Skip to content

Commit 36e1c21

Browse files
annevkannevk
committed
add ImageData protections
1 parent c192845 commit 36e1c21

File tree

1 file changed

+25
-3
lines changed

1 file changed

+25
-3
lines changed

source

+25-3
Original file line numberDiff line numberDiff line change
@@ -8283,9 +8283,9 @@ interface <dfn>DOMStringList</dfn> {
82838283
<p>If <var>agentCluster</var>'s <span>allow sidechannel attacks</span> is set to false, then
82848284
throw a <span>"<code>DataCloneError</code>"</span> <code>DOMException</code>.</p>
82858285

8286-
<p class="note">This check is only needed once as <span>allow sidechannel attacks</span>
8287-
cannot change over time and a <code>SharedArrayBuffer</code> cannot leave an <span>agent
8288-
cluster</span>.</p>
8286+
<p class="note">This check is only needed when serializing (and not when deserializing) as
8287+
<span>allow sidechannel attacks</span> cannot change over time and a
8288+
<code>SharedArrayBuffer</code> cannot leave an <span>agent cluster</span>.</p>
82898289
</li>
82908290

82918291
<li><p>If <var>forStorage</var> is true, then throw a
@@ -95267,6 +95267,17 @@ dictionary <dfn>ImageBitmapOptions</dfn> {
9526795267
are:</p>
9526895268

9526995269
<ol>
95270+
<li>
95271+
<p>If <var>serialized</var>.[[OriginClean]] is false and <span>surrounding agent</span>'s
95272+
<span>agent cluster</span>'s <span>allow sidechannel attacks</span> is true, then throw a
95273+
<span>"<code>DataCloneError</code>"</span> <code>DOMException</code>.</p>
95274+
95275+
<p class="warning">To protect against sidechannel attacks implementations should avoid
95276+
transmitting <var>serialized</var>.[[BitmapData]], when <var>serialized</var>.[[OriginClean]] is
95277+
false, to <span data-x="agent cluster">agent clusters</span> whose <span>allow sidechannel
95278+
attacks</span> is true.</p>
95279+
</li>
95280+
9527095281
<li><p>Set <var>value</var>'s <span data-x="concept-ImageBitmap-bitmap-data">bitmap data</span>
9527195282
to <var>serialized</var>.[[BitmapData]].</p></li>
9527295283

@@ -95292,6 +95303,17 @@ dictionary <dfn>ImageBitmapOptions</dfn> {
9529295303
are:</p>
9529395304

9529495305
<ol>
95306+
<li>
95307+
<p>If <var>dataHolder</var>.[[OriginClean]] is false and <span>surrounding agent</span>'s
95308+
<span>agent cluster</span>'s <span>allow sidechannel attacks</span> is true, then throw a
95309+
<span>"<code>DataCloneError</code>"</span> <code>DOMException</code>.</p>
95310+
95311+
<p class="warning">To protect against sidechannel attacks implementations should avoid sharing
95312+
<var>dataHolder</var>.[[BitmapData]], when <var>dataHolder</var>.[[OriginClean]] is false, with
95313+
<span data-x="agent cluster">agent clusters</span> whose <span>allow sidechannel attacks</span>
95314+
is true.</p>
95315+
</li>
95316+
9529595317
<li><p>Set <var>value</var>'s <span data-x="concept-ImageBitmap-bitmap-data">bitmap data</span>
9529695318
to <var>dataHolder</var>.[[BitmapData]].</p></li>
9529795319

0 commit comments

Comments
 (0)