You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
[security] Clicking relative links on IPNS: protocol sites can spoof the address field path, or unexpectedly downgrades to HTTP at ipns.localhost pseudo-origin
#18809
This bug contains two very similar bugs, so there are two sets of steps to reproduce and expected/actual results. I deemed it highly likely that these are caused by the same issue and would be best processed together.
Prerequisites
Visit brave://ipfs-internals and enable and install a local IPFS node.
Bug 1. address field path doesn’t update
Steps to Reproduce
Go to ipns://ipfs.io/team
Click on the IPFS project logo on the far left (a relative link to '/').
Actual result:
Address field still shows:
ipns://ipfs.io/team
Expected result:
Address field should show:
ipns://ipfs.io/
Bug 2. changes origin and protocol
Steps to Reproduce
Go to ipns://randomplanetfacts.xyz/
Click on the About link (a relative link to about.html)
Reporting publicly despite qualifying as a security bug (address field spoofing) as IPFS is still such an experimental technology, and it’s not like anyone does their banking on IPFS.
I don’t understand why the two sites behave differently.
The text was updated successfully, but these errors were encountered:
Description
This bug contains two very similar bugs, so there are two sets of steps to reproduce and expected/actual results. I deemed it highly likely that these are caused by the same issue and would be best processed together.
Prerequisites
brave://ipfs-internals
and enable and install a local IPFS node.Bug 1. address field path doesn’t update
Steps to Reproduce
ipns://ipfs.io/team
Actual result:
Address field still shows:
Expected result:
Address field should show:
Bug 2. changes origin and protocol
Steps to Reproduce
ipns://randomplanetfacts.xyz/
about.html
)Actual result:
Address field shows:
The address field shows the “Open using IPFS” button.
Expected result:
Address field should show:
Reproduces how often:
Every time.
Brave version (brave://version info)
Brave | 1.30.89 Chromium: 94.0.4606.81 (Official Build) (64-bit)
Revision | 5a03c5f1033171d5ee1671d219a59e29cf75e054-refs/branch-heads/4606@{#1320}
OS | Windows 11 Version 21H2 (Build 22000.258)
Version/Channel Information:
Other Additional Information:
Related to #13303.
Miscellaneous Information:
Reporting publicly despite qualifying as a security bug (address field spoofing) as IPFS is still such an experimental technology, and it’s not like anyone does their banking on IPFS.
I don’t understand why the two sites behave differently.
The text was updated successfully, but these errors were encountered: