Open Bug 1873224 Opened 1 year ago Updated 5 months ago

New wpt failures in /fetch/security/dangling-markup/ [dangling-markup-mitigation-data-url.tentative.sub.html, dangling-markup-mitigation.tentative.html, media.html, and 2 others]

Tracking

()

Status:

NEW

People

(Reporter: wpt-sync, Unassigned)

References

(Blocks 1 open bug)

Details

(Whiteboard: [wpt][necko-triaged])

Web Platform Test Sync Bot [:wpt-sync] (Matrix: #interop:mozilla.org)

Reporter

Description

•

1 year ago

Syncing wpt PR 43808 found new untriaged test failures in CI

Tests Affected

Firefox-only failures

/fetch/security/dangling-markup/dangling-markup-mitigation.tentative.html [wpt.fyi]
- <img id="dangling" src="/images/green-1x1.png?img= <b">: FAIL
- <img id="dangling" src="/images/green-1x1.png?img=< b">: FAIL

New Tests That Don't Pass

/fetch/security/dangling-markup/dangling-markup-mitigation-data-url.tentative.sub.html [wpt.fyi]
- <iframe id="dangling"\n src="data:text/html,\n <img\n onload='window.parent.postMessage("loaded", "");'\n onerror='window.parent.postMessage("error", "");'\n src='http://web-platform.test:8000/images/gr
  een-256x256.png?<'>\n ">\n </iframe>: FAIL (Chrome: PASS, Safari: FAIL)
- <iframe id="dangling"\n src=" data:text/html,\n <img\n onload='window.parent.postMessage("loaded", "");'\n onerror='window.parent.postMessage("error", "");'\n src='http://web-platform.test:8000/images/gr
  een-256x256.png?<'>\n ">\n </iframe>: FAIL (Chrome: PASS, Safari: FAIL)
- <iframe id="dangling"\n src="\ndata:text/html,\n <img\n onload='window.parent.postMessage("loaded", "");'\n onerror='window.parent.postMessage("error", "");'\n src='http://web-platform.test:8000/images/gr
  een-256x256.png?<'>\n ">\n </iframe>: FAIL (Chrome: PASS, Safari: FAIL)
- <iframe id="dangling"\n src=" data:text/html,\n <img\n onload='window.parent.postMessage("loaded", "");'\n onerror='window.parent.postMessage("error", "");'\n src='http://web-platform.test:8000/images/gr
  een-256x256.png?<'>\n ">\n </iframe>: FAIL (Chrome: PASS, Safari: FAIL)
- <iframe id="dangling"\n src="\tdata:text/html,\n <img\n onload='window.parent.postMessage("loaded", "");'\n onerror='window.parent.postMessage("error", "");'\n src='http://web-platform.test:8000/images/gr
  een-256x256.png?<'>\n ">\n </iframe>: FAIL (Chrome: PASS, Safari: FAIL)
- <iframe id="dangling"\n src="\rdata:text/html,\n <img\n onload='window.parent.postMessage("loaded", "");'\n onerror='window.parent.postMessage("error", "");'\n src='http://web-platform.test:8000/images/gr
  een-256x256.png?<'>\n ">\n </iframe>: FAIL (Chrome: PASS, Safari: FAIL)
/fetch/security/dangling-markup/dangling-markup-mitigation.tentative.html [wpt.fyi]
- Fetch: /images/gre\nen-1x1.png?img=<: FAIL (Chrome: PASS, Safari: FAIL)
- Fetch: /images/gre\ren-1x1.png?img=<: FAIL (Chrome: PASS, Safari: FAIL)
- Fetch: /images/gre\ten-1x1.png?img=<: FAIL (Chrome: PASS, Safari: FAIL)
- Fetch: /images/green-1x1.png?<\n=block: FAIL (Chrome: PASS, Safari: FAIL)
- Fetch: /images/green-1x1.png?<\r=block: FAIL (Chrome: PASS, Safari: FAIL)
- Fetch: /images/green-1x1.png?<\t=block: FAIL (Chrome: PASS, Safari: FAIL)
- \n <img id="dangling" src="/images/green-1x1.png?img=\n <\n b\n ">\n : FAIL (Chrome: PASS, Safari: FAIL)
/fetch/security/dangling-markup/media.html [wpt.fyi]
- Should not load audio with dangling markup in URL: FAIL (Chrome: PASS, Safari: FAIL)
- Should not load video with dangling markup in URL: FAIL (Chrome: PASS, Safari: FAIL)

/fetch/security/dangling-markup/option.html [wpt.fyi]

  <form action="/resource-timing/resources/document-navigated.html" method="post">        <input type="submit">        <select name="dangling"><option>    : `FAIL` (Chrome: `PASS`, Safari: `FAIL`)

  <div>        <form action="/resource-timing/resources/document-navigated.html" method="post">          <input type="submit">          <select name="dangling"><option>    : `FAIL` (Chrome: `PASS`, Safari: `FAIL`)

  <form action="/resource-timing/resources/document-navigated.html" method="post" id="form">        <input type="submit">      </form>      <select name="dangling" form="form"><option>    : `FAIL` (Chrome: `PASS`, Safari: `FAIL`)

  <form action="/resource-timing/resources/document-navigated.html" method="post">        <input type="submit">        <select name="dangling"><option label="yay">    : `FAIL` (Chrome: `PASS`, Safari: `FAIL`)

  <div>        <form action="/resource-timing/resources/document-navigated.html" method="post">          <input type="submit">          <select name="dangling"><option label="yay">    : `FAIL` (Chrome: `PASS`, Safari: `FAIL`)

  <form action="/resource-timing/resources/document-navigated.html" method="post" id="form">        <input type="submit">      </form>      <select name="dangling" form="form"><option label="yay">    : `FAIL` (Chrome: `PASS`, Safari: `FAIL`)

/fetch/security/dangling-markup/textarea.html [wpt.fyi]

  <form action="/resource-timing/resources/document-navigated.html" method="post">        <input type="submit">        <textarea name="dangling">    : `FAIL` (Chrome: `PASS`, Safari: `FAIL`)

  <div>        <form action="/resource-timing/resources/document-navigated.html" method="post">          <input type="submit">          <textarea name="dangling">    : `FAIL` (Chrome: `PASS`, Safari: `FAIL`)

  <form action="/resource-timing/resources/document-navigated.html" method="post" id="form">        <input type="submit">      </form>      <textarea name="dangling" form="form">    : `FAIL` (Chrome: `PASS`, Safari: `FAIL`)

CI Results

Gecko CI (Treeherder)
GitHub PR Head

Notes

These updates will be on mozilla-central once bug 1872206 lands.

Note: this bug is for tracking fixing the issues and is not
owned by the wpt sync bot.

This bug is linked to the relevant tests by an annotation in
https://github.com/web-platform-tests/wpt-metadata. These annotations
can be edited using the wpt interop dashboard
https://jgraham.github.io/wptdash/

If this bug is split into multiple bugs, please also update the
annotations, otherwise we are unable to track which wpt issues are
already triaged. Resolving as duplicate or closing this issue should
be cause the bot to automatically update or remove the annotation.

Web Platform Test Sync Bot [:wpt-sync] (Matrix: #interop:mozilla.org)

Reporter

Updated

•

1 year ago

Depends on: 1872206

Valentin Gosu [:valentin] (he/him)

Updated

•

6 months ago

Blocks: 1899514

Component: DOM: Networking → DOM: Core & HTML

Valentin Gosu [:valentin] (he/him)

Updated

•

5 months ago

Severity: -- → S3

Priority: -- → P2

Whiteboard: [wpt] → [wpt][necko-triaged]

Valentin Gosu [:valentin] (he/him)

Updated

•

5 months ago

Duplicate of this bug: 1886516

You need to log in before you can comment on or make changes to this bug.

Bugzilla

New wpt failures in /fetch/security/dangling-markup/ [dangling-markup-mitigation-data-url.tentative.sub.html, dangling-markup-mitigation.tentative.html, media.html, and 2 others]

Categories

(Core :: DOM: Core & HTML, defect, P2)

Tracking

()

People

(Reporter: wpt-sync, Unassigned)

References

(Blocks 1 open bug)

Details

(Whiteboard: [wpt][necko-triaged])

Crash Data

Security

(public)

User Story

Description

Tests Affected

Firefox-only failures

New Tests That Don't Pass

CI Results

Notes

Updated

Updated

Updated

Updated