2011-02-04 Adam Barth <abarth@webkit.org>
authorabarth@webkit.org <abarth@webkit.org@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Sat, 5 Feb 2011 05:17:30 +0000 (05:17 +0000)
committerabarth@webkit.org <abarth@webkit.org@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Sat, 5 Feb 2011 05:17:30 +0000 (05:17 +0000)
commit79c8e30f384e041cee0599b1e2fdf8e49f2691bf
tree5914f1474f6de7774e86c06944435d56f0f7f16a
parent0b0777ed972b53efbc32e2061c6b89959c9ae778
2011-02-04  Adam Barth  <abarth@webkit.org>

        Reviewed by Maciej Stachowiak.

        Crash in WebCore::TextEncoding::decode below XSSFilter::init
        https://bugs.webkit.org/show_bug.cgi?id=53837

        Test that we can successfully execute a JavaScript URL when it isn't
        blocked by the filter.

        * http/tests/security/xssAuditor/non-block-javascript-url-frame-expected.txt: Added.
        * http/tests/security/xssAuditor/non-block-javascript-url-frame.html: Added.
2011-02-04  Adam Barth  <abarth@webkit.org>

        Reviewed by Maciej Stachowiak.

        Crash in WebCore::TextEncoding::decode below XSSFilter::init
        https://bugs.webkit.org/show_bug.cgi?id=53837

        Add missing null check.

        Test: http/tests/security/xssAuditor/non-block-javascript-url-frame.html

        * html/parser/XSSFilter.cpp:
        (WebCore::XSSFilter::init):

git-svn-id: https://svn.webkit.org/repository/webkit/trunk@77730 268f45cc-cd09-0410-ab3c-d52691b4dbfc
LayoutTests/ChangeLog
LayoutTests/http/tests/security/xssAuditor/non-block-javascript-url-frame-expected.txt [new file with mode: 0644]
LayoutTests/http/tests/security/xssAuditor/non-block-javascript-url-frame.html [new file with mode: 0644]
Source/WebCore/ChangeLog
Source/WebCore/html/parser/XSSFilter.cpp