Bug 204414

Summary: Incorrect association of the URL object with the value port
Product: WebKit Reporter: Ivan Demidov <scrum>
Component: DOMAssignee: Alex Christensen <achristensen>
Status: RESOLVED FIXED    
Severity: Normal CC: achristensen, cdumez, commit-queue, esprehn+autocc, ews-watchlist, gyuyoung.kim, sam, webkit-bug-importer
Priority: P2 Keywords: InRadar
Version: Safari 13   
Hardware: Unspecified   
OS: Unspecified   
Attachments:
Description Flags
Patch
none
Patch none

Ivan Demidov
Reported 2019-11-20 09:54:43 PST
const {hostname, port} = location; const pathname = 'websocket'; const protocol = 'wss:' const target = {hostname, pathname, port, protocol, search: ''}; Object.assign(new URL(location), target); as a result of merging the above code, 0 value gets to the port URL { hash: "" host: "bugs.webkit.org:0" hostname: "bugs.webkit.org" href: "wss://bugs.webkit.org:0/websocket" origin: "wss://bugs.webkit.org:0" password: "" pathname: "/websocket" port: "0" protocol: "wss:" search: "" searchParams: URLSearchParams {append: function, delete: function, get: function, getAll: function, has: function, …} username: "" }
Attachments
Patch (4.06 KB, patch)
2019-11-22 18:41 PST, Alex Christensen 		no flags
DetailsFormatted DiffDiff
Patch (9.66 KB, patch)
2019-11-22 21:07 PST, Alex Christensen 		no flags
DetailsFormatted DiffDiff
Show Obsolete (1) View All Add attachment proposed patch, testcase, etc.
Radar WebKit Bug Importer
Comment 1 2019-11-22 16:00:43 PST
<rdar://problem/57444249>
Alex Christensen
Comment 2 2019-11-22 18:41:14 PST
Created attachment 384223 [details] Patch
Alex Christensen
Comment 3 2019-11-22 21:07:16 PST
Created attachment 384230 [details] Patch
Sam Weinig
Comment 4 2019-11-25 17:55:49 PST
Comment on attachment 384230 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=384230&action=review > Source/WebCore/html/URLUtils.h:236 > + unsigned port = value.toUInt(&success); Not related to this change, but it's a bit odd we use toUInt() here, rather than toUIntStrict(), since the former allows trailing garbage. Probably worth testing, but not in this change. (I also kind of want to change the toNumber functions to return Optionals).
Alex Christensen
Comment 5 2019-12-02 10:13:09 PST
Chromium allows trailing garbage, Firefox does not, the spec is a little unclear and seems to me that it would allow url.port="123?query" to override the path and query, but no browser allows that. I'm going to commit this as-is right now to save the toUIntStrict discussion for another day, because it doesn't seem to be causing compatibility problems in practice now.
WebKit Commit Bot
Comment 6 2019-12-02 10:56:56 PST
Comment on attachment 384230 [details] Patch Clearing flags on attachment: 384230 Committed r252998: <https://trac.webkit.org/changeset/252998>
WebKit Commit Bot
Comment 7 2019-12-02 10:56:57 PST
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.