Update dangling markup mitigations. by chromium-wpt-export-bot · Pull Request #6033 · web-platform-tests/wpt

chromium-wpt-export-bot · 2017-05-24T11:08:38Z

Update dangling markup mitigations.

Still behind a flag, just updating the checks to look for both \n and
< rather than just the former. This is in line with the patches up at
whatwg/url#284 and
whatwg/fetch#519.

Intent to Remove: https://groups.google.com/a/chromium.org/d/msg/blink-dev/KaA_YNOlTPk/VmmoV88xBgAJ.

Bug: 680970
Change-Id: Ifda61a0afe1f0e97620acef7dc54b005c6f74840
Reviewed-on: https://chromium-review.googlesource.com/514024
Commit-Queue: Mike West mkwst@chromium.org
Reviewed-by: Jochen Eisinger jochen@chromium.org
Cr-Commit-Position: refs/heads/master@{#474292}
WPT-Export-Revision: 8f0c33883ba9ad137a9ed9fe8a758022230f3e06

wpt-pr-bot

Already reviewed downstream.

ghost · 2017-05-24T11:20:45Z

View the complete job log.

Firefox (nightly)

Testing web-platform-tests at revision 112cbdf
Using browser at version BuildID 20170524100215; SourceStamp 291a11111bdd05c5cd55dd552da4b1285ceba9b2
Starting 10 test iterations
All results were stable

All results

1 test ran

/fetch/dangling-markup-mitigation.tentative.html

Subtest	Results	Messages
	OK
`Fetch: /images/green-1x1.png`	PASS
`Fetch: /images/gre\nen-1x1.png`	PASS
`Fetch: /images/gre\ten-1x1.png`	PASS
`Fetch: /images/gre\ren-1x1.png`	PASS
`Fetch: /images/green-1x1.png?img=<`	PASS
`Fetch: /images/green-1x1.png?img=<`	PASS
`Fetch: /images/green-1x1.png?img=%3C`	PASS
`Fetch: /images/gr\neen-1x1.png?img=%3C`	PASS
`Fetch: /images/gr\reen-1x1.png?img=%3C`	PASS
`Fetch: /images/gr\teen-1x1.png?img=%3C`	PASS
`Fetch: /images/green-1x1.png?img= `	PASS
`Fetch: /images/gr\neen-1x1.png?img= `	PASS
`Fetch: /images/gr\reen-1x1.png?img= `	PASS
`Fetch: /images/gr\teen-1x1.png?img= `	PASS
`Fetch: /images/gre\nen-1x1.png?img=<`	FAIL	`assert_unreached: Fetch should fail. Reached unreachable code`
`Fetch: /images/gre\ren-1x1.png?img=<`	FAIL	`assert_unreached: Fetch should fail. Reached unreachable code`
`Fetch: /images/gre\ten-1x1.png?img=<`	FAIL	`assert_unreached: Fetch should fail. Reached unreachable code`
`Fetch: /images/green-1x1.png?<\n=block`	FAIL	`assert_unreached: Fetch should fail. Reached unreachable code`
`Fetch: /images/green-1x1.png?<\r=block`	FAIL	`assert_unreached: Fetch should fail. Reached unreachable code`
`Fetch: /images/green-1x1.png?<\t=block`	FAIL	`assert_unreached: Fetch should fail. Reached unreachable code`
`<img id="dangling" src="/images/green-1x1.png?img=<b">`	PASS
`<img id="dangling" src="/images/green-1x1.png?img= b">`	PASS
`<img id="dangling" src="/images/green-1x1.png?img=&#10;b">`	PASS
`<img id="dangling" src="/images/green-1x1.png?img=&lt;b">`	PASS
`<img id="dangling" src="/images/green-1x1.png?img=&#10;b&lt;c">`	PASS
`\n <img id="dangling" src="\n /images/green-1x1.png?img= \n ">\n`	PASS
`\n <img id="dangling" src="\n /images/green-1x1.png?img=&lt;\n ">\n`	PASS
`\n <img id="dangling" src="\n /images/green-1x1.png?img=&#10;\n ">\n`	PASS
`<img id="dangling" src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mNkYAAAAAYAAjCB0C8AAAAASUVORK5CYII=">`	PASS
`<img id="dangling" src="data:image/png;base64, iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mNkYAAAAAYAAjCB0C8AAAAASUVORK5CYII=">`	PASS
`<img id="dangling" src="data:image/png;base64,i VBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mNkYAAAAAYAAjCB0C8AAAAASUVORK5CYII=">`	PASS
`<img id="dangling" src="data:image/svg+xml;utf8,\n <svg width='1' height='1' xmlns='http://www.w3.org/2000/svg'>\n <rect width='100%' height='100%' fill='rebeccapurple'/>\n <rect x='10%' y='10%' width='80%' height='80%' fill='lightgreen'/>\n </svg>">`	PASS
`<img id="dangling" src="/images/green-1x1.png?img= <b">`	FAIL	`assert_equals: Height expected 0 but got 1`
`<img id="dangling" src="/images/green-1x1.png?img=< b">`	FAIL	`assert_equals: Height expected 0 but got 1`
`\n <img id="dangling" src="/images/green-1x1.png?img=\n <\n b\n ">\n`	FAIL	`assert_equals: Height expected 0 but got 1`

ghost · 2017-05-24T11:20:45Z

View the complete job log.

Sauce (safari)

Testing web-platform-tests at revision 112cbdf
Using browser at version 10.0
Starting 10 test iterations

ghost · 2017-05-24T11:20:46Z

View the complete job log.

Chrome (unstable)

Testing web-platform-tests at revision 112cbdf
Using browser at version 60.0.3107.4 dev
Starting 10 test iterations

ghost · 2017-05-24T11:20:46Z

View the complete job log.

Sauce (MicrosoftEdge)

Testing web-platform-tests at revision 112cbdf

Still behind a flag, just updating the checks to look for both `\n` and `<` rather than just the former. This is in line with the patches up at whatwg/url#284 and whatwg/fetch#519. Intent to Remove: https://groups.google.com/a/chromium.org/d/msg/blink-dev/KaA_YNOlTPk/VmmoV88xBgAJ. Bug: 680970 Change-Id: Ifda61a0afe1f0e97620acef7dc54b005c6f74840 Reviewed-on: https://chromium-review.googlesource.com/514024 Commit-Queue: Mike West <mkwst@chromium.org> Reviewed-by: Jochen Eisinger <jochen@chromium.org> Cr-Commit-Position: refs/heads/master@{#474292} WPT-Export-Revision: 8f0c33883ba9ad137a9ed9fe8a758022230f3e06

chromium-wpt-export-bot added the chromium-export label May 24, 2017

wpt-pr-bot added the fetch label May 24, 2017

wpt-pr-bot approved these changes May 24, 2017

View reviewed changes

chromium-wpt-export-bot force-pushed the chromium-export-cl-Ifda61a0afe1f0e97620acef7dc54b005c6f74840 branch 2 times, most recently from 6afc57f to 45f65fd Compare May 24, 2017 15:14

chromium-wpt-export-bot force-pushed the chromium-export-cl-Ifda61a0afe1f0e97620acef7dc54b005c6f74840 branch from 45f65fd to 647e713 Compare May 24, 2017 15:23

jeffcarp closed this May 24, 2017

Hexcles deleted the chromium-export-cl-Ifda61a0afe1f0e97620acef7dc54b005c6f74840 branch December 12, 2017 19:59

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update dangling markup mitigations.#6033

Update dangling markup mitigations.#6033
chromium-wpt-export-bot wants to merge 1 commit intomasterfrom
chromium-export-cl-Ifda61a0afe1f0e97620acef7dc54b005c6f74840

chromium-wpt-export-bot commented May 24, 2017 •

edited by wpt-pr-bot

Loading

Uh oh!

wpt-pr-bot left a comment

Uh oh!

ghost commented May 24, 2017 •

edited by ghost

Loading

Uh oh!

ghost commented May 24, 2017 •

edited by ghost

Loading

Uh oh!

ghost commented May 24, 2017 •

edited by ghost

Loading

Uh oh!

ghost commented May 24, 2017 •

edited by ghost

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

Conversation

chromium-wpt-export-bot commented May 24, 2017 • edited by wpt-pr-bot Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

wpt-pr-bot left a comment

Choose a reason for hiding this comment

Uh oh!

ghost commented May 24, 2017 • edited by ghost Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Firefox (nightly)

All results

Uh oh!

ghost commented May 24, 2017 • edited by ghost Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Sauce (safari)

Uh oh!

ghost commented May 24, 2017 • edited by ghost Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Chrome (unstable)

Uh oh!

ghost commented May 24, 2017 • edited by ghost Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Sauce (MicrosoftEdge)

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

chromium-wpt-export-bot commented May 24, 2017 •

edited by wpt-pr-bot

Loading

ghost commented May 24, 2017 •

edited by ghost

Loading

ghost commented May 24, 2017 •

edited by ghost

Loading

ghost commented May 24, 2017 •

edited by ghost

Loading

ghost commented May 24, 2017 •

edited by ghost

Loading