java\0script: treated as javascript: firefox and ie do not do this, and it seems risky to do so. it looks like there are a variety of layout tests under http/tests/javascriptURL that expect these two URL schemes to be the same.
I can only see tests verifying that java\0script: URLs are _not_ executed. Where do we treat java\0script: as javascript:?
Hmm... the http/tests/javascriptURL directory does not seem to exist anymore. From my testing, it looks like this bug is not valid. One thing I noticed is that Safari will try to load "java" as the URL, whereas other browsers will just out-right fail when given java\0script:foo. I guess they are being overly cautious due to the presence of the null byte.
(In reply to comment #2) > Hmm... the http/tests/javascriptURL directory does not seem to exist anymore. It's actually in http/tests/security/javascriptURL.