[Webkit-unassigned] [Bug 236624] Document.write into iframe with CSP sometimes blocks resources loads in inner iframe
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Feb 23 13:58:50 PST 2022
https://bugs.webkit.org/show_bug.cgi?id=236624
--- Comment #2 from Matt Bierner <matb at microsoft.com> ---
Over on Chrome, we determined this is likely by-design (although quite confusing): https://bugs.chromium.org/p/chromium/issues/detail?id=1297377
The issue with the polling here is that the iframe document may still be on `about:blank` when the ready state is first checked. This results in the new content written into the document inheriting the parent page's CSP instead of providing its own
To fix this, I added a check to our code to make sure we are checking the ready state of the expected page instead of `about:blank`
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20220223/b0551d4c/attachment.htm>
More information about the webkit-unassigned
mailing list