[M149] WebMCP: 3/3 Cross-origin iframe tool execution and safety hardening [chromium/src : refs/branch-heads/7827]
39 views
Skip to first unread message
Dominic Farolino (Gerrit)
May 9, 2026, 12:19:19 AM (10 days ago) May 9
to chrome-che...@chops-service-accounts.iam.gserviceaccount.com, Chromium Metrics Reviews, Khushal Sagar, Kentaro Hara, Raphael Kubo da Costa, android-bu...@system.gserviceaccount.com, alexmo...@chromium.org, ashleynewson+w...@chromium.org, blink-re...@chromium.org, kinuko...@chromium.org, blink-...@chromium.org, creis...@chromium.org, asvitkine...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, navigation...@chromium.org, jmedle...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, aleventh...@chromium.org, android-web...@chromium.org
New activity on the change![]( "Open in Gerrit")
Related details
Attention set is empty
Submit Requirements:
Code-Owners
Code-Review
Lint
Review-Enforcement
| Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. |
Dominic Farolino (Gerrit)
May 10, 2026, 3:24:15 PM (9 days ago) May 10
to chrome-che...@chops-service-accounts.iam.gserviceaccount.com, Alex Moshchuk, Chromium Metrics Reviews, Khushal Sagar, Kentaro Hara, Raphael Kubo da Costa, android-bu...@system.gserviceaccount.com, alexmo...@chromium.org, ashleynewson+w...@chromium.org, blink-re...@chromium.org, kinuko...@chromium.org, blink-...@chromium.org, creis...@chromium.org, asvitkine...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, navigation...@chromium.org, jmedle...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, aleventh...@chromium.org, android-web...@chromium.org
Attention needed from Alex Moshchuk
Dominic Farolino voted Commit-Queue+1![]( "Open in Gerrit")
Submit Requirements:
Code-Owners
Code-Review
Lint
Review-Enforcement
| Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. |
Mark Pearson (Gerrit)
May 10, 2026, 6:36:22 PM (8 days ago) May 10
to Dominic Farolino, chrome-che...@chops-service-accounts.iam.gserviceaccount.com, Mark Foltz, Chromium LUCI CQ, Alex Moshchuk, Chromium Metrics Reviews, Khushal Sagar, Kentaro Hara, Raphael Kubo da Costa, android-bu...@system.gserviceaccount.com, alexmo...@chromium.org, ashleynewson+w...@chromium.org, blink-re...@chromium.org, kinuko...@chromium.org, blink-...@chromium.org, creis...@chromium.org, asvitkine...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, navigation...@chromium.org, jmedle...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, aleventh...@chromium.org, android-web...@chromium.org
Attention needed from Alex Moshchuk, Dominic Farolino and Mark Foltz
Mark Pearson voted and added 1 comment![]( "Open in Gerrit")
Votes added by Mark Pearson
| Code-Review | +1 |
1 comment
Patchset-level comments
Related details
Attention is currently required from:
- Alex Moshchuk
- Dominic Farolino
- Mark Foltz
Submit Requirements:
Code-Owners
Code-Review
Lint
Review-Enforcement
| Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. |
Alex Moshchuk (Gerrit)
May 11, 2026, 12:58:15 AM (8 days ago) May 11
to Dominic Farolino, chrome-che...@chops-service-accounts.iam.gserviceaccount.com, Mark Pearson, Mark Foltz, Chromium LUCI CQ, Chromium Metrics Reviews, Khushal Sagar, Kentaro Hara, Raphael Kubo da Costa, android-bu...@system.gserviceaccount.com, alexmo...@chromium.org, ashleynewson+w...@chromium.org, blink-re...@chromium.org, kinuko...@chromium.org, blink-...@chromium.org, creis...@chromium.org, asvitkine...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, navigation...@chromium.org, jmedle...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, aleventh...@chromium.org, android-web...@chromium.org
Attention needed from Dominic Farolino and Mark Foltz
Alex Moshchuk voted and added 1 comment![]( "Open in Gerrit")
Votes added by Alex Moshchuk
| Code-Review | +1 |
1 comment
Patchset-level comments
Attention is currently required from:
- Dominic Farolino
- Mark Foltz
Mark Foltz (Gerrit)
May 11, 2026, 1:09:02 PM (8 days ago) May 11
to Dominic Farolino, chrome-che...@chops-service-accounts.iam.gserviceaccount.com, Mark Foltz, Alex Moshchuk, Mark Pearson, Chromium LUCI CQ, Chromium Metrics Reviews, Khushal Sagar, Kentaro Hara, Raphael Kubo da Costa, android-bu...@system.gserviceaccount.com, alexmo...@chromium.org, ashleynewson+w...@chromium.org, blink-re...@chromium.org, kinuko...@chromium.org, blink-...@chromium.org, creis...@chromium.org, asvitkine...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, navigation...@chromium.org, jmedle...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, aleventh...@chromium.org, android-web...@chromium.org
Attention needed from Dominic Farolino
Mark Foltz voted Code-Review+1![]( "Open in Gerrit")
| Code-Review | +1 |
Related details
Attention is currently required from:
- Dominic Farolino
Submit Requirements:
Code-Owners
Code-Review
Lint
Review-Enforcement
| Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. |
Daniel Cheng (Gerrit)
May 11, 2026, 4:31:48 PM (8 days ago) May 11
to Dominic Farolino, chrome-che...@chops-service-accounts.iam.gserviceaccount.com, Daniel Cheng, Mark Foltz, Alex Moshchuk, Mark Pearson, Chromium LUCI CQ, Chromium Metrics Reviews, Khushal Sagar, Kentaro Hara, Raphael Kubo da Costa, android-bu...@system.gserviceaccount.com, alexmo...@chromium.org, ashleynewson+w...@chromium.org, blink-re...@chromium.org, kinuko...@chromium.org, blink-...@chromium.org, creis...@chromium.org, asvitkine...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, navigation...@chromium.org, jmedle...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, aleventh...@chromium.org, android-web...@chromium.org
Attention needed from Dominic Farolino
Daniel Cheng voted Code-Review+1![]( "Open in Gerrit")
| Code-Review | +1 |
Related details
Attention is currently required from:
- Dominic Farolino
Submit Requirements:
Code-Owners
Code-Review
Lint
Review-Enforcement
| Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. |
Dominic Farolino (Gerrit)
May 11, 2026, 7:17:43 PM (7 days ago) May 11
to chrome-che...@chops-service-accounts.iam.gserviceaccount.com, Daniel Cheng, Mark Foltz, Alex Moshchuk, Mark Pearson, Chromium LUCI CQ, Chromium Metrics Reviews, Khushal Sagar, Kentaro Hara, Raphael Kubo da Costa, android-bu...@system.gserviceaccount.com, alexmo...@chromium.org, ashleynewson+w...@chromium.org, blink-re...@chromium.org, kinuko...@chromium.org, blink-...@chromium.org, creis...@chromium.org, asvitkine...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, navigation...@chromium.org, jmedle...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, aleventh...@chromium.org, android-web...@chromium.org
Dominic Farolino voted Commit-Queue+2![]( "Open in Gerrit")
Chromium LUCI CQ (Gerrit)
May 11, 2026, 7:22:17 PM (7 days ago) May 11
to Dominic Farolino, chrome-che...@chops-service-accounts.iam.gserviceaccount.com, Daniel Cheng, Mark Foltz, Alex Moshchuk, Mark Pearson, Chromium Metrics Reviews, Khushal Sagar, Kentaro Hara, Raphael Kubo da Costa, android-bu...@system.gserviceaccount.com, alexmo...@chromium.org, ashleynewson+w...@chromium.org, blink-re...@chromium.org, kinuko...@chromium.org, blink-...@chromium.org, creis...@chromium.org, asvitkine...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, navigation...@chromium.org, jmedle...@chromium.org, blink-revie...@chromium.org, mfoltz+wa...@chromium.org, aleventh...@chromium.org, android-web...@chromium.org
Chromium LUCI CQ submitted the change![]( "Open in Gerrit")
Change information
Commit message:
[M149] WebMCP: 3/3 Cross-origin iframe tool execution and safety hardening
Original change's description:
> WebMCP: 3/3 Cross-origin iframe tool execution and safety hardening
>
> This CL implements cross-origin iframe tool execution via the
> `executeTool()` method on the `ModelContext` interface.
>
> Major changes introduced in this CL:
> - Introduces the `executeTool()` method on `ModelContext`. To use it,
> first you must obtain a `RegisteredTool` dictionary from
> `navigator.modelContext.getTools()`. Then, you can pass a tool
> directly as the first argument of `executeTool()`:
> ```
> const [tool] = await navigator.modelContext.getTools();
> navigator.modelContext.executeTool(tool, args);
> ```
> The contents of `RegisteredTool` are mostly to provide identifiable
> information about the tool to invokers; but from the browser's
> perspective, the tool's `name` and `window` (which the browser
> gets a FrameToken from) are used to uniquely identify the tool.
> - Modifies the `RegisteredTool` dictionary definition to expose a tool
> host's `Window` and `origin`. The Window/name combination uniquely
> identify the tool in the frame tree.
> - Introduces a `RegisteredToolDeprecated` reduced dictionary for the
> ModelContextTesting API to use, so that legacy interface's surface
> area remains unchanged after this CL. This keeps ModelContextTesting
> operating narrowly on its own Document, and unconcerned with
> cross-document tools.
> - Performs tool execution with two new IPCs:
> - `ExecuteScriptTool()` on ModelContextHost, for the renderer to
> request that the browser invokes a tool in another document. It
> locates the tool by the frame token that the caller knows the tool
> host by and requests the hosting document to invoke the tool.
> - `ExecuteScriptTool()` on ModelContext, for the browser to tell a
> renderer that owns a tool to invoke it.
> - Both IPCs have callbacks: the latter's callback lets the tool host
> gives the tool response to the browser, and the former's callback
> lets the browser forward it back to the caller.
> - Tracks pending tool executions with `ModelContextPageUserData`
> - When a tool is executed, the invoker's callback is stored in this
> Page-scoped data structure. Then, when a document hosting a
> still-running tool gets destroyed, this data structure is
> consulted to reject the Promise in the invoker's document.
>
> For a sense of remaining work that needs to be done for the iframe use
> case, see:
> - https://crbug.com/509555636
> - https://crbug.com/509568047
> - https://crbug.com/508306795
> - https://crbug.com/508285989
> - http://b/481899636
>
> R=mfoltz
>
> Low-Coverage-Reason: COVERAGE_UNDERREPORTED
> Bug: 506393880,489045948
> Change-Id: Id9de2a9f985da2cf34dac9f626180cfb25a253d0
> Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/7808168
> Reviewed-by: Mark Pearson <mpea...@chromium.org>
> Commit-Queue: Dominic Farolino <d...@chromium.org>
> Reviewed-by: Mark Foltz <mfo...@chromium.org>
> Reviewed-by: Alex Moshchuk <ale...@chromium.org>
> Cr-Commit-Position: refs/heads/main@{#1627321}
(cherry picked from commit 0a03c5c295b6a3d11ea67f0ce2b1f643861af585)
Bug: 511154711,506393880,489045948
Change-Id: Id9de2a9f985da2cf34dac9f626180cfb25a253d0
Reviewed-by: Dominic Farolino <d...@chromium.org>
Reviewed-by: Mark Pearson <mpea...@chromium.org>
Reviewed-by: Alex Moshchuk <ale...@chromium.org>
Reviewed-by: Daniel Cheng <dch...@chromium.org>
Reviewed-by: Mark Foltz <mfo...@chromium.org>
Commit-Queue: Dominic Farolino <d...@chromium.org>
Cr-Commit-Position: refs/branch-heads/7827@{#476}
Cr-Branched-From: 9f3e9aaccba63bd2ec30334e45e0bfd07ebcc8f1-refs/heads/main@{#1625079}
Files:
- M android_webview/test/data/web_tests/webexposed/global-interface-listing-expected.txt
- M content/browser/bad_message.h
- M content/browser/renderer_host/model_context_user_data.cc
- M content/browser/renderer_host/model_context_user_data.h
- M content/browser/security_exploit_browsertest.cc
- M third_party/blink/public/mojom/content_extraction/script_tools.mojom
- M third_party/blink/renderer/bindings/generated_in_core.gni
- M third_party/blink/renderer/core/script_tools/model_context.cc
- M third_party/blink/renderer/core/script_tools/model_context.h
- M third_party/blink/renderer/core/script_tools/model_context.idl
- M third_party/blink/renderer/core/script_tools/model_context_testing.cc
- M third_party/blink/renderer/core/script_tools/model_context_testing.h
- M third_party/blink/renderer/core/script_tools/model_context_testing.idl
- M third_party/blink/renderer/core/script_tools/script_tool_types.h
- A third_party/blink/web_tests/external/wpt/webmcp/imperative/detached-frame-executeTool.https.html
- A third_party/blink/web_tests/external/wpt/webmcp/imperative/executeTool-abort.https.html
- A third_party/blink/web_tests/external/wpt/webmcp/imperative/executeTool-across-trees.https.html
- A third_party/blink/web_tests/external/wpt/webmcp/imperative/executeTool-caller-navigate-abort.https-expected.txt
- A third_party/blink/web_tests/external/wpt/webmcp/imperative/executeTool-caller-navigate-abort.https.html
- A third_party/blink/web_tests/external/wpt/webmcp/imperative/executeTool-invalid-dictionary.https.html
- A third_party/blink/web_tests/external/wpt/webmcp/imperative/executeTool-target-detachment.https.html
- A third_party/blink/web_tests/external/wpt/webmcp/imperative/executeTool-target-navigation.https.html
- A third_party/blink/web_tests/external/wpt/webmcp/imperative/executeTool-unauthorized-origin.https.html
- M third_party/blink/web_tests/external/wpt/webmcp/imperative/exposedTo-cross-origin-child.https.html
- M third_party/blink/web_tests/external/wpt/webmcp/imperative/exposedTo-defaults-same-origin.https.html
- M third_party/blink/web_tests/external/wpt/webmcp/imperative/exposedTo-multiple-children.https.html
- A third_party/blink/web_tests/external/wpt/webmcp/imperative/opaque-origin-tools.https.html
- A third_party/blink/web_tests/external/wpt/webmcp/imperative/opaque-origin-tools.https.html.headers
- M third_party/blink/web_tests/external/wpt/webmcp/imperative/permissions-policy.https.html
- M third_party/blink/web_tests/external/wpt/webmcp/imperative/resources/helpers.js
- A third_party/blink/web_tests/external/wpt/webmcp/imperative/resources/iframe-caller.html
- M third_party/blink/web_tests/external/wpt/webmcp/imperative/resources/iframe-register-tool.html
- A third_party/blink/web_tests/external/wpt/webmcp/imperative/unregister-during-executeTool.https.html
- M third_party/blink/web_tests/webexposed/global-interface-listing-expected.txt
- M tools/metrics/histograms/metadata/stability/enums.xml
Change size: XL
Delta: 35 files changed, 1479 insertions(+), 64 deletions(-)
Branch: refs/branch-heads/7827
Submit Requirements:
Code-Review: +1 by Alex Moshchuk, +1 by Daniel Cheng, +1 by Mark Pearson, +1 by Dominic Farolino, +1 by Mark Foltz
| Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. |
Reply all
Reply to author
Forward
0 new messages