Return null origin of "blob:" URL containing inner non-"http(s):" URL
Categories
(Core :: DOM: Networking, enhancement, P2)
Tracking
()
People
(Reporter: valentin, Assigned: canadahonk)
References
(Blocks 1 open bug)
Details
(Whiteboard: [necko-triaged])
Attachments
(1 file)
(deleted),
text/x-phabricator-request
|
Details |
See https://github.com/whatwg/url/pull/771 for spec change.
Bug 1834391 and https://github.com/web-platform-tests/wpt/pull/40133 for WPT tests.
Assignee | ||
Updated•1 year ago
|
Assignee | ||
Comment 1•1 year ago
|
||
Return null origin of a blob URL containing an inner URL which is not of
http/https schemes to comply with new spec change.
Examples:
- "blob:blob:https://example.org/" - inner blob URL
- "blob:ws://example.org/" - inner non-http(s) URL
Spec PR: https://github.com/whatwg/url/pull/771
WPT tests: https://github.com/web-platform-tests/wpt/pull/40133
New WPT tests are not merged into central yet, so tested manually
instead and results are as expected with WPTs.
Updated•1 year ago
|
Pushed by oj@oojmed.com: https://hg.mozilla.org/integration/autoland/rev/34c5add98599 Return null origin of "blob:" URL containing inner non-"http(s):" URL r=smaug,valentin
Comment 3•1 year ago
|
||
Backed out for causing xpcshell failure on test_BrowserUtils_urlFormatting.js
Updated•1 year ago
|
Updated•1 year ago
|
Pushed by oj@oojmed.com: https://hg.mozilla.org/integration/autoland/rev/7cd945c5be6e Return null origin of "blob:" URL containing disallowed inner schemes r=smaug,valentin
Comment 6•1 year ago
|
||
Backed out for causing mochitest plain failures on test_unknown_url_origin.html.
Failure log: https://treeherder.mozilla.org/logviewer?job_id=417680248&repo=autoland
Backout link: https://hg.mozilla.org/integration/autoland/rev/237a6239812a40762b61a38e02430b4d62fcfbe7
Assignee | ||
Comment 7•1 year ago
|
||
Sorry, didn't catch those tests; updated expectations in patch and retested.
Pushed by oj@oojmed.com: https://hg.mozilla.org/integration/autoland/rev/af0665af9541 Return null origin of "blob:" URL containing disallowed inner schemes r=smaug,valentin
Comment 9•1 year ago
|
||
Backed out for causing failures at test_unknown_url_origin.html.
Backout link: https://hg.mozilla.org/integration/autoland/rev/2e3060c42d23ca4053d63aeb3d4ada23de3d4b4e
Failure log: https://treeherder.mozilla.org/logviewer?job_id=418886565&repo=autoland&lineNumber=10897
Assignee | ||
Comment 10•1 year ago
|
||
Test expectations changes were slightly wrong, will fix later.
Comment 11•1 year ago
|
||
Pushed by valentin.gosu@gmail.com: https://hg.mozilla.org/integration/autoland/rev/2d7083c6241d Return null origin of "blob:" URL containing disallowed inner schemes r=smaug,valentin
Comment 12•1 year ago
|
||
Backout by nbeleuzu@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/bdc116caf375 Backed out changeset 2d7083c6241d for bc failure on browser_wpi_isolate_high_value.js
Comment 13•1 year ago
|
||
There is an r+ patch which didn't land and no activity in this bug for 2 weeks.
:canadahonk, could you have a look please?
If you still have some work to do, you can add an action "Plan Changes" in Phabricator.
For more information, please visit BugBot documentation.
Assignee | ||
Comment 14•1 year ago
|
||
Marked as changes planned.
Comment 15•11 months ago
|
||
Note the small proposed change in https://github.com/whatwg/url/pull/780 to safelist the "file" scheme as well.
Description
•