Closed
Bug 1567058
Opened 6 years ago
Closed 11 months ago
Chapter 1: CSP: Write web-platform tests stressing javascript: navigations
Categories
(Core :: DOM: Security, task, P3)
Core
DOM: Security
Tracking
()
RESOLVED
FIXED
People
(Reporter: ckerschb, Assigned: mbrodesser)
References
(Blocks 1 open bug)
Details
(Whiteboard: [domsecurity-backlog1], [wptsync upstream])
Attachments
(6 files, 1 obsolete file)
|
48 bytes,
text/x-phabricator-request
|
Details | Review | |
|
48 bytes,
text/x-phabricator-request
|
Details | Review | |
|
48 bytes,
text/x-phabricator-request
|
Details | Review | |
|
48 bytes,
text/x-phabricator-request
|
Details | Review | |
|
Bug 1567058: part 6) Add missing tests to <to-javascript-parent-initiated-child-csp.html>. r=freddyb
48 bytes,
text/x-phabricator-request
|
Details | Review | |
|
48 bytes,
text/x-phabricator-request
|
Details | Review |
As a follow up to Bug 1555043 and also the discussions within github [1] we should write some more CSP web-platform tests to compliment testing/web-platform/tests/content-security-policy/navigation and stress javascript: navigations.
[1] https://github.com/whatwg/html/issues/4651#issuecomment-495050351
|
Reporter | |
Updated•6 years ago
|
Assignee: nobody → ckerschb
Status: NEW → ASSIGNED
Type: defect → task
Priority: -- → P3
Whiteboard: [domsecurity-active]
|
|
Reporter | |
Comment 1•4 years ago
|
||
Putting this one back in the backlog, we have some higher priority work to finish...
Assignee: ckerschb → nobody
Status: ASSIGNED → NEW
Whiteboard: [domsecurity-active] → [domsecurity-backlog1]
|
||
Updated•3 years ago
|
Severity: normal normal → S3 S3
|
Assignee | |
Updated•1 year ago
|
Assignee: nobody → mbrodesser
|
|
Assignee | |
Comment 2•1 year ago
|
||
Preparation for adding more tests.
|
|
Assignee | |
Comment 3•1 year ago
|
||
|
||
Updated•1 year ago
|
Attachment #9433995 -
Attachment description: WIP: Bug 1567058: part 1) Transform <to-javascript-parent-initiated-parent-csp.html> to promised-based test → Bug 1567058: part 1) Transform <to-javascript-parent-initiated-parent-csp.html> to promised-based test. r=freddyb
|
|
||
Updated•1 year ago
|
Attachment #9433996 -
Attachment description: WIP: Bug 1567058: part 2) Start adding tests for when the parent global has CSP and the target global hasn't or when both are equal → Bug 1567058: part 2) Add tests for when the parent global has CSP and the target global hasn't. r=freddyb
|
|
Assignee | |
Comment 4•1 year ago
|
||
Preparation to add more tests in other patches.
|
|
Assignee | |
Comment 5•1 year ago
|
||
Preparation to add more tests. Those tests will have to use promises to
in order to not interfere each other.
|
|
Assignee | |
Comment 6•1 year ago
|
||
|
|
||
Updated•1 year ago
|
Attachment #9433996 -
Attachment description: Bug 1567058: part 2) Add tests for when the parent global has CSP and the target global hasn't. r=freddyb → WIP: Bug 1567058: part 2) Add tests for when the parent global has CSP and the target global hasn't. r=freddyb
|
|
||
Updated•1 year ago
|
Attachment #9434537 -
Attachment description: WIP: Bug 1567058: part 5) Start adding more tests → WIP: Bug 1567058: part 5) Start adding more tests to <to-javascript-parent-initiated-child-csp.html>
|
|
||
Updated•1 year ago
|
Attachment #9433996 -
Attachment description: WIP: Bug 1567058: part 2) Add tests for when the parent global has CSP and the target global hasn't. r=freddyb → Bug 1567058: part 2) Add tests for when the parent global has CSP and the target global hasn't. r=freddyb
|
|
||
Updated•1 year ago
|
Attachment #9434534 -
Attachment description: WIP: Bug 1567058: part 3) Simplify <to-javascript-parent-initiated-child-csp.html> → Bug 1567058: part 3) Simplify <to-javascript-parent-initiated-child-csp.html>. r=freddyb
|
|
||
Updated•1 year ago
|
Attachment #9434536 -
Attachment description: WIP: Bug 1567058: part 4) Transform <to-javascript-parent-initiated-child-csp.html> to promise-test → Bug 1567058: part 4) Transform <to-javascript-parent-initiated-child-csp.html> to promise-test. r=freddyb
|
|
Assignee | |
Comment 7•1 year ago
|
||
It'll be reused in a following part.
|
|
||
Updated•1 year ago
|
Attachment #9434537 -
Attachment description: WIP: Bug 1567058: part 5) Start adding more tests to <to-javascript-parent-initiated-child-csp.html> → Bug 1567058: part 6) Add missing tests to <to-javascript-parent-initiated-child-csp.html>. r=freddyb
|
|
Assignee | |
Comment 8•1 year ago
|
||
|
|
Assignee | |
Updated•1 year ago
|
Keywords: leave-open
Pushed by mbrodesser@igalia.com:
https://hg.mozilla.org/integration/autoland/rev/3d9eb6589469
part 1) Transform <to-javascript-parent-initiated-parent-csp.html> to promised-based test. r=freddyb
https://hg.mozilla.org/integration/autoland/rev/30e5049bce41
part 2) Add tests for when the parent global has CSP and the target global hasn't. r=freddyb
https://hg.mozilla.org/integration/autoland/rev/5298fa9f2347
part 3) Simplify <to-javascript-parent-initiated-child-csp.html>. r=freddyb
https://hg.mozilla.org/integration/autoland/rev/0052fa7b2896
part 4) Transform <to-javascript-parent-initiated-child-csp.html> to promise-test. r=freddyb
https://hg.mozilla.org/integration/autoland/rev/17fa09f9fa7f
part 5) Factor some code from <to-javascript-parent-initiated-parent-csp.html> out. r=freddyb
https://hg.mozilla.org/integration/autoland/rev/c8ab9251d233
part 6) Add missing tests to <to-javascript-parent-initiated-child-csp.html>. r=freddyb
Created web-platform-tests PR https://github.com/web-platform-tests/wpt/pull/49217 for changes under testing/web-platform/tests
Whiteboard: [domsecurity-backlog1] → [domsecurity-backlog1], [wptsync upstream]
|
||
Comment 11•1 year ago
|
||
| bugherder | ||
https://hg.mozilla.org/mozilla-central/rev/3d9eb6589469
https://hg.mozilla.org/mozilla-central/rev/30e5049bce41
https://hg.mozilla.org/mozilla-central/rev/5298fa9f2347
https://hg.mozilla.org/mozilla-central/rev/0052fa7b2896
https://hg.mozilla.org/mozilla-central/rev/17fa09f9fa7f
https://hg.mozilla.org/mozilla-central/rev/c8ab9251d233
Upstream PR merged by moz-wptsync-bot
|
|
||
Updated•11 months ago
|
Attachment #9437741 -
Attachment description: WIP: Bug 1567058: part 7) Start adding tests for when both parent and child have a CSP → Bug 1567058: part 7) Add WPTs for `javascript:` URL navigations which check the order of the parent CSP and child CSP. r=freddyb
|
|
Assignee | |
Updated•11 months ago
|
Summary: CSP: Write web-platform tests stressing javascript: navigations → Chapter 1: CSP: Write web-platform tests stressing javascript: navigations
|
|
Assignee | |
Updated•11 months ago
|
|
|
||
Comment 13•11 months ago
|
||
Comment on attachment 9437741 [details]
Bug 1567058: part 7) Add WPTs for javascript: URL navigations which check the order of the parent CSP and child CSP. r=freddyb
Revision D229010 was moved to bug 1933142. Setting attachment 9437741 [details] to obsolete.
Attachment #9437741 -
Attachment is obsolete: true
You need to log in
before you can comment on or make changes to this bug.
Description
•