Closed
Bug 1511832
Opened 7 years ago
Closed 7 years ago
[wpt-sync] Sync PR 14339 - Fixes to the plugin-types csp checks and added empty directive check
Categories
(Core :: DOM: Security, enhancement, P4)
Core
DOM: Security
Tracking
()
RESOLVED
FIXED
mozilla66
| Tracking | Status | |
|---|---|---|
| firefox66 | --- | fixed |
People
(Reporter: wpt-sync, Unassigned)
References
()
Details
(Whiteboard: [wptsync downstream][domsecurity-backlog])
Sync web-platform-tests PR 14339 into mozilla-central (this bug is closed when the sync is complete).
PR: https://github.com/web-platform-tests/wpt/pull/14339
Details from upstream follow.
Andy Paicu <andypaicu@chromium.org> wrote:
> Fixes to the plugin-types csp checks and added empty directive check
>
> Fixed the external/wpt/content-security-policyplugin-types tests as the
> current ones are actually entirely useless as they pretty much always
> pass.
> Discovered and raised crbug.com/911114, also skipping the (now correct)
> tests that uncovered this issue.
> Added new test for empty plugin-types directive blocking every plugin.
> Removed tests in http/tests/security/contentSecurityPolicy that are
> direct 1-to-1 equivalents of these tests.
> Spec: https://github.com/w3c/webappsec-csp/pull/374
>
> Bug: 694525
> Change-Id: I91a548c6035a82310be077501934a51cf85525a2
> Reviewed-on: https://chromium-review.googlesource.com/1358457
> WPT-Export-Revision: 5435436e5937c86a92739db4ed460dd92f162e46
|
Assignee | |
Updated•7 years ago
|
Component: web-platform-tests → DOM: Security
Product: Testing → Core
|
|
Assignee | |
Comment 1•7 years ago
|
||
|
|
Assignee | |
Comment 2•7 years ago
|
||
Pushed to try (stability) https://treeherder.mozilla.org/#/jobs?repo=try&revision=60b932e0014e2a44c02226c15ab88161c31ab14e
|
|
Assignee | |
Comment 3•7 years ago
|
||
|
|
Assignee | |
Comment 4•7 years ago
|
||
|
|
Assignee | |
Comment 5•7 years ago
|
||
Pushed to try (stability) https://treeherder.mozilla.org/#/jobs?repo=try&revision=620cb6a0d6870da7e3f4881107ecb253142ed140
|
|
Assignee | |
Comment 6•7 years ago
|
||
Ran 7 tests and 7 subtests
OK : 1
PASS : 1
TIMEOUT: 6
NOTRUN : 6
New tests that have failures or other problems:
/content-security-policy/plugin-types/plugintypes-empty.sub.html: TIMEOUT
Should not load the object because plugin-types allows no plugins: NOTRUN
/content-security-policy/plugin-types/plugintypes-mismatched-data.html: TIMEOUT
Should not load the object because its declared type does not match its actual type: NOTRUN
/content-security-policy/plugin-types/plugintypes-mismatched-url.html: TIMEOUT
Should not load the object because its declared type does not match its actual type: NOTRUN
/content-security-policy/plugin-types/plugintypes-notype-data.html: TIMEOUT
Should not load the object because it does not have a declared type: NOTRUN
/content-security-policy/plugin-types/plugintypes-notype-url.html: TIMEOUT
Should not load the object because it does not have a declared type: NOTRUN
/content-security-policy/plugin-types/plugintypes-nourl-blocked.html: TIMEOUT
Should not load the object because it does not match plugin-types: NOTRUN
|
||
Updated•7 years ago
|
Whiteboard: [wptsync downstream] → [wptsync downstream][domsecurity-backlog]
Pushed by wptsync@mozilla.com:
https://hg.mozilla.org/integration/mozilla-inbound/rev/21a2dfe5abc1
[wpt PR 14339] - Fixes to the plugin-types csp checks and added empty directive check, a=testonly
https://hg.mozilla.org/integration/mozilla-inbound/rev/419c15985bb5
[wpt PR 14339] - Update wpt metadata, a=testonly
|
||
Comment 8•7 years ago
|
||
| bugherder | ||
https://hg.mozilla.org/mozilla-central/rev/21a2dfe5abc1
https://hg.mozilla.org/mozilla-central/rev/419c15985bb5
Status: NEW → RESOLVED
Closed: 7 years ago
status-firefox66:
--- → fixed
Resolution: --- → FIXED
Target Milestone: --- → mozilla66
You need to log in
before you can comment on or make changes to this bug.
Description
•