Bug 291436
| Summary: | REGRESSION(293014@main): [ wk2 ] http/tests/security/contentSecurityPolicy/extensions/manifest-v3/default-src/manifest-v3-default-src-block-wildcard.html is a constant failure. | ||
|---|---|---|---|
| Product: | WebKit | Reporter: | Yasmin Karimi <y_karimi> |
| Component: | Tools / Tests | Assignee: | youenn fablet <youennf> |
| Status: | RESOLVED FIXED | ||
| Severity: | Normal | CC: | webkit-bot-watchers-bugzilla, webkit-bug-importer, youennf |
| Priority: | P2 | Keywords: | InRadar |
| Version: | WebKit Nightly Build | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| See Also: | https://bugs.webkit.org/show_bug.cgi?id=291524 | ||
Yasmin Karimi
http/tests/security/contentSecurityPolicy/extensions/manifest-v3/default-src/manifest-v3-default-src-block-wildcard.html
This test is a constant failure on wk2 (not tested on wk1).
HISTORY:
https://results.webkit.org/?suite=layout-tests&test=http%2Ftests%2Fsecurity%2FcontentSecurityPolicy%2Fextensions%2Fmanifest-v3%2Fdefault-src%2Fmanifest-v3-default-src-block-wildcard.html
TEXT DIFF:
@@ -1,4 +1,3 @@
-CONSOLE MESSAGE: Refused to load http://localhost:8000/security/contentSecurityPolicy/extensions/resources/script.js because it appears in neither the script-src directive nor the default-src directive of the Content Security Policy.
CONSOLE MESSAGE: Refused to load http://localhost:8000/security/contentSecurityPolicy/extensions/resources/script.js because it appears in neither the script-src directive nor the default-src directive of the Content Security Policy.
Test that CSP for manifest V3 extensions does not allow wildcards for the default-src directive.
DIFF URL:
https://build.webkit.org/results/Apple-iOS-18-Simulator-Release-WK2-Tests/293572@main%20(1360)/http/tests/security/contentSecurityPolicy/extensions/manifest-v3/default-src/manifest-v3-default-src-block-wildcard-pretty-diff.html
REPRODUCIBILITY:
I was able to reproduce this issue on the iOS 18.2 simulator at ToT using the following command:
run-webkit-tests --ios-simulator http/tests/security/contentSecurityPolicy/extensions/manifest-v3/default-src/manifest-v3-default-src-block-wildcard.html --iterations 5
REGRESSION:
Contextual information indicates the probable regression point is 293014@main. The code paths changed in that commit appear to be related to the observed regression test failure.
| Attachments | ||
|---|---|---|
| Add attachment proposed patch, testcase, etc. |
Radar WebKit Bug Importer
<rdar://problem/149077663>
EWS
Test gardening commit 293584@main (82f6f5b4a4c1): <https://commits.webkit.org/293584@main>
Reviewed commits have been landed. Closing PR #43962 and removing active labels.
youenn fablet
When running the test once as is, we end up with the current test expectation (two lines).
When running the test twice, we end up with the previous test expectation (one line).
The issue is that we sometimes have both a script preload from the HTML scanner and the real script load, hence two console warnings, and sometimes we directly go to the real script load.
For now, I'll just rebase the test.
youenn fablet
Pull request: https://github.com/WebKit/WebKit/pull/44055
EWS
Committed 293662@main (460818bedc55): <https://commits.webkit.org/293662@main>
Reviewed commits have been landed. Closing PR #44055 and removing active labels.