Bug 77556

Summary: [Qt] contentSecurityPolicy related sideeffect bug
Product: WebKit Reporter: Csaba Osztrogonác <ossy>
Component: Tools / TestsAssignee: Mike West <mkwst>
Status: RESOLVED DUPLICATE    
Severity: Normal CC: abarth, mike, mkwst, ossy, rhodovan.u-szeged, webkit-sed
Priority: P2 Keywords: Qt, QtTriaged
Version: 528+ (Nightly build)   
Hardware: All   
OS: All   
Bug Depends on: 86433    
Bug Blocks:    

Description Csaba Osztrogonác 2012-02-01 08:34:24 PST 
There are two flakey tests long time ago because of this bug:
http/tests/security/contentSecurityPolicy/object-src-none-blocked.html
makes http/tests/security/contentSecurityPolicy/policy-does-not-affect-child.html fail:
--- /ramdisk/qt-linux-64-release/build/layout-test-results/http/tests/security/contentSecurityPolicy/policy-does-not-affect-child-expected.txt 
+++ /ramdisk/qt-linux-64-release/build/layout-test-results/http/tests/security/contentSecurityPolicy/policy-does-not-affect-child-actual.txt 
@@ -1,2 +1,4 @@
+CONSOLE MESSAGE: Refused to load object from 'data:application/x-webkit-test-netscape,alertwhenloaded' because of Content-Security-Policy.
+
 ALERT: PASS

http/tests/security/contentSecurityPolicy/object-src-no-url-blocked.html makes 
http/tests/security/contentSecurityPolicy/object-src-none-allowed.html fail:
--- /ramdisk/qt-linux-64-release/build/layout-test-results/http/tests/security/contentSecurityPolicy/object-src-none-allowed-expected.txt 
+++ /ramdisk/qt-linux-64-release/build/layout-test-results/http/tests/security/contentSecurityPolicy/object-src-none-allowed-actual.txt 
@@ -1,3 +1,5 @@
+CONSOLE MESSAGE: Refused to load object from '' because of Content-Security-Policy.
+
 ALERT: Plugin Loaded!
Comment 1 Csaba Osztrogonác 2012-05-14 22:38:13 PDT 
One more flakey because of this bug after r117006:


--- /ramdisk/qt-linux-64-release/build/layout-test-results/http/tests/security/contentSecurityPolicy/object-src-none-allowed-expected.txt 
+++ /ramdisk/qt-linux-64-release/build/layout-test-results/http/tests/security/contentSecurityPolicy/object-src-none-allowed-actual.txt 
@@ -1,3 +1,5 @@
+CONSOLE MESSAGE: Refused to load the object '' because it violates the following Content Security Policy directive: "object-src 'none'".
+
 ALERT: Plugin Loaded!
Comment 2 Mike West 2012-05-18 01:59:38 PDT 
Should be fixed when 86433 is fixed.
Comment 3 Csaba Osztrogonác 2012-05-24 10:10:57 PDT 
Still fails on the Qt 4.8 bots.
Comment 4 Mike West 2012-08-04 15:18:38 PDT 

*** This bug has been marked as a duplicate of bug 92649 ***