Closed
Bug 1294587
Opened 8 years ago
Closed 8 years ago
The CSP feature is broken
Categories
(Bugzilla :: Bugzilla-General, defect)
Tracking
()
RESOLVED
FIXED
Bugzilla 6.0
People
(Reporter: LpSolit, Assigned: dylan)
References
Details
Attachments
(1 file)
|
678 bytes,
patch
|
dkl
:
review+
|
Details | Diff | Splinter Review |
Writing:
Bugzilla->cgi->content_security_policy(font_src => ["none"])
throws:
Odd number of elements in hash assignment at Bugzilla/CGI.pm line 118.
Found unknown attribute(s) passed to the constructor: Bugzilla::CGI=HASH(0x7c81d8)
Bugzilla::CGI::ContentSecurityPolicy::new("Bugzilla::CGI::ContentSecurityPolicy", "style_src", ARRAY(0x2a34528), "Bugzilla::CGI=HASH(0x7c81d8)", "font_src", "default_src", ARRAY(0x2a34660), "script_src", ARRAY(0x2a344b0), ...) called at Bugzilla/CGI.pm line 128
Bugzilla::CGI::content_security_policy(Bugzilla::CGI=HASH(0x7c81d8), "font_src", ARRAY(0x7c86b8))
This is because the code in Bugzilla::CGI::content_security_policy() is wrong:
sub content_security_policy {
my ($self) = @_;
It must be: my $self = shift; else $self is passed to %add_params. dkl already reported this problem in his review, see bug 1286287 comment 4. But his review comments have been ignored.
|
Assignee | |
Comment 1•8 years ago
|
||
gah, I didn't commit the version that actually let you change the policy.
Assignee: general → dylan
Attachment #8780343 -
Flags: review?(dkl)
|
||
Comment 2•8 years ago
|
||
Comment on attachment 8780343 [details] [diff] [review]
1294587_1.patch
Review of attachment 8780343 [details] [diff] [review]:
-----------------------------------------------------------------
r=dkl
Attachment #8780343 -
Flags: review?(dkl) → review+
|
|
Assignee | |
Comment 3•8 years ago
|
||
To github.com:bugzilla/bugzilla.git
1947079..b9c4001 master -> master
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•