Bug 77556

Summary: [Qt] contentSecurityPolicy related sideeffect bug
Product: WebKit Reporter: Csaba Osztrogonác <ossy>
Component: Tools / TestsAssignee: Mike West <mkwst>
Status: RESOLVED DUPLICATE    
Severity: Normal CC: abarth, mike, mkwst, ossy, rhodovan.u-szeged, webkit-sed
Priority: P2 Keywords: Qt, QtTriaged
Version: 528+ (Nightly build)   
Hardware: All   
OS: All   
Bug Depends on: 86433    
Bug Blocks:    

Csaba Osztrogonác
Reported 2012-02-01 08:34:24 PST
There are two flakey tests long time ago because of this bug: http/tests/security/contentSecurityPolicy/object-src-none-blocked.html makes http/tests/security/contentSecurityPolicy/policy-does-not-affect-child.html fail: --- /ramdisk/qt-linux-64-release/build/layout-test-results/http/tests/security/contentSecurityPolicy/policy-does-not-affect-child-expected.txt +++ /ramdisk/qt-linux-64-release/build/layout-test-results/http/tests/security/contentSecurityPolicy/policy-does-not-affect-child-actual.txt @@ -1,2 +1,4 @@ +CONSOLE MESSAGE: Refused to load object from 'data:application/x-webkit-test-netscape,alertwhenloaded' because of Content-Security-Policy. + ALERT: PASS http/tests/security/contentSecurityPolicy/object-src-no-url-blocked.html makes http/tests/security/contentSecurityPolicy/object-src-none-allowed.html fail: --- /ramdisk/qt-linux-64-release/build/layout-test-results/http/tests/security/contentSecurityPolicy/object-src-none-allowed-expected.txt +++ /ramdisk/qt-linux-64-release/build/layout-test-results/http/tests/security/contentSecurityPolicy/object-src-none-allowed-actual.txt @@ -1,3 +1,5 @@ +CONSOLE MESSAGE: Refused to load object from '' because of Content-Security-Policy. + ALERT: Plugin Loaded!
Attachments
Add attachment proposed patch, testcase, etc.
Csaba Osztrogonác
Comment 1 2012-05-14 22:38:13 PDT
One more flakey because of this bug after r117006: --- /ramdisk/qt-linux-64-release/build/layout-test-results/http/tests/security/contentSecurityPolicy/object-src-none-allowed-expected.txt +++ /ramdisk/qt-linux-64-release/build/layout-test-results/http/tests/security/contentSecurityPolicy/object-src-none-allowed-actual.txt @@ -1,3 +1,5 @@ +CONSOLE MESSAGE: Refused to load the object '' because it violates the following Content Security Policy directive: "object-src 'none'". + ALERT: Plugin Loaded!
Mike West
Comment 2 2012-05-18 01:59:38 PDT
Should be fixed when 86433 is fixed.
Csaba Osztrogonác
Comment 3 2012-05-24 10:10:57 PDT
Still fails on the Qt 4.8 bots.
Mike West
Comment 4 2012-08-04 15:18:38 PDT
*** This bug has been marked as a duplicate of bug 92649 ***
Note You need to log in before you can comment on or make changes to this bug.