Closed Bug 1532648 Opened 6 years ago Closed 9 months ago

Produce the algorithm that determines whether something is an image

Categories

(Core :: Graphics: ImageLib, enhancement, P3)

Product:
Core
Component:
Graphics: ImageLib
Type:
enhancement

Tracking

()

Status:
RESOLVED WONTFIX

People

(Reporter: annevk, Unassigned)

References

(Blocks 1 open bug)

Details

(Whiteboard: [gfx-noted],[orb:m2])

To be able to block more "no-cors" cross-origin responses from entering the content process it would be good to know what we currently handle as images.

I'm pretty sure we look at Content-Type for image/svg+xml and the decoding process looks at the initial set of bytes of a response. Is this fully documented somewhere?

https://mimesniff.spec.whatwg.org/#matching-an-image-type-pattern covers this. Might that be all?

(Not sure if ImageLib is appropriate. Sorry if it's not.)

Priority: -- → P3
Whiteboard: [gfx-noted]
Whiteboard: [gfx-noted] → [gfx-noted],[orb:m1]

Hi Tom, I'd like to help on this bug. However I don't seem to understand what we'd like to do here. Is the task here to validate the code you linked in comment 1 with https://mimesniff.spec.whatwg.org/#matching-an-image-type-pattern? It'd be great if you can give me some pointers. Thanks!

Flags: needinfo?(shes050117)

Redirect a needinfo that is pending on an inactive user to the triage owner.
:aosmond, since the bug has recent activity, could you have a look please?

For more information, please visit auto_nag documentation.

Flags: needinfo?(shes050117) → needinfo?(aosmond)

The DOM team has talked about this and clarified my question. So no needinfo is needed.

Flags: needinfo?(aosmond)
Whiteboard: [gfx-noted],[orb:m1] → [gfx-noted],[orb:m2]
Severity: normal → S3
Whiteboard: [gfx-noted],[orb:m2] → [gfx-noted],[orb:m2][sp3]
See Also: https://mozilla-hub.atlassian.net/browse/SP3-132
Whiteboard: [gfx-noted],[orb:m2][sp3] → [gfx-noted],[orb:m2]

I did a comparison between our implementation and the existing image type pattern algorithm, and I only see one difference.

We have a sniffing for ART type https://searchfox.org/mozilla-central/rev/c7cf087b6e1384608ca3989f042f12f7cabd0a5f/image/imgLoader.cpp#2768-2771, which doesn't exist in the spec.

I think it's obsolete nowadays and we don't need to worry about that. As that being said, the image sniffing code used by ORB matches the existing spec, so we don't need to extra work here.

Status: NEW → RESOLVED
Closed: 9 months ago
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.