<html><head><meta http-equiv="Content-Type" content="text/html charset=us-ascii"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class=""><div class="">I would start looking at HTMLLinkElement::parseAttribute.</div>LinkHeader.cpp contains parsers for link headers, which are related. Yoav knows more about those. Those parsers ought to be united more.<div class=""><br class=""><div><blockquote type="cite" class=""><div class="">On Feb 3, 2017, at 1:17 AM, Atul Sowani <<a href="mailto:sowani@gmail.com" class="">sowani@gmail.com</a>> wrote:</div><br class="Apple-interchange-newline"><div class=""><div dir="ltr" class=""><div class="">At present I am focusing on CSSParser::findURI() particularly and CSSParser::realLex() other related functionality in CSSParser.cpp - hope I am on right track. ;-)</div><div class=""><br class=""></div><div class="">Please let me know if I should be looking at some other functionality as well to resolve this issue.</div><div class=""><br class=""></div><div class="">Thanks!</div><div class="">Atul.</div></div><div class="gmail_extra"><br class=""><div class="gmail_quote">On Fri, Feb 3, 2017 at 2:33 PM, Atul Sowani <span dir="ltr" class=""><<a href="mailto:sowani@gmail.com" target="_blank" class="">sowani@gmail.com</a>></span> wrote:<br class=""><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr" class=""><div class="">Hi,</div><div class=""><br class=""></div><div class="">I came across an issue in qtwebkit CSS parser while working on a PhantomJS crash. The issue seems to be with parsing of <link rel="..." href="..."> type elements in an HTML page. What I observed is that the parser is trying to interpret the value for href given inside double-quotes. The value contains a "-" (e.g. "<a href="http://some.domain.com/some-page-etc-etc" target="_blank" class="">http://some.domain.com/some-<wbr class="">page-etc-etc</a>"). The "-" sign is being interpreted as minus and then things go wrong. In another case I found that "\g" embedded in the value (e.g. "<a href="http://some.domain.com/some-page/global/something" target="_blank" class="">http://some.domain.com/some-<wbr class="">page/global/something</a>") is also creating issues. In essence, the parser is trying to interpret the value, which I believe, it should not.</div><div class=""><br class=""></div><div class="">I am willing to dive further into it to debug and fix the issue, but looking at the complexity and size of WebCore, I think I would benefit a lot to expedite a fix, if I could get some tips about which code area/functionality I should specifically focus in the WebCore. Looking forward to some help in this regard.</div><div class=""><br class=""></div><div class="">Thanks,</div><div class="">Atul.</div><div class=""><br class=""></div></div>
</blockquote></div><br class=""></div>
_______________________________________________<br class="">webkit-dev mailing list<br class=""><a href="mailto:webkit-dev@lists.webkit.org" class="">webkit-dev@lists.webkit.org</a><br class="">https://lists.webkit.org/mailman/listinfo/webkit-dev<br class=""></div></blockquote></div><br class=""></div></body></html>