Closed Bug 1496450 Opened 2 years ago Closed 2 years ago

[wpt-sync] Sync PR 13141 - Attribute case-insensivity for Trusted Type attribute assignments

Categories

(Core :: DOM: Security, enhancement, P4)

enhancement

Tracking

()

RESOLVED FIXED
mozilla64
Tracking Status
firefox64 --- fixed

People

(Reporter: mozilla.org, Unassigned)

References

()

Details

(Whiteboard: [wptsync downstream][domsecurity-backlog])

Sync web-platform-tests PR 13141 into mozilla-central (this bug is closed when the sync is complete).

PR: https://github.com/web-platform-tests/wpt/pull/13141
Details from upstream follow.

Maja Kabus <kabusm@google.com> wrote:
>  Attribute case-insensivity for Trusted Type attribute assignments
>  
>  Element::setAttribute() implementation with TrustedType modified to
>  prevent insecure case-insensitive attributes change with strings.
>  
>  Bug: 739170
>  Change-Id: Ia0636f4791cbc204b679de510e5c676de817dd11
>  Reviewed-on: https://chromium-review.googlesource.com/1238539
>  Commit-Queue: Daniel Vogelheim \<vogelheim@chromium.org>
>  Reviewed-by: Mike West \<mkwst@chromium.org>
>  Reviewed-by: Daniel Vogelheim \<vogelheim@chromium.org>
>  Cr-Commit-Position: refs/heads/master@{#595493}
>
Component: web-platform-tests → DOM: Security
Product: Testing → Core
Whiteboard: [wptsync downstream] → [wptsync downstream][domsecurity-backlog]
Ran 1 tests and 20 subtests
OK     : 1
PASS   : 2
FAIL   : 18

New tests that have failures or other problems:
/trusted-types/block-string-assignment-to-Element-setAttribute.tentative.html
    `Element.prototype.setAttribute.SrC = string` throws.: FAIL
Pushed by wptsync@mozilla.com:
https://hg.mozilla.org/integration/mozilla-inbound/rev/ef3fd2694a99
[wpt PR 13141] - Attribute case-insensivity for Trusted Type attribute assignments, a=testonly
https://hg.mozilla.org/integration/mozilla-inbound/rev/3c94940adbe9
[wpt PR 13141] - Update wpt metadata, a=testonly
https://hg.mozilla.org/mozilla-central/rev/ef3fd2694a99
https://hg.mozilla.org/mozilla-central/rev/3c94940adbe9
Status: NEW → RESOLVED
Closed: 2 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla64
You need to log in before you can comment on or make changes to this bug.