[Webkit-unassigned] [Bug 108545] New: Document is never released if an image's src attribute is changed to a url blocked by content-security-policy.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Jan 31 16:01:43 PST 2013
https://bugs.webkit.org/show_bug.cgi?id=108545
Summary: Document is never released if an image's src attribute
is changed to a url blocked by
content-security-policy.
Product: WebKit
Version: 528+ (Nightly build)
Platform: Unspecified
OS/Version: Unspecified
Status: NEW
Severity: Normal
Priority: P2
Component: Images
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: yongjun_zhang at apple.com
If we have an HTML document with an image, and we change the image src to an url that is blocked by content-security-policy, the document itself will never be released. Below is the test case:
<html>
<head>
<meta http-equiv="Content-Security-Policy" content="img-src 'self'">
<script>
function load() {
setTimeout(function() {
var image = document.getElementById('test');
image.src = 'http://www.mysample.com/image.png';
location.reload();
}, 300);
}
</script>
</head>
<body onload='setTimeout(load(), 100)'>
<img id='test' src="./test.png"></img>
</body>
</html>
Loading this into Safari and run 'heap WebProcess | grep HTMLDocument", you will see the number of living document keeps growing.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list