[Webkit-unassigned] [Bug 151548] Errors in CORS scripts are oversanitized
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Dec 1 08:12:55 PST 2016
https://bugs.webkit.org/show_bug.cgi?id=151548
--- Comment #2 from youenn fablet <youennf at gmail.com> ---
The issue does not seem to be related with CORS checks per se but more on how we keep/retriev that information around.
The main script element is inline so there is no CachedScript and
The cachedScript passed to ScriptExecutionContext::sanitizeScriptError is the top-level script which is inline, so it is null.
We rely solely on the source URL, which is the one of the cross-origin subresource, hence the issue.
I am not sure of the best way to retrieve the related CachedScript here.
Or even if that should be done that way.
Any insight?
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20161201/c22ed6a2/attachment.html>
More information about the webkit-unassigned
mailing list