Bug 71906

Summary: [Qt] failures in http/tests/security/contentSecurityPolicy with Qt5
Product: WebKit Reporter: Balazs Kelemen <kbalazs>
Component: Tools / TestsAssignee: Nobody <webkit-unassigned>
Status: RESOLVED DUPLICATE    
Severity: Normal CC: abarth, mkwst, ossy, rhodovan.u-szeged, webkit-sed
Priority: P3 Keywords: LayoutTestFailure, Qt, QtTriaged
Version: 528+ (Nightly build)   
Hardware: Unspecified   
OS: Unspecified   
Bug Depends on:    
Bug Blocks: 79666    
Attachments:
Description Flags
backtrace at first load
none
backtrace at second load none

Description Balazs Kelemen 2011-11-09 06:46:03 PST
1 .Both on the Qt5-WK1 and Qt5-WK2 bot.
object-src-no-url-blocked.html:
+CONSOLE MESSAGE: line 1: Refused to load object from '' because of Content-Security-Policy.
+
 CONSOLE MESSAGE: line 1: Refused to load object from '' because of Content-Security-Policy.

 This test passes if there is a console message saying the plugin was blocked.

object-src-none-allowed.html:
-ALERT: Plugin Loaded!

object-src-none-blocked.html:
+CONSOLE MESSAGE: line 1: Refused to load object from 'data:application/x-webkit-test-netscape,alertwhenloaded' because of Content-Security-Policy.
+
 CONSOLE MESSAGE: line 1: Refused to load object from 'data:application/x-webkit-test-netscape,alertwhenloaded' because of Content-Security-Policy.

2. only on the Qt5 bot
policy-does-not-affect-child.html:
+CONSOLE MESSAGE: line 1: Refused to load object from '' because of Content-Security-Policy.
+
 ALERT: PASS
Comment 1 Balazs Kelemen 2011-11-09 06:53:29 PST
Skipped them in http://trac.webkit.org/changeset/99704
Comment 2 Balazs Kelemen 2011-11-09 06:56:14 PST
Adam, from the history it seems like you know what these tests do :)
Do you have a quick idea about why are these strange diverging results?
Comment 3 Adam Barth 2011-11-09 08:38:46 PST
Those rules make it look like you're trying to load the plug-in twice and its getting blocked twice.  I'm not sure why you're trying to load it twice.
Comment 4 Csaba Osztrogonác 2012-02-01 08:35:26 PST
I'll check it, it seems it is related to https://bugs.webkit.org/show_bug.cgi?id=77556
Comment 5 Csaba Osztrogonác 2012-02-01 09:01:26 PST
The following tests fail always with Qt5 (no flakey, fail in itself too):
http/tests/security/contentSecurityPolicy/object-src-no-url-blocked.html
http/tests/security/contentSecurityPolicy/object-src-none-allowed.html
http/tests/security/contentSecurityPolicy/object-src-none-blocked.html

flakey test, see https://bugs.webkit.org/show_bug.cgi?id=77556 for details :
http/tests/security/contentSecurityPolicy/policy-does-not-affect-child.html
Comment 6 Balazs Kelemen 2012-06-06 06:33:45 PDT
(In reply to comment #3)
> Those rules make it look like you're trying to load the plug-in twice and its getting blocked twice.  I'm not sure why you're trying to load it twice.

Started debugging this, it's loaded twice. The backtraces are almost identical except one part. I'm going to attach them.
Comment 7 Balazs Kelemen 2012-06-06 06:35:45 PDT
Created attachment 146008 [details]
backtrace at first load
Comment 8 Balazs Kelemen 2012-06-06 06:36:17 PDT
Created attachment 146009 [details]
backtrace at second load
Comment 9 Mike West 2012-08-04 15:20:19 PDT

*** This bug has been marked as a duplicate of bug 92649 ***