202004 – http/tests/security/contentSecurityPolicy/user-style-sheet-font-crasher.php emits CSP blocked message multiple times

NEW Bug 202004

http/tests/security/contentSecurityPolicy/user-style-sheet-font-crasher.php emits CSP blocked message multiple times

https://bugs.webkit.org/show_bug.cgi?id=202004

Summary http/tests/security/contentSecurityPolicy/user-style-sheet-font-crasher.php e...

Daniel Bates

Reported 2019-09-19 13:57:21 PDT

While working on another bug I noticed that the test http/tests/security/contentSecurityPolicy/user-style-sheet-font-crasher.php emits the console message "Refused to load http://127.0.0.1:8000/security/contentSecurityPolicy/example_font.woff because it does not appear in the font-src directive of the Content Security Policy." multiple times. I would have expected the message to be emitted exactly once. Emitting the message multiple times likely has implications with respect to CSP reporting: multiple reports may be sent.

Attachments
Add attachment proposed patch, testcase, etc.

Radar WebKit Bug Importer

Comment 1 2019-09-19 13:57:38 PDT

<rdar://problem/55533002>

Note You need to log in before you can comment on or make changes to this bug.

Status NEW

Resolution

Priority P2

Severity Normal

Classification Unclassified

Version WebKit Local Build

Hardware All

OS All

Product WebKit

Component WebCore Misc.

Assignee

Nobody

Reported

2019-09-19 13:57 PDT

Modified

2019-09-19 13:57 PDT History

CC List

1 user Show

URL

Keywords InRadar

Depends on

Blocks