[webkit-changes] [116132] trunk/LayoutTests

Fri, 04 May 2012 11:37:10 -0700

Title: [116132] trunk/LayoutTests
Revision
116132
Author
[email protected]
Date
2012-05-04 11:38:03 -0700 (Fri, 04 May 2012)

Log Message

CSP: Eval isn't blocked in about:blank subframes
https://bugs.webkit.org/show_bug.cgi?id=85553

Reviewed by Eric Seidel.

This patch fixes a race condition in this test.  We need to wait for
the load event to ensure that the iframe has finished loading.

* http/tests/security/contentSecurityPolicy/eval-blocked-in-about-blank-iframe.html:

Modified Paths

Diff

Modified: trunk/LayoutTests/ChangeLog (116131 => 116132)


--- trunk/LayoutTests/ChangeLog	2012-05-04 18:31:36 UTC (rev 116131)
+++ trunk/LayoutTests/ChangeLog	2012-05-04 18:38:03 UTC (rev 116132)
@@ -1,3 +1,15 @@
+2012-05-04  Adam Barth  <[email protected]>
+
+        CSP: Eval isn't blocked in about:blank subframes
+        https://bugs.webkit.org/show_bug.cgi?id=85553
+
+        Reviewed by Eric Seidel.
+
+        This patch fixes a race condition in this test.  We need to wait for
+        the load event to ensure that the iframe has finished loading.
+
+        * http/tests/security/contentSecurityPolicy/eval-blocked-in-about-blank-iframe.html:
+
 2012-05-04  Alexander Pavlov  <[email protected]>
 
         Unreviewed, build fix.

Modified: trunk/LayoutTests/http/tests/security/contentSecurityPolicy/eval-blocked-in-about-blank-iframe.html (116131 => 116132)


--- trunk/LayoutTests/http/tests/security/contentSecurityPolicy/eval-blocked-in-about-blank-iframe.html	2012-05-04 18:31:36 UTC (rev 116131)
+++ trunk/LayoutTests/http/tests/security/contentSecurityPolicy/eval-blocked-in-about-blank-iframe.html	2012-05-04 18:38:03 UTC (rev 116132)
@@ -6,5 +6,7 @@
 <iframe src=""
 Eval should be blocked in the iframe, but inline script should be allowed.
 <script>
-frames[0].document.write("<script>alert(/PASS/); eval('alert(/FAIL/);');<\/script>");
+window._onload_ = function() {
+    frames[0].document.write("<script>alert(/PASS/); eval('alert(/FAIL/);');<\/script>");
+}
 </script>

_______________________________________________
webkit-changes mailing list
[email protected]
http://lists.webkit.org/mailman/listinfo.cgi/webkit-changes

Reply via email to