Closed Bug 1776405 Opened 3 years ago Closed 3 years ago

[wpt-sync] Sync PR 34576 - [Sanitizer] Fix Secure Context restriction.

Categories

(Core :: DOM: Security, task, P4)

Product:
Core
Component:
DOM: Security
Type:
task

Tracking

()

Status:
RESOLVED FIXED
Milestone:
104 Branch
Tracking Flags:
Tracking Status
firefox104 --- fixed

People

(Reporter: wpt-sync, Unassigned)

References

(
URL
)

Details

(Whiteboard: [wptsync downstream])

Sync web-platform-tests PR 34576 into mozilla-central (this bug is closed when the sync is complete).

PR: https://github.com/web-platform-tests/wpt/pull/34576
Details from upstream follow.

Daniel Vogelheim <vogelheim@chromium.org> wrote:

[Sanitizer] Fix Secure Context restriction.

Previously, the Sanitizer was (correctly) secure-context restricted,
but the Element.setHTML method that uses it wasn't. This fixes this, plus adds WPT tests.

Bug: 1326827
Change-Id: I4e3100896527b0f093fa55923168b4e360eabfc4

Reviewed-on: https://chromium-review.googlesource.com/3721649
WPT-Export-Revision: 24a64314a3a05ca5f9b47a865e795c9eeab4c011

Component: web-platform-tests → DOM: Security
Product: Testing → Core

CI Results

Ran 11 Firefox configurations based on mozilla-central, and Firefox, Chrome, and Safari on GitHub CI

Total 2 tests and 1 subtests

Status Summary

Firefox

OK : 2
PASS: 1
FAIL: 1

Chrome

OK : 2
PASS: 1
FAIL: 1

Safari

OK : 2
PASS: 1
FAIL: 1

Links

Gecko CI (Treeherder)
GitHub PR Head
GitHub PR Base

Details

New Tests That Don't Pass

  • /sanitizer-api/sanitizer-insecure-context.html [wpt.fyi]
    • Sanitizer API in an insecure context.: FAIL [Gecko-android-em-7.0-x86_64-lite-qr-debug-geckoview, Gecko-android-em-7.0-x86_64-lite-qr-opt-geckoview, Gecko-android-em-7.0-x86_64-qr-debug-geckoview, Gecko-android-em-7.0-x86_64-qr-opt-geckoview, Gecko-linux1804-64-qr-debug, Gecko-linux1804-64-qr-opt, Gecko-linux1804-64-tsan-qr-opt, Gecko-windows10-32-2004-qr-debug, Gecko-windows10-32-2004-qr-opt, Gecko-windows10-64-2004-qr-debug, Gecko-windows10-64-2004-qr-opt], PASS [GitHub] (Chrome: FAIL, Safari: PASS)
  • /sanitizer-api/sanitizer-secure-context.https.html [wpt.fyi]
    • SanitizerAPI in a secure context.: FAIL [GitHub], PASS [Gecko-android-em-7.0-x86_64-lite-qr-debug-geckoview, Gecko-android-em-7.0-x86_64-lite-qr-opt-geckoview, Gecko-android-em-7.0-x86_64-qr-debug-geckoview, Gecko-android-em-7.0-x86_64-qr-opt-geckoview, Gecko-linux1804-64-qr-debug, Gecko-linux1804-64-qr-opt, Gecko-linux1804-64-tsan-qr-opt, Gecko-windows10-32-2004-qr-debug, Gecko-windows10-32-2004-qr-opt, Gecko-windows10-64-2004-qr-debug, Gecko-windows10-64-2004-qr-opt] (Chrome: PASS, Safari: FAIL)
Pushed by wptsync@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/334ecabd41aa [wpt PR 34576] - [Sanitizer] Fix Secure Context restriction., a=testonly https://hg.mozilla.org/integration/autoland/rev/555ddc8af153 [wpt PR 34576] - Update wpt metadata, a=testonly

https://hg.mozilla.org/mozilla-central/rev/334ecabd41aa
https://hg.mozilla.org/mozilla-central/rev/555ddc8af153

Status: NEW → RESOLVED
Closed: 3 years ago
status-firefox104: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 104 Branch
You need to log in before you can comment on or make changes to this bug.