Bug 29511

Summary: [XSSAuditor] Script source code that contains non-ASCII characters may bypass the XSSAuditor
Product: WebKit Reporter: Daniel Bates <dbates>
Component: WebCore Misc.Assignee: Nobody <webkit-unassigned>
Status: RESOLVED FIXED    
Severity: Normal CC: abarth, mario.heiderich, sam
Priority: P2 Keywords: XSSAuditor
Version: 528+ (Nightly build)   
Hardware: All   
OS: All   
Bug Depends on:    
Bug Blocks: 29278    
Attachments:
Description Flags
Patch with test cases
none
Patch with test cases none

Comment 1 Daniel Bates 2009-09-18 17:12:43 PDT
Created attachment 39804 [details]
Patch with test cases
Comment 2 Daniel Bates 2009-09-18 17:37:44 PDT
Created attachment 39805 [details]
Patch with test cases

Added another test case: img-onerror-non-ASCII-char-default-encoding.html
Comment 3 Adam Barth 2009-09-18 22:50:47 PDT
Comment on attachment 39805 [details]
Patch with test cases

Thanks Dan.  This looks great.
Comment 4 Daniel Bates 2009-09-19 13:29:54 PDT
Comment on attachment 39805 [details]
Patch with test cases

Clearing flags on attachment: 39805

Committed r48564: <http://trac.webkit.org/changeset/48564>
Comment 5 Daniel Bates 2009-09-19 13:30:01 PDT
All reviewed patches have been landed.  Closing bug.