2011-02-04 Adam Barth <abarth@webkit.org>
authorabarth@webkit.org <abarth@webkit.org@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Sat, 5 Feb 2011 05:17:30 +0000 (05:17 +0000)
committerabarth@webkit.org <abarth@webkit.org@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Sat, 5 Feb 2011 05:17:30 +0000 (05:17 +0000)
commit40ac8eb626d3653d8b3258c63425496ae2d6a496
tree5914f1474f6de7774e86c06944435d56f0f7f16a
parentf70100d4e68794acb58e0050b6ee81fafda28022
2011-02-04  Adam Barth  <abarth@webkit.org>

        Reviewed by Maciej Stachowiak.

        Crash in WebCore::TextEncoding::decode below XSSFilter::init
        https://bugs.webkit.org/show_bug.cgi?id=53837

        Test that we can successfully execute a JavaScript URL when it isn't
        blocked by the filter.

        * http/tests/security/xssAuditor/non-block-javascript-url-frame-expected.txt: Added.
        * http/tests/security/xssAuditor/non-block-javascript-url-frame.html: Added.
2011-02-04  Adam Barth  <abarth@webkit.org>

        Reviewed by Maciej Stachowiak.

        Crash in WebCore::TextEncoding::decode below XSSFilter::init
        https://bugs.webkit.org/show_bug.cgi?id=53837

        Add missing null check.

        Test: http/tests/security/xssAuditor/non-block-javascript-url-frame.html

        * html/parser/XSSFilter.cpp:
        (WebCore::XSSFilter::init):

git-svn-id: http://svn.webkit.org/repository/webkit/trunk@77730 268f45cc-cd09-0410-ab3c-d52691b4dbfc
LayoutTests/ChangeLog
LayoutTests/http/tests/security/xssAuditor/non-block-javascript-url-frame-expected.txt [new file with mode: 0644]
LayoutTests/http/tests/security/xssAuditor/non-block-javascript-url-frame.html [new file with mode: 0644]
Source/WebCore/ChangeLog
Source/WebCore/html/parser/XSSFilter.cpp