Bug 225146

Summary: onerror event not triggered when origin uses TLS 1.0/1.1
Product: WebKit Reporter: Tomáš Dvořák <toomas2d>
Component: ImagesAssignee: Nobody <webkit-unassigned>
Status: NEW    
Severity: Normal CC: achristensen, ap, jean-yves.avenard, sabouhallawa, simon.fraser, webkit-bug-importer
Priority: P2 Keywords: InRadar
Version: Safari 14   
Hardware: All   
OS: All   
Attachments:
Description Flags
Simple script that demonstrates the issue none

Tomáš Dvořák
Reported 2021-04-28 02:34:51 PDT
Created attachment 427248 [details] Simple script that demonstrates the issue When you try to load an image from the origin which uses an obsolete version of the TLS (1.0 and 1.1) image will not be loaded and thus `onerror` event should be fired. It does not happen. I am attaching a simple script that demonstrates this issue. The problem also persists in Safari 13.
Attachments
Simple script that demonstrates the issue (1.10 KB, text/html)
2021-04-28 02:34 PDT, Tomáš Dvořák 		no flags
Details
View All Add attachment proposed patch, testcase, etc.
Alexey Proskuryakov
Comment 1 2021-04-29 13:37:35 PDT
Weird. I can reproduce.
Alex Christensen
Comment 2 2021-04-29 20:22:26 PDT
Very strange. This is probably related to r265835 which Safari hits in this case. It's especially strange because we are getting a NSURLErrorCancelled after cancelling the authentication challenge. Needs more investigation. We should probably fix it, but there is a straightforward workaround: use TLS 1.2 or 1.3
Radar WebKit Bug Importer
Comment 3 2021-05-05 02:35:13 PDT
<rdar://problem/77548636>
Note You need to log in before you can comment on or make changes to this bug.