[Webkit-unassigned] [Bug 26807] Crashes on 3 layout tests when XSS auditor is enabled
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Jun 30 11:24:04 PDT 2009
https://bugs.webkit.org/show_bug.cgi?id=26807
------- Comment #5 from abarth at webkit.org 2009-06-30 11:24 PDT -------
(From update of attachment 32023)
> + if (!resultDecoded.isEmpty()) {
> + if (!allowControlCharacters)
> + resultDecoded.removeCharacters(&isControlCharacter);
> + result = resultDecoded;
> + }
This should just be an && instead of a nested if.
I think the patch is probably the right approach for the moment. I'm surprised
that JavaScript URLs don't inherit the charset of their creator. We should
file another bug to investigate this. The easiest test is probably to have a
UTF-7 encoded parent create an <iframe> with a javascript URL an some UTF-7
encoded tags and see what happens.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list