Closed Bug 1978315 Opened 12 days ago Closed 10 days ago

Stop using the type attribute of HTML anchors as a content type hint

Tracking

()

Status:

RESOLVED FIXED

Milestone:

143 Branch

Tracking Flags:

Tracking

Status

firefox143

---

fixed

People

(Reporter: tschuster, Assigned: tschuster)

References

(Blocks 1 open bug)

Details

(Keywords: sec-want)

Attachments

(2 files)

Bug 1978315 - Stop using the type attribute of HTML anchors as a content type hint. r?#dom-core 11 days ago Tom Schuster (MoCo) 48 bytes, text/x-phabricator-request		Details \| Review
Bug 1978315 - A element type attribute is purely historical. r?edgar 10 days ago Tom Schuster (MoCo) 48 bytes, text/x-phabricator-request		Details \| Review

Tom Schuster (MoCo)

Assignee

Description

•

12 days ago

•

Edited

We seem to use type as in <a type="text/html href="...">..</a> as a Content-Type hint for the loading document. It seems like Chrome doesn't do this. This could possibly be used for some kind of attack, where we interpret something as e.g. HTML that would not sniff in other browsers. Additionally the HTML spec says the following:

The type attribute, if present, gives the MIME type of the linked resource. It is purely advisory. The value must be a valid MIME type string. User agents must not consider the type attribute authoritative — upon fetching the resource, user agents must not use metadata included in the link to the resource to determine its type.

https://html.spec.whatwg.org/multipage/links.html#attr-hyperlink-type

Tom Schuster (MoCo)

Assignee

Comment 1

•

11 days ago

Attached file Bug 1978315 - Stop using the type attribute of HTML anchors as a content type hint. r?#dom-core — Details

Pulsebot

Comment 2

•

10 days ago

Pushed by tschuster@mozilla.com: https://github.com/mozilla-firefox/firefox/commit/11aaf102b9e8 https://hg.mozilla.org/integration/autoland/rev/476b0361e52c Stop using the type attribute of HTML anchors as a content type hint. r=dom-core,edgar

Tom Schuster (MoCo)

Assignee

Updated

•

10 days ago

Keywords: leave-open

Tom Schuster (MoCo)

Assignee

Comment 3

•

10 days ago

Attached file Bug 1978315 - A element type attribute is purely historical. r?edgar — Details

Pulsebot

Comment 4

•

10 days ago

Pushed by tschuster@mozilla.com: https://github.com/mozilla-firefox/firefox/commit/5768e5e2469b https://hg.mozilla.org/integration/autoland/rev/d7384701df0f A element type attribute is purely historical. r=edgar

Web Platform Test Sync Bot [:wpt-sync] (Matrix: #interop:mozilla.org)

Comment 5

•

10 days ago

Created web-platform-tests PR https://github.com/web-platform-tests/wpt/pull/53920 for changes under testing/web-platform/tests

Cristina Horotan [:chorotan]

Comment 6

•

10 days ago

bugherder

https://hg.mozilla.org/mozilla-central/rev/476b0361e52c
https://hg.mozilla.org/mozilla-central/rev/d7384701df0f

Web Platform Test Sync Bot [:wpt-sync] (Matrix: #interop:mozilla.org)

Comment 7

•

10 days ago

Upstream PR merged by moz-wptsync-bot

Tom Schuster (MoCo)

Assignee

Updated

•

10 days ago

Status: NEW → RESOLVED

Closed: 10 days ago

status-firefox143: --- → fixed

Keywords: leave-open

Resolution: --- → FIXED

Target Milestone: --- → 143 Branch

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Stop using the type attribute of HTML anchors as a content type hint

Categories

(Core :: DOM: Core & HTML, task)

Tracking

()

People

(Reporter: tschuster, Assigned: tschuster)

References

(Blocks 1 open bug)

Details

(Keywords: sec-want)

Crash Data

Security

(public)

User Story

Attachments

(2 files)

Description

Comment 1

Comment 2

Updated

Comment 3

Comment 4

Comment 5

Comment 6

Comment 7

Updated

Attachment

General

Description

File Name

Content Type