc: gk, arthuredelstein to gk, arthuredelstein, mcs

Replying to arthuredelstein:

In #15502 (moved), to save time, we disabled URL.createObjectURL(...) in Web Workers. For FF38, we should try to rewrite this patch to properly isolate blob URLs to first party domain in Web Workers rather than disabling them.

I've created #16429 (moved) to remind us about this issue still being unresolved.

Given that this will be heavily used on Youtube and available at least on Windows and OS X we might want to get this properly fixed for ESR 38.

If we don't have the capacity we should disable it on Windows and OS X as well.

Trac:
Keywords: N/A deleted, tbb-5.0a-highrisk added
Type: defect to enhancement
Priority: normal to major

Trac:
Type: enhancement to defect

Replying to gk:

Given that this will be heavily used on Youtube and available at least on Windows and OS X we might want to get this properly fixed for ESR 38.

If we don't have the capacity we should disable it on Windows and OS X as well.

I've done some work on this in the form of writing unit tests, but depending on other patches, it may not be possible to finish by Thursday. From my inspection of the code, it appears like the non-worker mediasource isolation already works because of our blob URI isolation patch. I still need to complete the unit tests to confirm my impression and also check the isolation in workers.

Based on Arthur's estimation, I think we should leave mediasource support on in 5.0a3, so we can at least exercise the code in a release. We can check the tests later (which I assume are actually covered by #16416 (moved)?).

Trac:
Owner: tbb-team to arthuredelstein
Status: new to assigned

A patch for this ticket is included in the branch posted at ticket:16429#comment:2

Tag some 5.0a4 goals.

Trac:
Keywords: N/A deleted, tbb-5.0a4 added

Closing this as a duplicate of #16429 (moved).

Trac:
Status: assigned to closed
Resolution: N/A to duplicate
Keywords: tbb-5.0a-highrisk, tbb-5.0a4 deleted, N/A added

closed

mentioned in issue #16429 (moved)

moved to tpo/applications/tor-browser#15703 (closed)