Skip to content

Normalize ipv6 URL for host comparison in WKSecurityOrigin#4602

Merged
bgoncal merged 1 commit intomainfrom
fix-ipv6
May 4, 2026
Merged

Normalize ipv6 URL for host comparison in WKSecurityOrigin#4602
bgoncal merged 1 commit intomainfrom
fix-ipv6

Conversation

@bgoncal
Copy link
Copy Markdown
Member

@bgoncal bgoncal commented May 4, 2026
edited
Loading

Summary

The issue is the new WebView bridge origin check. It compares configured URL hosts with WKSecurityOrigin.host and IPv6 can appear as fd00::abcd in one API and [fd00::abcd] in another, so the bridge rejects valid frontend messages. That blocks external auth and leaves the frontend loading, while widgets still work.

This PR normalizes the url

Screenshots

Link to pull request in Documentation repository

Documentation: home-assistant/companion.home-assistant#

Any other notes

@bgoncal bgoncal self-assigned this May 4, 2026
Copilot AI review requested due to automatic review settings May 4, 2026 08:35
@bgoncal bgoncal linked an issue May 4, 2026 that may be closed by this pull request
Can't access Home Assistant over ipv6 #4597
Closed
Copilot AI reviewed May 4, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR improves origin matching for the native WebView message bridge by normalizing IPv6 hosts so that bracketed ([fd00::1]) vs unbracketed (fd00::1) representations compare consistently when evaluating WKSecurityOrigin.

Changes:

  • Normalize host strings by lowercasing and stripping surrounding [] when present.
  • Add unit test coverage to ensure main-frame messages from a configured IPv6 origin are allowed for both bracketed and unbracketed host formats.

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated no comments.

File Description
Tests/App/WebView/SafeScriptMessageHandlerTests.swift Adds regression test covering bracketed vs unbracketed IPv6 host handling.
Sources/App/Frontend/ExternalMessageBus/SafeScriptMessageHandler.swift Normalizes host strings (including bracket stripping) when computing origin comparison keys.

@codecov
Copy link
Copy Markdown

codecov Bot commented May 4, 2026

Codecov Report

✅ All modified and coverable lines are covered by tests.
⚠️ Please upload report for BASE (main@ce4aa55). Learn more about missing BASE report.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #4602   +/-   ##
=======================================
  Coverage        ?   43.23%           
=======================================
  Files           ?      277           
  Lines           ?    16735           
  Branches        ?        0           
=======================================
  Hits            ?     7236           
  Misses          ?     9499           
  Partials        ?        0

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@bgoncal bgoncal merged commit d77040f into main May 4, 2026
19 checks passed
@bgoncal bgoncal deleted the fix-ipv6 branch May 4, 2026 09:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

@bgoncal bgoncal

Labels

cla-signed

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Can't access Home Assistant over ipv6

2 participants

@bgoncal